nospam wrote: > Thanks for the info, this has helped a lot. > ... I'm glad.
>> This is the wrong place to ask for help with OpenSSL. OpenSSL is the >> competition to mozilla. One doesn't ask questions about a Mercedes in >> a newsgroup dedicated to discussing Porsche automobiles, and vice versa. > > I didn't know they were competition, I thought they both the open source > systems that would keep the Internet open. I'm curious, Would you also say that RedHat, Suse and Debian are not in competition? They are all "open source systems that would keep the Internet open." Do they compete? for customers? for revenue? If many of the paying customers of one switch to another, does this have no effect on either? If one of them suffers declining revenue because of persistent untrue rumors that their product cannot do what their competitors' products do, does that hurt them, and their ability to sustain product development, or not? I'm pretty surprised that anyone who makes his living by working on open source would suggest there is no competition. >> But the bigger question is this: Mozilla is quite capable of generating >> its own RSA key pairs, requesting certificates for them, importing >> those certificates, exporting the key and cert in a PKCS12 file (if >> desired) and using the key and cert for client authentication. >> So, why do you want to get OpenSSL involved? > > I did not know mozilla could do this. Possibly there might be other web > browsers involved later, but for the moment, only mozilla. I suppose > knowing the OpenSSL version would make for a general solution > later...but now that you mention mozilla can generate key pairs, how > would I find out the way to do this with mozilla and not with OpenSSL? > All I've found were ways to import keys, I never found anything that > would generate keys. Perhaps it's because I'm using the GUI and it isn't > available there. The features I mentioned above are all implemented in moz browser products, accessible via html, javascript, and the GUI. (At least in Mozilla 1.x, and probably in FireFox too.) They are also available in command line utilities. Start looking here: http://www.google.com/search?num=100&q=keygen-tag > I imagine not all browsers are able to generate keys...up until now I didn't > realize mozilla could. I probably will need to know how to deal with keys for > other browsers later, but for the moment the mozilla way would be sufficient. I believe that most browsers are able. IINM, Safari offers the same <keygen> tag as do Mozilla and Netscape. The methods by which a web page requests the generation of cert signing requests varies from one to another, but the ability is there in most, if not all. _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
