CAcert.org

Started by broumbroum, September 21, 2010, 22:48:54

Previous topic - Next topic

broumbroum

does anyone already use a CAcert certificate to sign .jar applets ?

Matzon

Quote from: broumbroum on September 21, 2010, 22:48:54
does anyone already use a CAcert certificate to sign .jar applets ?

what would be the point? - java doesn't trust cacert, might as well self-sign.

broumbroum

It does rsa sign and is free.

broumbroum

At least somebody could issue cacerts to verify private ones against cacert root. Cacert requires a doma domain name and thats all. 8)

Matzon

but there are no benefits from the user! They will still get the warning, since Java doesn't trust CAcert.

You could of course ask all your user to install the CACert root certificate in Java, but its hardly a smooth experience for the user.

broumbroum

I d really like to test with a cacert, see keytool has a -cacerttrust opt . No benefit at all, at least the certificate d not be self signed but containing our private key with the cacert.org one. The latter offers third party assurance, which i aknowledge aint fully trusted , unlike verisign or thawte.
Thus i re ask if anyone has ever tried cacert.org. my domainname is broken for a while so i can t validate my private key at the time...  ::)

broumbroum

Sorry, here it is : java code signing
Maybe Freemail ??

kappa

Quote from: broumbroum on September 22, 2010, 15:05:25
Sorry, here it is : java code signing
Maybe Freemail ??


Freemail was the best solution but

"As of november 2009, Thawte freemail program and java codesigning has been discontinued."