[clue-tech] CAcert issues
Greg Knaddison
greg.knaddison at gmail.com
Tue Mar 29 21:24:07 MST 2005
On Tue, 29 Mar 2005 20:03:01 -0700, David Anselmi <anselmi at anselmi.us> wrote:
> > Does anyone use their certificates? I understand that these free
> > certs can be a problem, because they do not have a root certificate
> > in most browsers.
>
> I don't use them. Until they are included in browsers (can the Linux
> distros do that, or does it have to be the Mozilla developers?) I don't
> think their certs are much better than a do-it-yourself CA. Perhaps a
> little better if you're clueless about what's important than a CA.
I would say that it has caused some discussion...
http://lists.caosity.org/pipermail/centos-devel/2004-December/000407.html
Including some within Mozilla:
https://bugzilla.mozilla.org/show_bug.cgi?id=215243
http://www.hecker.org/mozilla/
>
> I don't think it would be hard for Mozilla or a Linux distro to trust
> CAcert, I don't know what the hangup is. MS requires an audit by, e.g.,
> KPMG that costs a bunch. So a free service is unlikely to get included.
>
It's certainly not a technical challenge, the CentOS people did it
(not to demean their skills at all...). It is certainly very _hard_
to do it for a variety of reasons.
Greg
More information about the clue-tech
mailing list