this post was submitted on 09 Aug 2023
49 points (96.2% liked)

Explain Like I'm Five

14027 readers
31 users here now

Simplifying Complexity, One Answer at a Time!

Rules

  1. Be respectful and inclusive.
  2. No harassment, hate speech, or trolling.
  3. Engage in constructive discussions.
  4. Share relevant content.
  5. Follow guidelines and moderators' instructions.
  6. Use appropriate language and tone.
  7. Report violations.
  8. Foster a continuous learning environment.

founded 1 year ago
MODERATORS
sabbah@lemmy.world
AradFort@lemmy.world
rikudou@lemmings.world
Don_Dickle@lemmy.world
Rikudou_Sage@lemmy.world
49
Why are CAs important if anyone can get their certificate signed for free? (lemmy.world)
submitted 1 year ago by lemmington_steele@lemmy.world to c/explainlikeimfive@lemmy.world
10 comments fedilink hide all child comments
 

For example, anyone could use Let's Encrypt to get a trusted certificate, so what makes this trustworthy? Or why not trust everyone that signs their own certificates with a program like OpenSSL?

you are viewing a single comment's thread
view the rest of the comments
[–] Jeeva@feddit.uk 4 points 1 year ago

On top of the other points raised here, it's worth noting that LetsEncrypt is relatively new and until recently had another company higher in the signing chain so that they could provide their certificates without folk having issues with their local cert store.