We have been getting our certificates from Verisign...who appear to me
to be getting an awful lot of money for a wisp of virtuality, for all
that they are the standard of the industry. We have a server that now
needs a certificate and I went looking for cheaper certificates; I came
up with some alternatives that I'd like your input/experience feedback on:
- Your experience with less expensive CAs and their certificates
- Digicert has single certificates for $100. Has anyone done business
with them/used their certificates?
- They have a wildcard certificate, $449 for multiple single-level
domains (*.bard.edu would cover all our sub-domains) AND multiple
servers. Sounds too good to be true...one certificate for all your
subdomains and servers. Note that it seems that the WC cert works for
something like *.bard.edu....if you have other domains hosted as apache
aliases, like wombat.org, this would not cover them.
= Has anyone had expereience with any WC Cert
= With Digicert's WC Certs?
I came across this 1.5 year old discussion of them in one of the
O'Reilly blogs....
about 2/3rds the way down the page (search for wildcard), read all the
pieces. Note that:
1) The posts are about 1.5 years old, so presumably what little problems
there were have been resolved
2) There may be browser issues, but that may be a dead issue by now,
such as
3) You may only get one level from your splat (apparently IE 6 was fussy
about this, dunno about IE7), i.e. mail.wombat.org works for
*.wombat.org but www.mail.wombat.org may not
http://www.onlamp.com/pub/a/apache/2005/02/17/apacheckbk.html
--
====
Stewart Dean, Unix System Admin, Henderson Computer Resources
Center of Bard College, Annandale-on-Hudson, New York 12504
[EMAIL PROTECTED] voice: 845-758-7475, fax: 845-758-7035
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
