Certificate Authorities Other Than VeriSign
Jason Slaughter
jason-2F8E0OLjuh154TAoqtyWWQ at public.gmane.org
Wed Oct 15 14:24:44 UTC 2003
> The question was raised tonight of what other possible providers are
> out there. (Apparently some people are Not Entirely Thrilled with
> VeriSign. I have seen some amusing misspellings of their name
> recently...)
There are definitely others out there. The second-largest is GeoTrust, which
are listed here under GeoTrust as well as Equifax--a certificate root they
acquired.
If you're looking for a cert, your best bet is to go to RackShack. They sell
GeoTrust certificates below cost (as well as domains below cost) to drum up
business for their hosting packages:
http://www.ev1servers.net/english/quickssldetails.asp
I don't work for RackShack, so I'm not posting this as an advertisment for
them, but I do work for GeoTrust's largest reseller, which is how I know they
sell below cost. In fact, they sell them about 70% below cost.
Jason
>
> Here are the certificates that are included in the Debian package
> "ca-certificates". The list includes VeriSign-related companies, but
> also a bunch of certs from other organizations.
>
> If you look carefully at your favorite graphical web browser's
> configuration, you will doubtless see a similar list. "Internet
> Exploder" might include a few additional certs...
>
> wolfe:/usr/share/ca-certificates# wajig detail ca-certificates
> Package: ca-certificates
> Priority: optional
> Section: misc
> Installed-Size: 376
> Maintainer: Fumitoshi UKAI <ukai-8fiUuRrzOP3bmG5+kqVDhQ at public.gmane.org>
> Architecture: all
> Version: 20031007
> Depends: openssl, debconf (>= 0.5.00)
> Filename: pool/main/c/ca-certificates/ca-certificates_20031007_all.deb
> Size: 57614
> MD5sum: 122cf049eb18b988c9646a78ae7789e8
> Description: Common CA Certificates PEM files
> It includes the followings PEM files of CA certificates
> .
> * spi-inc.org certificate
> * db.debian.org certificate
> * Mozilla builtin CA certificates
> .
> This is useful for any openssl applications to verify
> SSL connection.
> Enhances: libssl0.9.6, openssl
>
> wolfe:/usr/share/ca-certificates# find
> .
> ./spi-inc.org
> ./spi-inc.org/spi-ca.crt
> ./debian.org
> ./debian.org/db.debian.org.crt
> ./mozilla
> ./mozilla/AOL_Time_Warner_Root_Certification_Authority_1.crt
> ./mozilla/ABAecom_=sub.__Am._Bankers_Assn.=_Root_CA.crt
> ./mozilla/Thawte_Time_Stamping_CA.crt
> ./mozilla/Thawte_Server_CA.crt
> ./mozilla/AOL_Time_Warner_Root_Certification_Authority_2.crt
> ./mozilla/AddTrust_External_Root.crt
> ./mozilla/AddTrust_Low-Value_Services_Root.crt
> ./mozilla/AddTrust_Public_Services_Root.crt
> ./mozilla/AddTrust_Qualified_Certificates_Root.crt
> ./mozilla/America_Online_Root_Certification_Authority_1.crt
> ./mozilla/America_Online_Root_Certification_Authority_2.crt
> ./mozilla/Baltimore_CyberTrust_Root.crt
> ./mozilla/Digital_Signature_Trust_Co._Global_CA_1.crt
> ./mozilla/Digital_Signature_Trust_Co._Global_CA_2.crt
> ./mozilla/Digital_Signature_Trust_Co._Global_CA_3.crt
> ./mozilla/Digital_Signature_Trust_Co._Global_CA_4.crt
> ./mozilla/Entrust.net_Global_Secure_Personal_CA.crt
> ./mozilla/Entrust.net_Global_Secure_Server_CA.crt
> ./mozilla/Entrust.net_Premium_2048_Secure_Server_CA.crt
> ./mozilla/Entrust.net_Secure_Personal_CA.crt
> ./mozilla/Entrust.net_Secure_Server_CA.crt
> ./mozilla/Equifax_Secure_CA.crt
> ./mozilla/Equifax_Secure_Global_eBusiness_CA.crt
> ./mozilla/Equifax_Secure_eBusiness_CA_1.crt
> ./mozilla/Equifax_Secure_eBusiness_CA_2.crt
> ./mozilla/GTE_CyberTrust_Global_Root.crt
> ./mozilla/GTE_CyberTrust_Root_CA.crt
> ./mozilla/GeoTrust_Global_CA.crt
> ./mozilla/GlobalSign_Root_CA.crt
> ./mozilla/RSA_Root_Certificate_1.crt
> ./mozilla/RSA_Security_1024_v3.crt
> ./mozilla/RSA_Security_2048_v3.crt
> ./mozilla/TC_TrustCenter__Germany__Class_2_CA.crt
> ./mozilla/TC_TrustCenter__Germany__Class_3_CA.crt
> ./mozilla/Thawte_Personal_Basic_CA.crt
> ./mozilla/Thawte_Personal_Freemail_CA.crt
> ./mozilla/Thawte_Personal_Premium_CA.crt
> ./mozilla/Thawte_Premium_Server_CA.crt
> ./mozilla/Verisign_Secure_Server_OCSP_Responder.crt
> ./mozilla/UTN-USER_First-Network_Applications.crt
> ./mozilla/ValiCert_Class_1_VA.crt
> ./mozilla/ValiCert_Class_2_VA.crt
> ./mozilla/Verisign_Class_1_Public_Primary_Certification_Authority_-_G2.crt
> ./mozilla/Verisign_Class_1_Public_Primary_Certification_Authority.crt
> ./mozilla/Verisign_RSA_Secure_Server_CA.crt
> ./mozilla/Verisign_Class_1_Public_Primary_Certification_Authority_-_G3.crt
> ./mozilla/Verisign_Class_1_Public_Primary_OCSP_Responder.crt
> ./mozilla/Verisign_Class_2_Public_Primary_Certification_Authority.crt
> ./mozilla/Verisign_Class_2_Public_Primary_Certification_Authority_-_G2.crt
> ./mozilla/Verisign_Class_2_Public_Primary_Certification_Authority_-_G3.crt
> ./mozilla/Verisign_Class_2_Public_Primary_OCSP_Responder.crt
> ./mozilla/Verisign_Class_3_Public_Primary_Certification_Authority.crt
> ./mozilla/Verisign_Class_3_Public_Primary_Certification_Authority_-_G2.crt
> ./mozilla/Verisign_Class_3_Public_Primary_Certification_Authority_-_G3.crt
> ./mozilla/Verisign_Class_3_Public_Primary_OCSP_Responder.crt
> ./mozilla/Verisign_Class_4_Public_Primary_Certification_Authority_-_G2.crt
> ./mozilla/Verisign_Class_4_Public_Primary_Certification_Authority_-_G3.crt
> ./mozilla/Visa_eCommerce_Root.crt
> ./mozilla/Verisign_Time_Stamping_Authority_CA.crt
> ./mozilla/Visa_International_Global_Root_2.crt
> ./mozilla/beTRUSTed_Root_CA.crt
> ./mozilla/beTRUSTed_Root_CA-Baltimore_Implementation.crt
> ./mozilla/beTRUSTed_Root_CA_-_Entrust_Implementation.crt
> ./mozilla/beTRUSTed_Root_CA_-_RSA_Implementation.crt
--
The Toronto Linux Users Group. Meetings: http://tlug.ss.org
TLUG requests: Linux topics, No HTML, wrap text below 80 columns
How to UNSUBSCRIBE: http://tlug.ss.org/subscribe.shtml
More information about the Legacy
mailing list