Microsoft deems all DigiNotar certificates untrustworthy, releases

Peter Kristolaitis alter3d at alter3d.ca
Tue Sep 13 09:48:21 CDT 2011


Really?  You can "just connect" with SSH?

root at somebox:~# ssh 1.2.3.4
The authenticity of host '1.2.3.4 (1.2.3.4)' can't be established.
RSA key fingerprint is 03:26:2c:b2:cd:fd:05:fc:87:70:4b:06:58:40:e7:c3.
Are you sure you want to continue connecting (yes/no)?

That's no different that having to permanently accept a self-signed SSL 
cert...

- Pete


On 9/13/2011 10:29 AM, Tei wrote:
> *a random php programmer shows*
>
> He, I just want to self-sign my CERT's and remove the ugly warning that
> browsers shows. I don't want to pay 1000$ a year, or 1$ a year for that. I
> just don't want to use cleartext for internet data transfer.  HTTP is like
> telnet, and HTTPS is like ssh. But with ssh is just can connect, with
> browsers theres this ugly warning and "fuck you, self-signed certificate"
> from the browsers.  Please make the pain stop!.
>
> --Tei
>




More information about the NANOG mailing list