[65715] in North American Network Operators' Group
Re: Does your Certifying Authority have a clue who you are? Do they care?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Fri Dec 5 13:29:05 2003
To: Mark Foster <mark@foster.cc>
Cc: nanog@nanog.org
In-Reply-To: Your message of "Fri, 05 Dec 2003 10:14:48 PST."
<3FD0CB18.8090203@foster.cc>
From: Valdis.Kletnieks@vt.edu
Date: Fri, 05 Dec 2003 13:28:09 -0500
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_272875253P
Content-Type: text/plain; charset=us-ascii
On Fri, 05 Dec 2003 10:14:48 PST, Mark Foster said:
> The CA does not popup a warning. It is the browser or client application
> that does this.
The three ways to disable the popup:
1) Have the user accept a CA cert for your site. Help Desk Nightmare.
2) Have the user disable the popup. Help Desk Nightmare.
3) Get the top-level-CA cartel to accept your CA cert in the list of ones
bundled into IE.
Yes, it's a cartel, and yes, actions taken by said cartel are at least partially
responsible for the pop-up happening.
--==_Exmh_272875253P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQE/0M45cC3lWbTT17ARAsHrAJ0ea7u2Pp2mn98H4uUCD5BMVnVjLgCcDJ2I
kDh0GZM88aCkZ9SWh9JGSSY=
=pphg
-----END PGP SIGNATURE-----
--==_Exmh_272875253P--
