[TriLUG] OpenCA, anyone else looked into this?

Tanner Lovelace lovelace at wayfarer.org
Sun Jul 4 16:59:07 EDT 2004


Kevin Flanagan said the following on 7/4/04 8:20 AM:

> Hi all,
> 
> 
> 	I was reading about this on Slashdot the other day,
> http://www.cacert.org/, and wondered what anyone else thought about it. 
> They ask for ID information that I think twice about handing out,
> drivers license # or something like that.....
> 
> 
> 
> Thoughts?

I'm not sure what this would give us over what we've got right now.
They've created their own certificate authority.  That's nice, but
they still make you install their root certificate.  That's
*exactly* what we have too.  We created our own certificate
authority for our SSL websites.  The user also has to install
our root certificate (http://www.trilug.org/cgi-bin/loadCAcert.cgi).

Now, something we could think about would be to use the CA that
we've created to sign trilug member SSL certs.  That way, members
wouldn't have to create their own CA, they could just use ours.
Jon, is that what you were thinking about?  That might be an
interesting member benefit we could offer.  We'd need to come up
with some ground rules and make sure we still remember our
CA's password O:-), but it's certainly doable.

Any thought on that?

Cheers,
Tanner



More information about the TriLUG mailing list