amen! it nice to see that some country can relate to this thread. it is quite difficult for us to purchase a digital certification worth 20000PHP!!! ridiculous.
as mentioned in other threads, self-signed certificates then to be neglected by the users. it even sometimes scares users. i should know because nearly the entire SSL infrastructure in our university uses a self-signed certificate.
sometimes, it is not about making money. it is sometimes about getting people to trust the sites you have and guarantee a certain level of security.
after reading a lot of your comments, i am given the impression that verisign and thawte certificates are given without that much scrutiny after all. They cannot be completely trusted?
Yes, they do save a few browser clicks and can prevent the users to not accidentally place an untrusted site into their trust network. But for most people, this is important. The two to six new windows that pop out before the user are enough to scare the user from visiting the site. Most users do not really know who secure is secure. all they know is that if the little padlocked is locked in their browsers everything is okay. however, if they see these annoying windows they might get confused and latter scared.
Country-controlled CA are in a better possible to verify the existence of the said company or site. Since, they have access to local business registration records. They can do all these and at the same time not charge an arm and a leg for a measly certificate.
SSL is important.Aside from securing the http connections from evesdropping, it is also able to prevent sessions from going a stray.
we have been using horde/imp in our university and before forcing people to use the SSL connection other people can "accidentally" login to another persons account. which should not be the case!!Even little things like this can be solved by the use of SSL over HTTP.
but, how do we make browsers access CA's automatically such as those assigned by verisign. the root CA (verisign) must be quite buddy-buddy with the browser makers to get their root CAs in.
and country root CAs are in a better position to verify the company or requestor in question.
the only reason why i am pointing out the fact that: verisign is a foriegn country to us...is because it would have saved on costs if the CA were a local one and charged local rates. verisign just has totally outrageous rates if taken in the context of a third world country.
i believe that the newspaper made a typo. why the f*ck would you ban the internet cafes from 7am to 5pm??? and besides the article read "curfew". so, i suppose that it meant 7pm to 5am.
isn't 7pm to early for a curfew? and why have a daytime curfew. personally, this law does not make sense.
i do believe that caldera has one too. but, for me it is still a moot point because i still find it easier to install using redhat's installer(glint i presume).
the reasons are not because of coolness of looks but because of its easy to use interfact.
caldera has its pluses too. first of all, its installer autodetects much of my hardware automagically while glint does not detect my i740 because of problems with xfree 3.3.3 but i was able to download the rpms somewhere. second, caldera has a cool tetris game to play while waiting.
i have not see panorama yet but i am downloading it right now.
what if panorama cannot detect your video card while loading the installer?
Slashdot Mirror
it's called the BORG my friend.
if UUNET is the borg of IP transit
if MS is the borg of desktop software (and the world)
then verisign must be
amen! it nice to see that some country can relate to this thread. it is quite difficult for us to purchase a digital certification worth 20000PHP!!! ridiculous.
as mentioned in other threads, self-signed certificates then to be neglected by the users. it even sometimes scares users. i should know because nearly the entire SSL infrastructure in our university uses a self-signed certificate.
sometimes, it is not about making money. it is sometimes about getting people to trust the sites you have and guarantee a certain level of security.
after reading a lot of your comments, i am given the impression that verisign and thawte certificates are given without that much scrutiny after all. They cannot be completely trusted?
Yes, they do save a few browser clicks and can prevent the users to not accidentally place an untrusted site into their trust network. But for most people, this is important. The two to six new windows that pop out before the user are enough to scare the user from visiting the site. Most users do not really know who secure is secure. all they know is that if the little padlocked is locked in their browsers everything is okay. however, if they see these annoying windows they might get confused and latter scared.
Country-controlled CA are in a better possible to verify the existence of the said company or site. Since, they have access to local business registration records. They can do all these and at the same time not charge an arm and a leg for a measly certificate.
SSL is important.Aside from securing the http connections from evesdropping, it is also able to prevent sessions from going a stray. we have been using horde/imp in our university and before forcing people to use the SSL connection other people can "accidentally" login to another persons account. which should not be the case!!Even little things like this can be solved by the use of SSL over HTTP.
but, how do we make browsers access CA's automatically such as those assigned by verisign. the root CA (verisign) must be quite buddy-buddy with the browser makers to get their root CAs in.
and country root CAs are in a better position to verify the company or requestor in question.
the only reason why i am pointing out the fact that: verisign is a foriegn country to us...is because it would have saved on costs if the CA were a local one and charged local rates. verisign just has totally outrageous rates if taken in the context of a third world country.
what has this comment have to do with linux?
i believe that the newspaper made a typo. why the f*ck would you ban the internet cafes from 7am to 5pm??? and besides the article read "curfew". so, i suppose that it meant 7pm to 5am.
isn't 7pm to early for a curfew? and why have a daytime curfew. personally, this law does not make sense.
i do believe that caldera has one too. but, for me it is still a moot point because i still find it easier to install using redhat's installer(glint i presume).
the reasons are not because of coolness of looks but because of its easy to use interfact.
caldera has its pluses too. first of all, its installer autodetects much of my hardware automagically while glint does not detect my i740 because of problems with xfree 3.3.3 but i was able to download the rpms somewhere. second, caldera has a cool tetris game to play while waiting.
i have not see panorama yet but i am downloading it right now.
what if panorama cannot detect your video card while loading the installer?