Re: Can you really trust the police?

iiiiDougiiii (doug@xxxxxxxxxxxxxxx) gurgled happily, sounding much like
they were saying :

The security certificate presented by this website was not issued by
a trusted certificate authority.

Bollocks!

Not at all.

Quote:

Certificates are the digital equivalent of a government issued
identification card. Certificates, however, are usually issued by
private corporations called certificate authorities (CA). Indymedia UK
has, instead, chosen to use CA Cert (cacert.org), a free and
non-profit certificate authority.

Unfortunately, you need to do a little work to get your software to
recognize CA Cert as a certificate authority. Every CA has a 'root
certificate' which identifies a particular organization as a
certificate authority. Corporate CAs have their root certificates
distributed with most of the major computer programs and operating
systems, and are preconfigured in most web browsers. For CAcert,
however, you need to manually install the cacert.org root
certificate."

The certificate was issued by an untrusted root CA. Exactly what you claim
is "Bollocks". You are knee-jerking in such a way as to show your ignorance
and lack of understanding. Again.

Security certificate problems may indicate an attempt to fool you or
intercept any data you send to the server.
We recommend that you close this webpage and do not continue to this
website.

You recommend censorship? I might have guessed. Typical!

No, the browser does, because the certificate is not issued by a root CA
that is trusted by default. Saying "We trust this root CA, therefore you
should" on the very site that is behind the untrusted certificate shows a
complete misunderstand of chains of trust. Not, of course, that anybody who
refused as a point of principle to trust untrusted certificates would ever
see that.
.

Relevant Pages

  • Re: is http mail secure?
    ... you could set up your own certificate authority on your domain and then ... Authority to all of you clients to add to their trusted root ... Some may have their Certificate Authority preloaded in IE (or ... P.S.S - a certificate is a public encryption key used by your browser to ...
    (microsoft.public.exchange.connectivity)
  • Re: Certificate error - active sync exchange 2003
    ... If the certificate on the exchange server is valid and has been issued from ... an internal certificate authority you will need to add the root certificate ... certificate authority then use the "Enroller" program located on the 6700 to ...
    (microsoft.public.pocketpc.activesync)
  • Re: Remote Web Workplace Stopped Functioning
    ... When I changed our certificate, I found that I had to go into add/remove ... components and make sure certificate authority was enabled. ... SBS and inside the ISA server. ...
    (microsoft.public.windows.server.sbs)
  • Removed MS Cert Authority
    ... hours and will add an entry in the App log and System log. ... Domain Controller certificate. ... Silverback is the name of the Certificate Authority I installed for testing ... Authority and removed the server from the domain approx 3 months ago. ...
    (microsoft.public.windows.server.active_directory)
  • Re: [OT] The PGP Signed Posts Farce
    ... Much like a credit card or a driver's license, a certificate is a form ... web sites offering specialized services that require a means of ... certificate authority and following the on-screen instructions. ... Public/private key pairs and the PKI. ...
    (comp.os.linux.misc)