recommend a SSL sertificate issuer for our website?
I don't like the way go daddy boast in the news, moving to Windows is more likely a strategic plan to affect stat percentage of Windows being used as web server by including parked domains. Now our go daddy SSL certificate is expiring (no surprising we choose go daddy the first time: because they made more advertisements), I wish to take this chance to use another certificate issuer. We need cheap Intranet level certificate, from a certificate issuer that is more Linux-friendly. Which certificate issuer Linux admins prefer? For me not necessarily a USA company. In my case we cannot use CACert.org. -- 锐业软服(国内业务) http://www.realss.cn Real SoftService http://www.realss.com 销售咨询(Sales Department): 0086 592 20 99987 (Chinese, German, English) 国际业务(International Sales): 0086 10 8460 6011 (German and English) 联系:厦门大学科技园,嘉庚二号楼6楼 邮政:厦门大学2312号信箱(邮编361005)
Because our Intranet doesn't work with Internet Explorer lower then 6, and we certainly not plan to support IE lower then 6, it's no problem for us to adopt an certificate issuer who added themselves in IE only since version 6. 在 2006-09-30六的 10:59 +0800,张韡武写道:
I don't like the way go daddy boast in the news, moving to Windows is more likely a strategic plan to affect stat percentage of Windows being used as web server by including parked domains.
Now our go daddy SSL certificate is expiring (no surprising we choose go daddy the first time: because they made more advertisements), I wish to take this chance to use another certificate issuer. We need cheap Intranet level certificate, from a certificate issuer that is more Linux-friendly. Which certificate issuer Linux admins prefer? For me not necessarily a USA company.
In my case we cannot use CACert.org.
-- 锐业软服(国内业务) http://www.realss.cn Real SoftService http://www.realss.com 销售咨询(Sales Department): 0086 592 20 99987 (Chinese, German, English) 国际业务(International Sales): 0086 10 8460 6011 (German and English) 联系:厦门大学科技园,嘉庚二号楼6楼 邮政:厦门大学2312号信箱(邮编361005)
张韡武 wrote:
....
Now our go daddy SSL certificate is expiring (no surprising we choose go daddy the first time: because they made more advertisements), I wish to take this chance to use another certificate issuer. We need cheap Intranet level certificate, from a certificate issuer that is more Linux-friendly. Which certificate issuer Linux admins prefer? For me not necessarily a USA company.
In my case we cannot use CACert.org.
If it's just for an intranet server, you can create your own certificate using apache. -- "It is not knowable how long that conflict would last, it could last, you know, six days, six weeks. I doubt six months." --Secretary of Defense Donald Rumsfeld, 2/7/03
On 9/30/06, ken
���|�� wrote:
....
Now our go daddy SSL certificate is expiring (no surprising we choose go daddy the first time: because they made more advertisements), I wish to take this chance to use another certificate issuer. We need cheap Intranet level certificate, from a certificate issuer that is more Linux-friendly. Which certificate issuer Linux admins prefer? For me not necessarily a USA company.
In my case we cannot use CACert.org.
If it's just for an intranet server, you can create your own certificate using apache.
If you do that, then your Intranet users will need to accept your machine as a signing authority. Not a big deal if it is just a few users. If you have a few hundred users on your intranet, it is probably easier to get the cert from a pre-authorized signing authority. FYI: I use a self-signed cert on our Intranet with 15 users. Seems to work fine once we added our machine as signing authority in both ie and firefox. It is easy to do in both, but has to be done on each client machine individually as far as I know. Greg -- Greg Freemyer The Norcross Group Forensics for the 21st Century
If you want a "real" cert (not self signed), we've had good luck with Thawte. http://www.thawte.com/ They are now owned by Verisign, only cheaper (the last time I checked). And they don't do the cert "chaining" stuff that the real cheap places use. And if you're not going to be taking credit cards, you can get their "SSL 123" cert even cheaper than the normal web cert, and it works fine in Linux/Apache. - BS
Bruce Smith wrote:
If you want a "real" cert (not self signed), we've had good luck with Thawte. http://www.thawte.com/
Or get a free cert: http://www.cacert.org/ -- Until later, Geoffrey Those who would give up essential Liberty, to purchase a little temporary Safety, deserve neither Liberty nor Safety. - Benjamin Franklin
Greg Freemyer wrote:
On 9/30/06, ken
wrote: ���|�� wrote:
....
Now our go daddy SSL certificate is expiring (no surprising we choose go daddy the first time: because they made more advertisements), I wish to take this chance to use another certificate issuer. We need cheap Intranet level certificate, from a certificate issuer that is more Linux-friendly. Which certificate issuer Linux admins prefer? For me not necessarily a USA company.
In my case we cannot use CACert.org.
If it's just for an intranet server, you can create your own certificate using apache.
If you do that, then your Intranet users will need to accept your machine as a signing authority. Not a big deal if it is just a few users. If you have a few hundred users on your intranet, it is probably easier to get the cert from a pre-authorized signing authority.
Or you could send out a company-wide (email) memo.
....
-- In a time of universal deceit, telling the truth becomes an act of rebellion. --George Orwell
http://www.registerfly.com/ssl/ Mike ??? wrote:
I don't like the way go daddy boast in the news, moving to Windows is more likely a strategic plan to affect stat percentage of Windows being used as web server by including parked domains.
Now our go daddy SSL certificate is expiring (no surprising we choose go daddy the first time: because they made more advertisements), I wish to take this chance to use another certificate issuer. We need cheap Intranet level certificate, from a certificate issuer that is more Linux-friendly. Which certificate issuer Linux admins prefer? For me not necessarily a USA company.
In my case we cannot use CACert.org.
http://www.registerfly.com/ssl Mike 张韡武 wrote:
I don't like the way go daddy boast in the news, moving to Windows is more likely a strategic plan to affect stat percentage of Windows being used as web server by including parked domains.
Now our go daddy SSL certificate is expiring (no surprising we choose go daddy the first time: because they made more advertisements), I wish to take this chance to use another certificate issuer. We need cheap Intranet level certificate, from a certificate issuer that is more Linux-friendly. Which certificate issuer Linux admins prefer? For me not necessarily a USA company.
In my case we cannot use CACert.org.
participants (6)
-
Bruce Smith
-
Geoffrey
-
Greg Freemyer
-
ken
-
Mike Noble
-
张韡武