.. default-role:: literal Using TLS on svasey.org ======================= To encrypt your communication with this site, and more importantly make sure you are `talking to the right server`_, you can use Transport Layer Security. To do so, simply change the `http` in the URL to `https`. If you use Firefox, you can use addons such as Redirector_ to avoid doing this manually. .. _Redirector: https://addons.mozilla.org/en-US/firefox/addon/redirector/ .. _talking to the right server: https://secure.wikimedia.org/wikipedia/en/wiki/Man_in_the_middle_attack Downloading my certificate -------------------------- Because I haven't paid large corporations to sign my certificate, most browsers will issue a warning when visiting this site with HTTPS. This is why you should download my certificate, explicitely verify its PGP signature, and tell your browser to trust it. More explicitely, on a UNIX-like system you can run the following commands:: $ wget http://certs.svasey.org/svasey_org.cer http://certs.svasey.org/svasey_org.cer.sig $ gpg --verify svasey_org.cer.sig For the last command to work, you will need to `fetch my PGP key`_. You can then tell your browser to trust `svasey_org.cer`. The way to do this is browser-dependent. You can also replace `svasey_org` by `svasey_root` in the above instructions, in order to download my self-signed root certificate. .. _fetch my PGP key: ../about_en.html#privacy-now Fingerprints ------------ Root certificate **************** The fingerprints of the svasey root certificate (`svasey_root.cer`_) are:: SHA1: D2:E0:1C:64:AF:02:EF:12:CB:8D:4E:6A:65:C2:D1:2F:57:53:02:4C MD5 : 4C:F4:49:FE:2B:AE:03:EE:B0:86:43:D5:8A:09:DF:BB .. _svasey_root.cer: http://certs.svasey.org/svasey_root.cer svasey.org certificate ********************** The fingerprints of the ``svasey.org`` certificate (`svasey_org.cer`_) are:: SHA1: CC:2F:2D:8A:59:88:66:87:35:31:1C:BB:D1:35:B0:B5:4B:5E:E7:5D MD5 : 57:21:E4:21:FB:85:5D:A0:B4:21:0C:93:CF:95:13:D7 .. _svasey_org.cer: http://certs.svasey.org/svasey_org.cer