Comments on: Extra Pepperoni Is Now SSL Protected http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/ Chris Pepper on whatever (the non-Julia blog) Thu, 20 Nov 2008 08:14:36 +0000 http://wordpress.org/?v=2.6.3 By: reppep http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-278 reppep Fri, 15 Feb 2008 14:47:42 +0000 http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-278 <p>chsweb,</p> <p>Thanks for that softball!</p> <p>The answer is I made it myself with <code>openssl</code> (and my handy-dandy <code>cert.command</code>): <a href="http://www.extrapepperoni.com/2007/06/25/securing-communications-with-ssltls-a-high-level-overview/" target="external" rel="nofollow">http://www.extrapepperoni.com/2007/06/25/securing-communications-with-ssltls-a-high-level-overview/</a></p> chsweb,

Thanks for that softball!

The answer is I made it myself with openssl (and my handy-dandy cert.command): http://www.extrapepperoni.com/2007/06/25/securing-communications-with-ssltls-a-high-level-overview/

]]> By: chsweb http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-277 chsweb Fri, 15 Feb 2008 10:54:43 +0000 http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-277 <p>Iv been thinking about getting one. How have you managed ti get one without purchasing the actual certificate?</p> Iv been thinking about getting one. How have you managed ti get one without purchasing the actual certificate?

]]> By: reppep http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-274 reppep Tue, 12 Feb 2008 01:49:23 +0000 http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-274 <p>MacMacken,</p> <p>I don't agree. I'm protecting my password from sniffing, and protecting the confidentiality of commenters. The SSL protection is completely effective for that. For my personal blog, spending a few hundred dollars a year to trust my own certificate would be a waste. If you don't like, it, don't login; if you login and the cert has been subverted, you're no worse off than if there was none.</p> <p>But the risk of sniffing anywhere across the Internet is much lower than the risk of EP being compromised.</p> <p>I prefer to think I'm educating people about private certs and how to work with them, and practicing what I preach.</p> MacMacken,

I don’t agree. I’m protecting my password from sniffing, and protecting the confidentiality of commenters. The SSL protection is completely effective for that. For my personal blog, spending a few hundred dollars a year to trust my own certificate would be a waste. If you don’t like, it, don’t login; if you login and the cert has been subverted, you’re no worse off than if there was none.

But the risk of sniffing anywhere across the Internet is much lower than the risk of EP being compromised.

I prefer to think I’m educating people about private certs and how to work with them, and practicing what I preach.

]]> By: MacMacken http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-273 MacMacken Sun, 10 Feb 2008 23:00:17 +0000 http://www.extrapepperoni.com/2008/02/10/extra-pepperoni-is-now-ssl-protected/#comment-273 <p>Good intension, bad action. Can't you afford a valid SSL certificate? A valid SSL certificate isn't that expensive!</p> <p>SSL certificates like yours make users no longer validate the SSL connections they use since they consider SSL error messages a part of their browsing … SSL only makes sense if it's more than just a nice padlock icon.</p> Good intension, bad action. Can’t you afford a valid SSL certificate? A valid SSL certificate isn’t that expensive!

SSL certificates like yours make users no longer validate the SSL connections they use since they consider SSL error messages a part of their browsing … SSL only makes sense if it’s more than just a nice padlock icon.

]]>