Home page logo
/

fulldisclosure logo Full Disclosure mailing list archives

Free x.509 Certs (WAS Re: NEVER open attachments)
From: Jeremiah Cornelius <jeremiah () nur net>
Date: Sun, 21 Mar 2004 07:56:51 -0800

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Saturday 20 March 2004 19:16, Bill Royds wrote:
So the value of signing your messages  doesn't really scale.
That is why S/MIME is used by most commercial MUA's. Even though you have
to pay for the certificate, you can pretty well guarantee that the public
key will be available when one needs to verify the message.

You don't have to pay for the certificate to use S/MIME.  You don't have to be 
self-signed for free x.509 personal certs.

I have been using the Comodo issued, InstantSSL certs for S/MIME and document 
encryption/verification.  There has never been a hitch in validating the 
certification path.

Thawte has free personal certificates as well.  They used to implement a 
strange "web of trust", where you could visit a notary to validate your 
identity.  PITY.

IPSCA has free personal certs too.  No experience with them, but they are in 
the Mozilla/IE root cert stores.

http://www.instantssl.com/ssl-certificate-products/free-email-certificate.html?currency=USD&region=North%
20America

https://www.thawte.com/cgi/enroll/personal/step1.exe

http://certs.ipsca.com/Products/SMIME.asp



-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAXbtDJi2cv3XsiSARAoE7AJ4j0TP39meu1TfR3VIcDZyM3USnBwCg+xu0
ASbi1i8T0gGo4Wo0msdJMiw=
=pA7r
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault