W3C home > Mailing lists > Public > public-webapps@w3.org > October to December 2011

Re: AW: AW: AW: WebSocket API: close and error events

From: Ian Hickson <ian@hixie.ch>
Date: Tue, 25 Oct 2011 21:18:54 +0000 (UTC)
To: Tobias Oberstein <tobias.oberstein@tavendo.de>
cc: Simon Pieters <simonp@opera.com>, "public-webapps@w3.org" <public-webapps@w3.org>
Message-ID: <Pine.LNX.4.64.1110252118240.14432@ps20323.dreamhostps.com>
On Tue, 25 Oct 2011, Tobias Oberstein wrote:
> 
> There are situations when self-signed certs are quite common like on 
> private networks or where self-signed certs might be "necessary", like 
> with a software appliance that auto-creates a self-signed cert on first 
> boot (and the user is too lazy / does not have own CA).

A self-signed cert essentially provides you with no security. You might as 
well be not bothering with encryption.

-- 
Ian Hickson               U+1047E                )\._.,--....,'``.    fL
http://ln.hixie.ch/       U+263A                /,   _.. \   _\  ;`._ ,.
Things that are impossible just take longer.   `._.-(,_..'--(,_..'`-.;.'
Received on Tuesday, 25 October 2011 21:23:20 GMT

This archive was generated by hypermail 2.3.1 : Tuesday, 26 March 2013 18:49:48 GMT