[ale] Certificate Signing

Geoffrey esoteric at 3times25.net
Fri Jan 17 09:13:13 EST 2003


Jason Day wrote:
> On Thu, Jan 16, 2003 at 11:36:20PM +0000, cfowler wrote:
> 
>>We have a software package that ahs the file 'stunnel.pem' on it.  I generated
>>this certificate then placed it in the software package.  The embedded device
>>has *no* capablity to generate certificates.  So the *same* stunnel.pem file
>>is distributed among 1000 units.  If you used cat on unit one and cat on unit
>>1000 they would look the same.  How do I sign this file so that Java and my
>>web browser do not complain when they connect?
> 
> 
> You have to pay a CA like Verisign or Thawte to sign it for you.  It's
> been several years since I've needed a certificate signed, but it would
> run about $100 a few years ago, not sure what it costs now.
> 

You can create your own cert, but folks who visit your site, will still 
get a pop up complaining that they don't recognize the certifier.  As 
long as you tell the folks that will be accessing the site that you're 
doing so, I think it's a better solution for a small project.

-- 
Until later: Geoffrey		esoteric at 3times25.net

The latest, most widespread virus?  Microsoft end user agreement.
Think about it...

_______________________________________________
Ale mailing list
Ale at ale.org
http://www.ale.org/mailman/listinfo/ale






More information about the Ale mailing list