Re: [SAGE] Are cheap SSL certificates legitimate?

[Jonathan Billings <billings@negate.org>]

Sandor W. Sklar wrote:
> We've switched to certs from Comodo (www.instantssl.com), which are much 
> less expensive then those from Verisign (I think they are $70 for a two 
> year cert.)  The main problem has been that not all browsers "trust" 
> these certs; you have to install on your server an certificate chain 
> file that adds this trust level.  Not difficult, just another thing to 
> deal with.

If you're installing a certificate chain file to support a certificate, 
and this is only for a internal site, there's no point buying a $70 SSL 
cert when you can make your own for free.

If the clients using the internal site are using windows and use AD, I 
*believe* there's a way to push out the SSL root through active 
directory.  I've seen it done but haven't ever run my own AD domain.

-- 
Jonathan Billings <billings@negate.org>