On Mon, 31 Aug 2020 06:31:12 -0700, Charles Mills wrote: >A self-signed certificate *is* a root certificate -- the two terms are >essentially synonymous (although they are used with different implications). >If the SMTP server is presenting a self-signed certificate then it effectively >is its own CA certificate, and you will have to install it in RACF. > What does "self-signed certificate" mean? Who should trust one? I'm imagining, in the extreme, a certificate self-signed by Guccifer 2.0.
What is the trail of authentication? I understand you have a cert. What did you need to do to authenticate yourself to the CA? Is it merely that the CA vouches that your public key belongs to the entity that once called itself "Charles Mills" and paid with a credit card? And quis custodiet ipsos custodes? Why should a particular CA be trusted other than the authority of a higher CA? I understand there have been compromised CAs, by hacks rather than intrinsic fraud. -- gil ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to lists...@listserv.ua.edu with the message: INFO IBM-MAIN
