- From: Poul-Henning Kamp <phk@phk.freebsd.dk>
- Date: Mon, 26 Mar 2012 10:19:52 +0000
- To: "Adrien W. de Croy" <adrien@qbik.com>
- cc: "Peter Saint-Andre" <stpeter@stpeter.im>, "Mike Belshe" <mike@belshe.com>, "Roy T. Fielding" <fielding@gbiv.com>, "patrick mcmanus" <pmcmanus@mozilla.com>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
In message <emb750f05b-e5c7-4cb5-8be6-6718344b0784@boist>, "Adrien W. de Croy" writes: >In the end though, even if the certificate itself isn't charged for, >there's still a cost involved in obtaining and installing it. > >Generating a signing request etc, importing the certificate and >managing the private key. > >These add a significant requirement to many HTTP server deployment >scenarios, not the least in terms of level of knowledge of the person >doing it. Not to mention the almost certainty that some low-end vendor will deliver millions of "web-enabled" gadgets with the same built in cert. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence.
Received on Monday, 26 March 2012 10:20:27 UTC