>>> We only have CACert.org based certificates. We'd need to buy a real >>> one first. > > Or only secure websites, that need better security (like bugs) with a > cacert-certificate. > > Andi, do we have money for an official certificate? > > I think, a single certificate with SubjectAltNames together with the vHosts > is enough, I wouldn't want to setup a multi-interface-server just for that. Yes, I think we have the money for that. A real cert for the wiki, bugtracker, and forum should be enough I guess. When you guys point me to a SSL product link (preferably from a vendor you used before and have good experience with) I'll go ahead and buy it. Andi -- splitbrain.org