Slashdot Mirror

← Back to Stories (view on slashdot.org)

Cheap SSL Certificates for Small Websites?

Posted by Cliff on from the why-can't-we-be-our-own-certificate-authority dept.

zaqattack911 asks: "In the workplace today it is becoming more and more common for everyday applications to be accessible over the web. Just about all the booking and tracking systems at my job are handled via web-apps these days. Along with this trend, is the increased need for secure transactions over the web. Just about all of the apps on my webserver are going to be SSL only. Some of them are for internal use only, some for the outside internet to use. Is there a cheap alternative to getting your certificates signed? Self signing my certificates works of course, but just about all browsers make a big fuss about it. Verisign asks for about 400$ initially, and 300$ to renew a certificate every year. This seems like a scam to me, and I'd love to know if anyone knows of alternatives out there? Is there a way to get around the certificate signing business? I looked at a company called RSA Security which allows a company to 'self sign' and use their accepted signature. The website doesn't mention the price, and I'm sure it's not very affordable. What else is there?"

6 of 436 comments (clear)

  1. RSA Who? by Blrfl · · Score: 3, Funny

    Never heard of 'em. Must be some fly-by-night operation. :-)

  2. Poor Cliff by uberdave · · Score: 3, Funny

    Why Are SSL Certificates So Expensive? by Cliff with 192 comments on Sunday March 18, @04:48PM http://ask.slashdot.org/article.pl?sid=01/03/18/18 55230&mode=thread&tid=93

    Are FreeSSL Certs Worthwhile? by Cliff with 8 comments on Friday September 07, @11:50AM http://ask.slashdot.org/article.pl?sid=01/09/06/04 51218&mode=thread&tid=148

    Poor Cliff. Perhaps he will get an answer this time around.

    --
    "I'm not impatient. I just hate waiting." - My Dad
  3. free certs by farnsworth · · Score: 2, Funny

    simply code up an activeX control that appends the following to the client's c:/windows/system32/drivers/etc/hosts file:

    ca.verisign.com <your.openssl.server>

    --

    There aint no pancake so thin it doesn't have two sides.

  4. company called RSA Security by stud9920 · · Score: 2, Funny
    I looked at a company called RSA Security
    • I bought a "computer" by a company called "Apple". Anyone heard of that one ?
    • I purchased a "CPU" from a company called "Intel". Anyone knows that one ?
    • I bought a "technical book" from a publisher called "O'reilly". I like trying obscure publishers, you never know...
  5. Re:Cheapass trusted SSL certs by Anonymous Coward · · Score: 1, Funny

    If I open my browser preferences, and view the certificate list, I see a text saying something about "the list of certificates you trust". Looking at the list, I see names like Verisign, and think "Why the hell should I trust a company named Verisign", and hit delete.

  6. Re:Thawte by Zak3056 · · Score: 3, Funny

    Greedy mother fucking bastard cum-lapping whore dicks.

    Only on slashdot could the above EVER be considered "+5, Insightful."

    --
    What part of "shall not be infringed" is so hard to understand?