[unisog] Free SSL certs for .edu included in browser distributions

Sean Kelly smkelly at creighton.edu
Mon Nov 20 14:42:29 GMT 2006


On Fri, Nov 17, 2006 at 03:24:49PM -0800, Saqib Ali wrote:
> Also make sure that they don't require "SSL Certificate Chaining" to
> install the SSL certs.
> 
> This becomes a real headache soon.....

We've used ipSCA here. Indeed, they do require chained certificates. Like
you say, it is a pain. It isn't too difficult, but just tedious. Especially
teh first time around.

> On 11/17/06, Russell Fulton <r.fulton at auckland.ac.nz> wrote:
> > They don't appear to support Safari which would be an issue for us.
> >
> > How do others feel about wildcard certs?  Our concern is that if one
> > server gets broken into and the private key stolen then they can
> > impersonate any SSL based server on campus.  That's the main reason we
> > have never gone for them.
> >
> > Russell
> >
> > Gary Flynn wrote:
> > > Anyone using these folks or know anything about them:
> > >
> > > http://certs.ipsca.com/
> > >
> > > They also advertise wild card certs with no limit
> > > on hosts for $276.00/year.
> > >
> > > http://certs.ipsca.com/Products/ipsca_ssl_Wildcard_certificates.ASP
> > >
> > > thanks,

-- 
Sean M. Kelly
Unix Systems Architect
Division of Information Technology
Creighton University
(402) 280-2264
AIM: smkellyg5


More information about the unisog mailing list