newsNews: Announce: SSL certificates renewed

 
 
Show feedback again
Latest News
Gna.org SSL certificate renewed posted by zerodeux, Thu 24 Apr 2014 07:13:06 AM UTC - 0 replies
Heartbleed status and measures posted by beuc, Wed 09 Apr 2014 09:47:29 AM UTC - 1 reply
mail subsystem automatically reinstalled posted by beuc, Sat 08 Mar 2014 11:02:17 PM UTC - 0 replies
Reboot posted by beuc, Tue 04 Mar 2014 10:14:15 PM UTC - 2 replies
download+homepage subsystem automatically reinstalled posted by beuc, Sun 02 Mar 2014 09:53:20 PM UTC - 9 replies
[122 news in archive]

Security Announce: SSL certificates renewed

Item posted by Mathieu Roy <yeupou> on Sun 15 Feb 2004 12:07:47 PM UTC.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

SSL certificates for gna.org and mail.gna.org has been renewed for 1200 days.

These certificates are not signed by a real certificate authority: their purpose is not to confirm our identity but to provide you a way to be sure that https://gna.org and https://mail.gna.org today are running on the same machine they were yesterday. Also, certificates are required for an https server to run, and https is a way to secure all the data transiting between your computer and our servers, like authentication information.

Mathieu Roy <yeupou@gnu.org> for Gna!
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)

iD8DBQFAL2A4Nl9/9y2hmbkRAiPcAJ9Xiga+gQ3id7tXOSD/1Hb/P6U/XQCfTHMy
TfHV7PRmo+hxCvkaoAa5ces=
=e0N+
-----END PGP SIGNATURE-----

Comments:

Message: 105
RE: gna! CA certificate? (posted by kemuri, Sun 15 Feb 2004 10:13:40 PM UTC)

It's not really a problem. I mean, when you sign your CSR for https://gna.org, you use your own Certification Authority (CA) I presume. You do what Versign/Thawte does.

Well, the browsers ofcourse don't recognize you as a CA, but you can make them recognize by making your CA certificate (ca.cert or better ca.crt) available online.
This will let the browser not complain and ask for acknowledgement all the time.

Just put your ca.crt in webroot and surf to it with mozilla. Should work. Otherwise one can import it via the Options.

(see openssl.org ofcoz)

It's just a thought :)

Thread Author Date
gna! CA certificate?kemuriSun 15 Feb 2004 02:55:21 PM UTC
      RE: gna! CA certificate?yeupouSun 15 Feb 2004 07:45:23 PM UTC
            RE: gna! CA certificate?kemuriSun 15 Feb 2004 10:13:40 PM UTC
                  RE: gna! CA certificate?yeupouMon 16 Feb 2004 11:18:42 AM UTC

 

Post a followup to this message

You could post if you were logged in
Show feedback again

Back to the top


Powered by Savane 3.1-cleanup