A better approach to security

[Pete Stephenson <pete AT heypete.com>]

On Sat, Feb 20, 2010 at 10:47 PM, Philip Rhoades <phil AT pricom.com.au> wrote:
> People,
>
> Value of CAcert certificates?:
>
> I am interested in joining your community because I have just discovered the
> problem with self-signed certificates (for a private, non-profit, 
> non-financial
> site) and
> FF3 etc.  However, when I click on your "Join" link I get FF3's "This
> Connection is Untrusted" message - does this mean that CAcert is not 
> accepted
> as a major CA?

Correct. For now, many browsers treat CAcert-issued certificates the
same as self-signed certificates.

While there are many advantages of CAcert-issued certs over
self-signed certs, it may not always meet your requirements. There are
several other CAs out there that offer similar services if CAcert is
not satisfactory: StartSSL.com, GoDaddy.com (Google search for
"godaddy ssl", they often have coupons, etc.), and so on.

In order to resolve the particular issue you have, you'll need to
import and trust the CAcert root into your browser before joining.

Cheers!
-Pete

-- 
Pete Stephenson