[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Full-Disclosure] Free x.509 Certs (WAS Re: NEVER open attachments)
- To: full-disclosure@xxxxxxxxxxxxxxxx
- Subject: [Full-Disclosure] Free x.509 Certs (WAS Re: NEVER open attachments)
- From: Jeremiah Cornelius <jeremiah@xxxxxxx>
- Date: Sun, 21 Mar 2004 07:56:51 -0800
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On Saturday 20 March 2004 19:16, Bill Royds wrote:
> So the value of signing your messages doesn't really scale.
> That is why S/MIME is used by most commercial MUA's. Even though you have
> to pay for the certificate, you can pretty well guarantee that the public
> key will be available when one needs to verify the message.
You don't have to pay for the certificate to use S/MIME. You don't have to be
self-signed for free x.509 personal certs.
I have been using the Comodo issued, InstantSSL certs for S/MIME and document
encryption/verification. There has never been a hitch in validating the
certification path.
Thawte has free personal certificates as well. They used to implement a
strange "web of trust", where you could visit a notary to validate your
identity. PITY.
IPSCA has free personal certs too. No experience with them, but they are in
the Mozilla/IE root cert stores.
http://www.instantssl.com/ssl-certificate-products/free-email-certificate.html?currency=USD®ion=North%
20America
https://www.thawte.com/cgi/enroll/personal/step1.exe
http://certs.ipsca.com/Products/SMIME.asp
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
iD8DBQFAXbtDJi2cv3XsiSARAoE7AJ4j0TP39meu1TfR3VIcDZyM3USnBwCg+xu0
ASbi1i8T0gGo4Wo0msdJMiw=
=pA7r
-----END PGP SIGNATURE-----
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html