Bitcoin Forum
May 04, 2024, 03:17:33 AM *
News: Latest Bitcoin Core release: 27.0 [Torrent]
 
   Home   Help Search Login Register More  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Suggestion: bitcoin.org SSL cert from self-signed -> CAcert
Pages: [1]
« previous topic next topic »
  Print  
Author Topic: Suggestion: bitcoin.org SSL cert from self-signed -> CAcert  (Read 1537 times)
Ewald (OP)
Newbie
*
Offline Offline

Activity: 7
Merit: 0


View Profile
November 10, 2010, 12:05:28 PM
 #1
I am aware that this feature request may be rather low priority, but I wanted to put it out here anyway. My suggestion is to switch from the current self-signed SSL certificate to one from CAcert. This way we have the benefit of working with a more widely accepted certificate (yesyes, still not in most main browsers, however still better than self-signed) and working with a more open approach to SSL certificates.

Especially when browsing bitcoin.org using Tor, I prefer to use SSL in order to prevent exit nodes from eavesdropping.
Be very wary of relying on JavaScript for security on crypto sites. The site can change the JavaScript at any time unless you take unusual precautions, and browsers are not generally known for their airtight security.
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction.
1714792653
Hero Member
*
Offline Offline

Posts: 1714792653

View Profile Personal Message (Offline)

Ignore
1714792653
1714792653
Reply with quote  #2
1714792653
Report to moderator
1714792653
Hero Member
*
Offline Offline

Posts: 1714792653

View Profile Personal Message (Offline)

Ignore
1714792653
1714792653
Reply with quote  #2
1714792653
Report to moderator
1714792653
Hero Member
*
Offline Offline

Posts: 1714792653

View Profile Personal Message (Offline)

Ignore
1714792653
1714792653
Reply with quote  #2
1714792653
Report to moderator
MagicalTux
VIP
Hero Member
*
expert
Offline Offline

Activity: 608
Merit: 501


-


View Profile
November 10, 2010, 12:57:43 PM
 #2
Why not use startssl instead of CAcert? At least the certificate would be trusted by default, and is still free
JackSparrow
Member
**
Offline Offline

Activity: 116
Merit: 10



View Profile
March 13, 2011, 06:01:43 PM
 #3
Quote from: davidonpda on November 10, 2010, 02:30:18 PM
Why not just accept the self signed certificate?
Because any Man-in-the-Middle could create a self-signed cert.
Matt Corallo
Hero Member
*****
expert
Offline Offline

Activity: 755
Merit: 515


View Profile
March 13, 2011, 09:04:27 PM
 #4
Although one could trust the specific certificate which bitcoin.org uses, I think a CACert or startssl certificate would be really nice to have.
Bitcoin Core, rust-lightning, http://bitcoinfibre.org etc.
PGP ID: 07DF 3E57 A548 CCFB 7530  7091 89BB B866 3E2E65CE
neptop
Sr. Member
****
Offline Offline

Activity: 314
Merit: 251


View Profile
March 13, 2011, 10:59:55 PM
 #5
+1 for startssl Smiley
BitCoin address: 1E25UJEbifEejpYh117APmjYSXdLiJUCAZ
Pages: [1]
  Print  
Bitcoin Forum > Bitcoin > Development & Technical Discussion > Suggestion: bitcoin.org SSL cert from self-signed -> CAcert
 « previous topic next topic »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!