On 12/14/08 7:04 PM, "Thomas J. Hruska" <shineli...@shininglightpro.com> wrote:
> I keep a lookout for truly free AND integrated SSL certificates. The > main sticking point with that company is IE. They ARE NOT in the root > certificate store in IE.* They ARE in the root certificate store in > Firefox and Safari. > > http://cert.startcom.org/ > > * I went to Windows Update and there was an update to the Root Certs. I > updated and the cert. still does not exist in my Root Certificate Store. > So, I'm pretty sure they either aren't in the program or Microsoft > doesn't care enough to deploy their cert. > > A free cert. in IE/Windows Root Certs. would completely change the SSL > cert. game. Companies like Verisign would be FORCED to stop their price > gouging for SSL certs. I see no logical reason to pay $500 for a couple > KB of data...annually. i've been trying out startcom today and don't think it's going to work for me. if i can't get rid of the security warnings from ie6+ and ff2+ (without users having to do anything fancy) then it's no good. btw, i tried out their free signing servcies on a csr with three DNS names in the subjectAltName and it ignored those extensions. seems they require their $25 Class 2 identity validation for multiple domain names. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
