|
|
|
|
|
|
by jyap
5282 days ago
|
|
|
Hmm, yeah, you're right:
http://www.theregister.co.uk/2010/04/05/googlesharing_cert_r... Revoked SSL based on trademark and Whois information. Although the article does provide an update which says: The reason for the certificate being revoked was because of the inaccurate whois data. Certificates really are a seal of trust, but that cannot be based on falsified whois data. It was right to revoke the certificate for this reason, but not without being in contact with the customer. We have reviewed and changed our processes to rectify this. |
|
|
Mr. Marlinspike bought a SSL certificate from Gandi by giving them wrong personal information. When Gandi revoked the certificate, the support guys first wrongly communicated that it was probaly due to a trademark dispute, but it was actually just about the wrong whois information.[1]
Ok, miscommunications happen, but what really irks me about Mr. Marlinspike is that he later went on to complain about how companies did not do enough to verify the whois information for SSL certificates.[2] Which was, as we know, the reason why his SSL certificate was revoked.
What do we learn from this: Give correct whois information and your domain will be fine. For trademark disputes there is the UDRP process[3] which not just Gandi but also most other registrars (including namecheap) have agreed to.
1: http://www.gandibar.net/post/2010/04/06/TheRegistercouk-comm...
2: http://www.theregister.co.uk/2011/04/11/state_of_ssl_analysi...
3: http://www.icann.org/en/udrp/udrp.htm