Mac os x web server - 222 Part II . Running the Show Each
222 Part II . Running the Show Each of these certificate authorities has a chunk of cryptographic code embedded into nearly every Web browser in the world. This chunk of cryptographic code allows a Web browser to determine whether an SSL certificate is authentic. Without this validation, it would be trivial for crackers to generate their own certificates and dupe people into thinking they are giving sensitive information to a reputable source. Each certificate authority has different deals, prices, and products. Check out each of the CAs in the preceding list to determine which works best for you. Certificates that are not validated are called self-signed certificates. If you come across a site that has not had its identity authenticated by a trusted third party, your Web browser will display a message similar to the one shown in Figure 6-2. Figure 6-2: A pop-up window alerts you when a site is not authenticated. This does not necessarily mean that you are encountering anything illegal, immoral, or fattening. Many sites opt to go with self-signed certificates, not because they are trying to pull a fast one on you, but because there may not be any reason to validate the true owner of the certificate and they do not want to pay the cost of getting a certificate validated. Some reasons for using a self-signed certificate include: . The Web site accepts no input. In this case, you as the end user have nothing to worry about no one is trying to steal your information because you aren t giving out any information. The certificate simply secures the Web transmission from the server to you. The data in and of itself may not be sensitive, but, being a good netizen ( net citizen), the site has enabled you to secure the transmission to keep third parties from sniffing the traffic. . The Web site caters to a small clientele. If you run a Web site that has a very limited set of customers, such as an Application Service Provider (ASP), you can simply inform your users that you have no certificate signer and that they can browse the certificate information and validate it with you over the phone or in person. . Testing. It makes no sense to pay for an SSL certificate if you are only testing a new Web site or Web-based application. Use a self-signed certificate until you are ready to go live.
We recommend cheap and reliable webhost to host and run your web applications: Coldfusion Web Hosting services.