Well, I want to buy Cannibal Oxes anyway.

So long story short from record label Definitive Jux's official website I get this security warning when attempting to check out with my knives:

"The certificate is not trusted because it is self signed.
The certificate is only valid for plesk.

(Error code: sec_error_untrusted_issuer)"

Now obviously I can add an excemption but the "If you understand what's going on, you
can tell Firefox to start trusting this site's identification.
Even if you trust the site, this error could mean that someone is
tampering with your connection." part now has me worried.

Err so bascially I'm wondering if I should just ignore it and proceed with the transaction or if there might be something to it. This probably a silly question, so I have prepred for Yoda's wrath! :P
Posted by Foolz Mon, 15 Mar 2010 14:14:42 (comments: 2)
Mon, 15 Mar 2010 14:58:46
TLS/SSL connections provide two functions.  One is to encrypt your connection so that information, if somehow intercepted, cannot be read.  Two is to authentication so that you know you've reached the correct site, and the domain name correctly matches the connected IP.

This is done using "certificates".  A certificate is can be signed by a root authority verifying the identity of the site.  These authorities go to extra measures, generally, to do that verification, and charge for the certificate for a certain period of time before requiring renewal.

There are also self-signed certificates.  These can be used if the site owner does not want to pay for a signed certificate.  The site still has the benefit of an encrypted connection, but you don't have the guarantee of authentication.  A self-signed certificate is still much better than an unencrypted connection.
Mon, 15 Mar 2010 15:07:11
Ah, so it's presumably in order! Happy

Thanks a lot!

El-P is a cheap bastard.
Log in or Register for free to comment
Recently Spotted:
Login @ The VG Press
Remember me?