CAcert.org

broumbroum · September 21, 2010, 22:48:54

does anyone already use a CAcert certificate to sign .jar applets ?

Matzon · September 22, 2010, 07:42:50

Quote from: broumbroum on September 21, 2010, 22:48:54
does anyone already use a CAcert certificate to sign .jar applets ?

what would be the point? - java doesn't trust cacert, might as well self-sign.

broumbroum · September 22, 2010, 10:29:12

It does rsa sign and is free.

broumbroum · September 22, 2010, 10:40:22

At least somebody could issue cacerts to verify private ones against cacert root. Cacert requires a doma domain name and thats all.

Matzon · September 22, 2010, 11:45:31

but there are no benefits from the user! They will still get the warning, since Java doesn't trust CAcert.

You could of course ask all your user to install the CACert root certificate in Java, but its hardly a smooth experience for the user.

broumbroum · September 22, 2010, 12:58:59

I d really like to test with a cacert, see keytool has a -cacerttrust opt . No benefit at all, at least the certificate d not be self signed but containing our private key with the cacert.org one. The latter offers third party assurance, which i aknowledge aint fully trusted , unlike verisign or thawte.
Thus i re ask if anyone has ever tried cacert.org. my domainname is broken for a while so i can t validate my private key at the time...

broumbroum · September 22, 2010, 15:05:25

Sorry, here it is : java code signing
Maybe Freemail ??

kappa · September 22, 2010, 15:28:09

Quote from: broumbroum on September 22, 2010, 15:05:25
Sorry, here it is : java code signing
Maybe Freemail ??

Freemail was the best solution but

"As of november 2009, Thawte freemail program and java codesigning has been discontinued."

News:

CAcert.org