Mele20Premium
join:2001-06-05
Hilo, HI
kudos:4 | reply to Steve
Re: Comodo DNS vs OpenDNS..... said by Steve:said by MarkAW:[Hmmm lets see the fiasco with the Certificates for one. You mean the one where the bad guys were serving malware from a Comodo-SSL bearing site, and where Comodo revoked the cert within 24 hours? Or is there something else? I'm sure you are aware of the Mozilla situation and also the situation regarding Comodo continuing to issue certs to known malware providers. So, what is with the deliberate obtuseness?
I know you have little to no respect for my opinion but I have continued to have respect for your opinions in this forum and sometimes I have agreed with your opinion. I suggest that before you make a very foolish decision regarding acquiring a Comodo code-signing cert that you do some research into the business ethics of the CEO of Comodo.
--
When governments fear people, there is liberty. When the people fear the government, there is tyranny. Thomas Jefferson |
|
 SteveI know your IP addressConsultant
join:2001-03-10
Yorba Linda, CA
kudos:5 | said by Mele20: I'm sure you are aware of the Mozilla situation and also the situation regarding Comodo continuing to issue certs to known malware providers. Comodo revoked the Mozilla.com cert when the problem was pointed out, suspended the registrar (PositiveSSL), and have looked into why this happened. Shenanigans happen with certs all the time - people have managed to perform fake transfers of big domains with other providers too.
As to the selling certs to known-malware, I haven't seen any evidence that this is anything other than bad guys abusing the entire low-assurance cert process.
Is there some procedure or policy that keeps (say) GoDaddy from doing the same thing? Or is it just that Comodo is cheaper?
Steve — really, I'm not being obtuse.
--
Stephen J. Friedl | Unix Wizard | Microsoft Security MVP | Orange County, California USA | my web site |
|
