[prev in list] [next in list] [prev in thread] [next in thread]
List: centos
Subject: Re: [CentOS] [OT] Where to buy S/MIME ??
From: Sorin Srbu <sorin.srbu () ilk ! uu ! se>
Date: 2018-11-26 6:52:44
Message-ID: d6177cf329c841b99b06b0773401e3be () ilk ! uu ! se
[Download RAW message or body]
> -----Original Message-----
> From: CentOS <centos-bounces@centos.org> On Behalf Of Alice Wonder
> Sent: den 25 november 2018 14:35
> To: CentOS mailing list <centos@centos.org>
> Subject: [CentOS] [OT] Where to buy S/MIME ??
>
> Hi, I'm getting increasingly paranoid.
>
> Something I said on a certain social media site several months ago was
> modified - then reported - then by account was banned until I agreed to
> delete it.
>
> Obviously since what I said was modified I didn't have any issue with
> deleting it but I want more than just DKIM sigs on my e-mail now.
>
> Anyway looking for S/MIME I can use to sign and/or encrypt but mostly
> sign. Not interested in GnuPG or self-signed S/MIME - I want something
> that can be trusted because someone else that is trusted actually
> vouched for me.
>
> The "free for personal" S/MIME from Comodo didn't work. Browser said it
> did but there was nothing to export for me to then import. I suspect it
> is because I used private browser window, I really don't like the idea
> of a private key stored in browser anyway. And it never asked for a
> password to encrypt the private key, nor let me specify key strength
> (only let me choose between medium and high - I assume high is 4096 but
> I don't know, it didn't say)
>
> Didn't like the "browser generated" process, even if it had worked and
> generated the final product I could export - I really didn't like the
> process and have serious questions about the wisdom of a private key
> without a pass phrase stored in an application that interacts with web
> sites.
>
> Anyway so used openssl to create private key (with aes-256 encryption
> and pass phrase) and then a CSR.
>
> But I can't find anyone who sells certs for S/MIME to send the CSR too.
>
> Globalsign but they wanted $89 - no one else.
>
> Found a few sites that offered to "send me a quote" that I think were
> intended for corporate accounts.
>
> Where do regular users who just want an inexpensive certificate usable
> for S/MIME from a CSR generated the traditional way go to buy a cert?
Would letsencrypt.org work for you?
I use them for my web sites, but unsure if you can do s/mime with them.
It's free, and trusted/sponsored by loads of big muckamucks according to
their web site.
--
//Sorin
_______________________________________________
CentOS mailing list
CentOS@centos.org
https://lists.centos.org/mailman/listinfo/centos
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic