[clue-tech] CAcert issues
Angelo Bertolli
angelo at freeshell.org
Wed Mar 30 22:15:03 MST 2005
David Anselmi wrote:
> Angelo Bertolli wrote:
> [...]
>
>> The other thing about do-it-yourself CA is that without a third
>> party, there's really no point int having a CA anyway.
>
>
> Nonsense. You need a CA to create certificates, which browsers use
> for authentication. You can use a third party CA for assurance or
> some other mechanism. For casual browsing they are probably identical
> and for serious browsing a third party is more likely to be
> inadequate. SSH, which uses the same public key crypto as TLS/SSL
> *doesn't* use certificates at all. It can still provide assured
> authentication, but through a different mechanism.
I just looked at it and CACertificateFile is equal to CertificateFile.
So, I don't know what that means.
Angelo
More information about the clue-tech
mailing list