Subj : Binkd and TLS
To   : Alan Ianson
From : Richard Menedetter
Date : Tue Dec 17 2019 09:55 am

Hi Alan!

16 Dec 2019 14:59, from Alan Ianson -> Michiel van der Vlist:

 AI> I currently use a self signed certificate. I could also get a
 AI> certificate from letsencrypt or elsewhere if that would be better.

Yes, definitely.
Your certificate is not signed by a trusted party, so it will NOT be trusted 
until you manually declare it as trusted.

 AI> Do folks still use PGP? Something like that is also possible although
 AI> we are stepping away from simplicity again.

Yes.
But PGP does not tie into TLS.
You can't use PGP certificates for TLS.

 MV>> 6) I suspect the main reason for the existance of certificates is
 MV>> that it is a bussiness model for those issuing the certificates.
 AI> I do have a certificate from letsencrypt that I use for my domain. It
 AI> hasn't cost me any extra $$$ to date.

Prior to Letsencrypt certificates cost money. (there was cacert.org but this 
was not trusted either, so it was not really a solution for most)
Now it still costs money, if you are using it for businesses, or if you do not 
want to use letsencrypt.

CU, Ricsi

.... If you are going to try cross country skiing start with a small country.
--- GoldED+/LNX
 * Origin: We've learned how to make a living, but not a life. (2:310/31)

.