Slashdot Mirror

← Back to Stories (view on slashdot.org)

SSL Still Mostly Misunderstood, Even By the Pros

Posted by timothy on from the duh-it's-encrypted dept.

An anonymous reader writes "People still don't understand SSL. This isn't much of a surprise... no one expects that grandma and grandpa know what SSL is and what it does. What is surprising and downright scary is that most IT professionals don't understand SSL, and many consider it to be the be-all, end-all of security in their organization. With all the tools out there to manipulate SSL connections, and the browser vendors unable to settle on a single method of showing if a site is secured by SSL or not, is it any wonder that no one gets it?"

2 of 292 comments (clear)

  1. Re:Moderators, are you all friggin' retards? by L4t3r4lu5 · · Score: 0, Troll

    Xvaq bs yvxr hfvat n ebgngvbany plcure

    --
    Finally had enough. Come see us over at https://soylentnews.org/
  2. Re:SSL is trying to do too much. by nine-times · · Score: 0, Troll

    Sure, but my point about DNS is, imagine if you could get your SSL up and running with a self-signed cert, you dump that cert into your DNS record for that domain name, and you're your own certificate authority. That's not a huge expense of your time and could be done free. What's the downside?