Featured post

Please, help us to pay our expenses

CAcert offers free certificates. Nevertheless, the CA does not function completely without money. For example, the electricity bills of the data centre in the Netherlands must be paid. The annual expenses of CAcert are about 3000 dollars/Euro. In view of the more than 300,000 users, that’s not much. How does CAcert pay these bills?

First of all, the membership fees of the members of CAcert Inc. (association) cover about 1/6 of the expenses. The remaining 2,500 require donations. In the first quarter of 2018, 11 people from 6 countries from Australia through Tatarstan to the United Kingdom made a donation.The chart on the left shows the distribution of donors by country (USA, UK, France, Germany, Australia, Tatarstan). To the right of the amount donated: one quarter each comes from the USA and Australia. We thank all donors very much for their generosity. In order to pay all bills by the end of the year, twice as many people would have to donate an amount.

Possibilities
Bank transfer in Euro:
secure-u e.V. / Bank: Hamburger Volksbank e.G. / IBAN: DE50 2019 0003 0008 5478 07 /           BIC: GENODEF1HH2 (“for CAcert”) (secure-u-association is our local partner in Germany)
Bank Transfer in Australia:
Westpac Bank for AU$: Account Name: CAcert Inc / SWIFT: WPACAU2S / Account No.: 180264
Paypal:
https://www.paypal.com/shoppingcart

French translation   |   German Translation

CAcert is supported by its community

The CAcert Free Certificate Authority is supported by its community. In the period of six weeks from the end of April to the beginning of June, 21 users from seven countries generously donated 725 $/€ to CAcert. This will cover the operating costs of the data center for almost three months.

We would like to thank all donators. If you want to support the work done by the volunteers of CAcert, please donate to continue to run this service. Thank you.

DEUTSCH

Die freie Certifikatsstelle CAcert wird durch ihre Gemeinschaft unterstützt. Im Zeitraum von sechs Wochen von Ende April bis Anfang Juni haben 21 Nutzer aus sieben Ländern CAcert sehr großzügig mit Spenden in der Höhe von 725 $/€ bedacht. Damit können die Betriebskosten des Rechenzentrums während knapp dreier Monate gedeckt werden. Hilf mit, die Kosten zu decken, spende jetzt!

NEDERLANDS

De CAcert Free Certificate Authority wordt ondersteund door haar gemeenschap. In de periode van zes weken van eind april tot begin juni hebben 21 gebruikers uit zeven landen 725 $/€ gedoneerd aan CAcert. Dit zal de exploitatiekosten van het datacenter voor bijna drie maanden dekken. Help de kosten dekken, doneer nu!

ITALIANO

La Autorità di Certificazione libera CAcert è supportata dalla sua comunità. Nel periodo di sei settimane tra la fine di aprile e l’inizio di giugno, 21 utenti di sette paesi hanno generosamente donato 725 $/€ a CAcert. Ciò coprirà i costi operativi del data center per quasi tre mesi. Aiuta a coprire i costi, donalo ora!

SVENSKA
CAcert-certifieringsorganet stöds av dess samhälle. Under sex veckorsperioden från slutet av april till början av juni donerade 21 användare från sju länder generöst $/€ 725 till CAcert. Därefter kan driftkostnaderna för datacentret täckas under nästan tre månader. Hjälp täcka kostnaderna, donera nu!

CAcert posiluje svou pusobnost ve strední Evrope

www.cacert.org
wiki.cacert.org/AssurerChallenge/CZ

Link

As of now, prospective Assurers can also take the Assurer test CATS in Czech. This is an important step towards vulgarizing of the Web of Trust and CAcert’s efforts to increase security on the Internet.

CAcert offers free certificates that can be used for digital signatures, phishing prophylaxis, login or encryption. In order for their own name to be included in the certificate, each user must first meet and identify themselves with at least two Assurers of the Web of Trust. CATS is an important part of Assurer training, explains Bernhard Fröhlich, responsible for training courses. Experience shows that acceptance and the success rate are higher if a course can be completed in one’s own language. Currently CATS can be completed in Czech, German and English.

www.cacert.org
wiki.cacert.org/AssurerChallenge/

CAcert renewed root certificates

CAcert has finally upgraded the Root and Class 3 certificates from the old MD5 encoding to the modern SHA-256. Your browsers will like us again! The new certificates were installed in “the usual places” on April 10th. You may go to our web site home page, https://www.cacert.org, and over on the right-hand side, three lines from the top, is “Root Certificates.” The short way to get there is https://www.cacert.org/index.php?id=3.

