Hello all,

I'm looking into one of OLM's basic hosting packages. I called their sales dept to ask about SSL encryption when accessing their control panel and web mail, and was told that it was in place and they do have a certificate guaranteeing their identity in place for accessing those areas, but that the certificate is not signed by a CA. Does anyone else have experience with OLM who can confirm or deny this?

Thanks.

Brandon Houghton

I moved our family web site ( http://computer2.com ) to OLM last December and am extremely happy with them. I plan to move our other web site to OLM, later this month.

To answer your questions: (1) When I access the Ensim Control Panel, *everything* is secure, with SSL. (2) When I access the web based e-mail ( Squirrel Mail ), *nothing* is secure.

Hi Lanny,

Thanks for your reply. Would you mind taking a look at the certificate presented when you log in to the control panel? I'm particularly interested in who issued it. If you don't know how to do this, it generally works as follows:

From Internet Explorer, double click on the lock symbol that appears in the second box in from the left in the status bar at the bottom of the browser window. In the dialog box that pops up, click on the "Details" tab. The certificate issuer is listed in the "Issuer" field on the page that is brought to the front.

From Netscape 4.x, click on the lock symbol that appears in the leftmost area of the status bar at the bottom of the browser window. On the dialog box that pops up, click on the "View Certificate" button. The certificate issuer is listed in the upper right of the dialog that subsequently pops up.

From Netscape 6.x, click on the lock symbol that appears in the rightmost area of the status bar at the bottom of the browser window. On the dialog box that pops up, click on the "Security" tab. Another dialog entitled "Certificate Viewer" pops up. The issuer is listed in the middle of the dialog. The important field is the Organization.

Thanks again for your reply. It's a help already. If you are able, please also look into this. I would like to be sure before switching hosting providers.

Brandon Houghton

heh Lanny your parrot is cool, do they really live up to 70 yrs?

Doesn't OLM use a Geotrust Certificate?

I like OLM. I just wish they offered CPanel and used Thawte.

Houghton: I just went to the Ensim Control Panel for our web site on OLM. The certificate was issued by Equifax Secure Certificate Authority. The encryption is 128 bits. NOTE: When I went to view the "Site Summary" a few minutes ago, I got a warning, that everything on that page was *not* secure. I don't think I'd seen that warning before. Until now, I think everything was secure. I'm using IE 6 on this box.

Angel78: Yes, those parrots can live up to approximately 70 years of age. He's been in my wife's family since she was a toddler.

why you think geotrust's certificates are bad?

Originally posted by apollo
why you think geotrust's certificates are bad?

I didn't say they are bad. Comodo and most all GeoTrust certificates (except for the E-Business one) won't work on my webtv, and I use webtv more than my PC with a cable modem (strange I know). So, this tells me that Geo & Comodo are probably not as compatible as Thawte or Verisign; regardless of what their numbers claim.

FWIW, I've been in contact with Geo, Comodo, and MSN to try and resolve this.
However, the snag is MSN... as usual. Their techs have no idea what I'm talking about; so I'm having to work my way up the chain. Anyone got Bill Gates home phone number or his wife's cellphone number? :)

Lanny,

I looked into Equifax. It turns out that Geotrust owns their certificate business. I can't explain the security warning you got without knowing exactly what it said, but I'm willing to wager that whatever it was was either 1) a very brief mistake or 2) not actually an indicator that no encryption was occurring, but of something else, like the browser not being configured to automatically pass certificates from Equifax or a mix of secure and unsecure items on the same page. What exactly did the warning say? Have you visited that page before and gotten no warning and been certain the page was encrypted?

-Brandon