YDL.net signon screen is not secure... What to do about it?
Atro Tossavainen
yellowdog-general@lists.terrasoftsolutions.com
Mon Mar 31 01:07:01 2003
A: Top-posting.
Q: ...
>>> So, how about it, YDL.net'ers? Would you be willing to accept a
>>> self-signed certificate in order to keep your YDL.net password secure?
>>> I know I would.
>>
>> I'm not a YDL.net'er, but I would much prefer any login screens to be
>> secured with SSL even if the cert was self-issued, if the alternative
>> is raw HTTP which _will_ expose such information to all and sundry.
>>
>> [SSH-related stuff deleted]
>
> Yeah, that sounds simple and convenient... a LOT easier than TSS just
> buying a certificate.
If TSS have a hard time buying a cert for whatever reason, which was, I
think, the original point for the conversation in the first place, then
it was pointed out that there are alternative ways of accomplishing the
same (ie secure logins to the ydl.net site) which do not involve money
changing hands.
This was in no way meant to imply anything about the relative easiness-
to-use of those methods.
--
Atro Tossavainen (Mr.) / The Institute of Biotechnology at
Systems Analyst, Techno-Amish & / the University of Helsinki, Finland,
+358-9-19158939 UNIX Dinosaur / employs me, but my opinions are my own.
< URL : http : / / www . helsinki . fi / %7E atossava / >
File attachments NOT welcome unless agreed to beforehand.