Hi again,
I have a second question...
Can I host my own CA. Say on a Linux box (I think I can do it on NT, but I'd
rather not!)
What are the draw backs to being my own CA (if it can be done) I am not
currently providing e-commerce but I would like to have my web based data
encrypted, but don't
You can do it on a linux box and the only drawback that I can think of is that people
will simply need to accept your certificate. If you check out equifax I think you
will find that they also are a CA and you may want to check around for alternatives to
Verisign.
On Mon, Feb 04, 2002 at
On Mon, 4 Feb 2002 12:58:53 -0500, bjw wrote:
>Hi again,
>
>I have a second question...
>
>Can I host my own CA. Say on a Linux box (I think I can do it on NT, but I'd
>rather not!)
>
>What are the draw backs to being my own CA (if it can be done) I am not
>currently providing e-commerce but I w
EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of David Schwartz
Sent: Monday, February 04, 2002 4:03 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: Can I be my own CA?
On Mon, 4 Feb 2002 12:58:53 -0500, bjw wrote:
>Hi again,
>
>I have a second question...
>
>Can I h
You're doing it exactly right, and using a private CA for good reasons.
Your initial post failed to explain that it was for a private
enterprise use.
You can pre-load your CA into your company browsers as part of
installing their PC's. Details depend on browser; a floppy or CDROM
with the
On Mon, 4 Feb 2002 17:20:06 -0500, bjw wrote:
>I am trying to provide private company sensitive information to our
>"off-site" technicians and sales people. The information is to be presented
>via http (preferably https) to simplify the access and to keep it private.
>It's nothing secrete but n
ED]]
Sent: Tuesday, 5 February 2002 10:20
To: [EMAIL PROTECTED]
Subject: RE: Can I be my own CA?
I'm sorry if I posted to the wrong mail list... I know you provide help for
open ssl and not CA help, but after four days of searching the web (I'm new
to ssl) I felt
Bert:
As indicated in other parts of the thread, this is a good application
of openssl and the SSL-Howto is a good starting point.
I'd like to extend the question however.
I've done something similar for my enterprise and have managed to get
the root certificate installed when we set up a machi
Kevin Castner wrote:
>
>
> 1) Is my understanding correct in that I can package the entire trust
> chain as part of the server cert. If so, how?
>
Short answer, not really. Long answer: there are ways which involve
including URLs in the certificate showing how to donwload the
intermediate cer
At 13:22 06.02.2002 -0500, you wrote:
>
>So, here are the questions (finally)!
>
>1) Is my understanding correct in that I can package the entire trust
>chain as part of the server cert. If so, how?
>
>2) If not, then how does the browser get the intermediate CA certificate
>without having to exp
10 matches
Mail list logo