We would like to thank all software team members for the job they did. All teams consist of volunteers. If you want to support the work done by the Software Team, including the review, please donate to continue to run this service. Thank you.

CAcert erneuert Stammzertifikate

CAcert hat endlich die Stamm- und Class 3-Zertifikate von der alten MD5-Kodierung auf die moderne SHA-256 aktualisiert. Ihre Browser werden uns wieder mögen! Die neuen Zertifikate wurden am 10. April an “den üblichen Orten” installiert. Sie können auf unsere Homepage https://www.cacert.org gehen, und auf der rechten Seite, drei Zeilen von oben, finden Sie “Root Certificates”. Der kurze Weg dorthin ist https://www.cacert.org/index.php?id=3.v

Wir möchten uns bei allen Mitgliedern des Softwareteams für die geleistete Arbeit bedanken. Alle Teams bestehen aus Freiwilligen. Wenn Sie die Arbeit des Software-Teams, einschließlich der Überprüfung, unterstützen möchten, spenden Sie bitte, um diesen Service weiter zu betreiben. Danke.

CAcert a renouvelé ses certificats racine

CAcert a finalement mis à jour les certificats Root et Class 3 de l’ancien encodage MD5 vers le moderne SHA-256. Vos navigateurs nous apprécieront à nouveau ! Les nouveaux certificats ont été installés dans “les lieux habituels” le 10 avril. Vous pouvez vous rendre sur la page d’accueil de notre site Web, https://www.cacert.org, et sur le côté droit, à trois lignes du haut, se trouve “Root Certificates”. Le chemin le plus court pour s’y rendre est https://www.cacert.org/index.php?id=3.v

Nous aimerions remercier tous les membres de l’équipe du logiciel pour le travail qu’ils ont fait. Toutes les équipes sont composées de bénévoles. Si vous souhaitez soutenir le travail effectué par l’équipe du logiciel, y compris la révision, veuillez faire un don pour continuer à faire fonctionner ce service. Merci.

Stability of e-mail verification strongly improved

The e-mail verification on the CAcert web server has recently led to repeated support requests. An analysis of the log files in our data center showed that the corresponding error occurred more frequently. So we have to conclude that many CAcert users have been negatively affected. In order to avoid further negative effects, an emergency
patch was deemed necessary by the Critical System Administrator Team.

The standardised review and testing of the emergency patch implemented yesterday is carried out by the regular teams in the aftermath, which can result in a formal blessing for this patch or a request for additional code or configuration changes. We would like to thank the Critical System Administrator Team for their quick and decisive action. All teams consist of volunteers. If you want to support the work done by the Critical System Administration Team and the review by the Software Team, please donate, to continue to run this service. Thank you.

Software update for secure mail servers

When you add an new email address to your profile, the verification works now also on secure mail server handling TLS1.1 or TLS 1.2. CAcert’s software team has updated our software to get more possibilities to our community members.

CAcert at Fosdem 2019

On February, 2nd and 3rd, Fosdem in Brussels (Belgium) will open its doors. It is an ideal platform to get informed about free software – and of course CAcert will attend. The fair takes place in the ULB Campus.

But: This time CAcert and secure-u will NOT have stand there due to limited space in the builings. On Saturday noon and Sunday morning I’ll be at Infodesk in K-Building, where wearing my white CAcert Jacket to answer questions about the current status of CAcert and secure-u.

Feel free to contact me there for a short talk … or to agree to a later schedule after my shift there for a longer discussion about CAcert support, software …

NCCIC notices DNS Hijacking Campaign

As described in https://www.us-cert.gov/ncas/alerts/AA19-024A the US Cybersecurity Agency warns about hackers trying to hijack DNS servers, and manipulating them to obtain SSL certificates for the hijacked domains.

This is a serious problem, since the vast majority of certificates, including CAcert’s “Class 1” certificates for non-assured members, are issued on “proof of DNS control” only.
“Extended Validation” certificates, which assure the real person or organisation controlling the domain, are not affected by this threat. But they are usually extremly expensive when requested from a commercial CA.

CAcert’s “Class 3” certificates for assured members, as well as CAcert’s Organisation Assurance are a (mostly) free alternative for those certificates, with an overall security level which is at least compareable, if not better!

Know whom to trust! Ask us on cacert@lists.cacert.org if you want to know more details!