[Scmail] Re: Certificate Expired

[Mike Easter]

David Dean wrote:
>  "Mike Easter"

>> That is, what the hell/heck (choose your expletive, sh*t/f*ck) is a
>> 'server certificate' as it applies to pop.spamcop.net?  Or
>> mx.spamcop.net/ mx2.spamcop.net for that matter?
>
>    The SSL certificate.

Here's some wiki snippage:

http://en.wikipedia.org/wiki/Secure_Sockets_Layer Transport Layer
Security (TLS) and its predecessor, Secure Sockets Layer (SSL), are
cryptographic protocols that provide secure communications
<snip>
Certificate providers
A 2005 Netcraft survey determined that VeriSign and its acquisitions
such as Thawte have a 53% share of the certificate authority market,
followed by GeoTrust (25%), Comodo (12%), GoDaddy (4%) and Entrust
(2%).[1] (GeoTrust has since been acquired by VeriSign.)

A more recent market share report from Security Space as of April 2007
determined that VeriSign and its acquisitions (including GeoTrust) have
a 59.6% share of the certificate authority market, followed by Comodo
(8.3%), GoDaddy (5.3%), DigiCert (2.1%), Entrust (1.3%) and Network
Solutions (1.1%).

CAcert.org is a community-driven certificate authority that issues free
public key certificates.
</snip>

http://en.wikipedia.org/wiki/CAcert.org  CAcert.org is a
community-driven certificate authority that issues free public key
certificates to the public using proprietary source code.[1] (Most CAs
are commercial and sell certificates at a price of hundreds of dollars
per year.) More than 39,000 users have had their identity verified and
CAcert has issued over 150,000 certificates as of September 2006.

http://wiki.cacert.org/wiki/ServerCerts  Server Certificate FAQs -
Benefits: Enable encrypted data transfer for users accessing web, email,
or other SSL enabled services on your server; wildcard certificates are
allowed.




-- 
Mike Easter
kibitzer, not SC admin