3 Jun
2016
3 Jun
'16
1:31 a.m.
Jason White via luv-talk wrote:
Russell Coker via luv-talk <luv-talk@luv.asn.au> wrote:
They usually only allow one DNS name so they can make you pay more for a second or for a wildcard certificate.
That's why letsencrypt.org and similar initiatives are long over due and also valuable.
I would only pay for a certificate that had a real identity verification service behind it (requiring, e.g., presentation of government-approved ID).
Obligatory TOFU advocacy linkspam: https://blogs.fsfe.org/jens.lechtenboerger/2014/04/05/certificate-pinning-fo... https://blogs.fsfe.org/jens.lechtenboerger/2014/03/23/certificate-pinning-fo... https://blogs.fsfe.org/jens.lechtenboerger/2014/03/10/certificate-pinning-wi... http://ssrn.com/abstract=2249042