> Raul Gutierrez wrote:
>
> Can somebody tell me all posible values of nsCertType field in the
> openssl.cnf file and its means?
>
> I know some value for example:
>
> nsCertType = client
> nsCertType = client, email
> nsCertType = objsign
> nsCertType = sslCA, emailCA
> nsCertType = server
>
> I get all this value from openssl.cnf's file of pyCa-0.4.5 and i want
> to know its means :))
>
It contains a list of the following options: client, server, email,
objsign, reserved, sslCA, emailCA, objCA. It is used by Netscape
Communicator to determine what a certificate can be used for. Unless you
want to specifically restrict the usage of a certificate or you want to
use object signing it can be safely omitted.
Check doc/openssl.txt and Netscapes own description
http://home.netscape.com/eng/security/certs.html
for more info.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
