Skip to Content.
Sympa Menu

cacert-de - A new (?) take on CAcert & debian

Subject: Deutschsprachige CAcert Support Liste

List archive

A new (?) take on CAcert & debian

Chronological Thread 
  • From: Nick Jacobs <nj140824 AT>
  • To: "cacert-de AT" <cacert-de AT>
  • Subject: A new (?) take on CAcert & debian
  • Date: Mon, 24 Mar 2014 10:30:49 -0700 (PDT)
  • Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024;; h=X-YMail-OSG:Received:X-Rocket-MIMEInfo:X-Mailer:References:Message-ID:Date:From:Reply-To:Subject:To:In-Reply-To:MIME-Version:Content-Type; b=sRioVwU5TfWoB0EtYyFqvCuJd1L3Yvc7iyHl60xhEdc2iThv2R0p8rwg3+psDpo4IF00Ks0aPtJZNTCuX4ptczp4AIOUnPKXb0jGqUJFdXygP4WmpcRtztIj06de0BVsTkQ29XOZZSH3KC7csJeZNSbIb/D/Im28ATFnUAvSnLc=;

I think the community may have unreasonable expectations of CAcert.
Why do CAcert certificates have to be free of charge? Free as in freedom does not necessarily entail freedom from cost. It costs a lot of resources to complete a proper audit of a certifying authority.
People will work at software development without payment because software development is fun. Going through the tedious, but essential, procedure to complete an audit is not fun. If we want it done, properly, we're going to have to pay for it.

I'd have no problem paying a modest amount for a CAcert certificate. Presumably, the operation could be run on a not-for-profit basis and so the certificates would cost much less than the ~ $1,000/year charged by companies like Symantec.

This is just a thought - not a proposal. I don't know what it would take to get CAcert properly audited, beyond the obvious fact that it will take more resources than CAcert will be able to apply in the foreseeable future. Maybe somebody who fully understands the whole process can comment?

I have also seen (somewhere) the rumour that to get Microsoft to recognise a CA for MSIE requires a $50,000 payment to Microsoft. Since MSIE has a shrinking market share, I don't see the need to pay that. I assume that Mozilla and Google just want to see evidence of an audit. But again, maybe someone who knows the facts can comment.


From: Jörg Frings-Fürst <cert AT>
To: cacert-de AT
Sent: Monday, 24 March 2014, 16:40
Subject: CAcert & debian

Archive powered by MHonArc 2.6.18.

Top of Page