INTELLIGENT WORK FORUMS
FOR COMPUTER PROFESSIONALS

Member Login

Come Join Us!

Are you a
Computer / IT professional?
Join Tek-Tips now!

Talk With Other Members
Be Notified Of Responses
To Your Posts
Keyword Search
One-Click Access To Your
Favorite Forums
Automated Signatures
On Your Posts
Best Of All, It's Free!

*Tek-Tips's functionality depends on members receiving e-mail. By joining you are opting in to receive e-mail.

LINK TO THIS FORUM!

Tek-Tips LinkedIn^® Group

Join our
LinkedIn^® Group!

Hook up with past and present colleagues and classmates quickly.

Partner With Us!

"Best Of Breed" Forums Add Stickiness To Your Site

(Download This Button Today!)

Feedback

"...Thank you for the best reply I've ever had to a forum question - it's extremely comprehensive and legible and answers my query thoroughly..."

More...

Geography

Where in the world do Tek-Tips members come from?

Click Here To Find Out!

Tek-Tips Shirts!

Get your
Tek-Tips Forums
SWAG here!

Home > Forums > MIS/IT > Operating Systems - UNIX based > FreeBSD (Server) Forum

SSL

Read More Threads Like This One

Netwrkengeer (IS/IT--Management)

6 May 02 17:33

What are my options for setting up SSL, I'm running FreeBSD/Apache.

Is OpenSSL an acceptable SSL certificate "http://www.openssl.org";

What is "CA"

Do you know of any Free solutions to SSL, and what are my SSL requirments.

gheist (TechnicalUser)

7 May 02 0:39

Yes - openssl is a solution
CA -the one who signs your public key(s) (maybe yourself if you have one ssl server)

You
- generate a (?rsa) key pair
- request a signature for your public key
- sign public key your self or pay money to well-known CA like Verisign,Thawte etc
- you can make your own CA and sign your users keys too

Netwrkengeer (IS/IT--Management)

7 May 02 0:44

is it acceptable to sign a public key yourself

gheist (TechnicalUser)

7 May 02 0:55

For myself - yes, for yourself and your clients -ask them:(
It encrypts your traffic anyway, only saves your money and rejects public trust on your system (like anybody outside your organization)
for first rollout you need only server key which is some way signed ( commercial signers can sign your server key later)

Netwrkengeer (IS/IT--Management)

7 May 02 7:44

OK, the app, I'm using for will be a secure area on my website and a shopping cart, will openSSL support all the users entering my site (their browsers)?

axvpaa (ISP)

7 May 02 9:22

Hi,
it will support their browsers ( or better, if their browsers can support SSL u're kewl to go). openssl is a free solution ( secure cert cost money, try http://www.verisign.com/ ; or
http://www.thawte.com/ to buy one).
alex

Netwrkengeer (IS/IT--Management)

8 May 02 7:10

So if I use openSSL I still need to purchase a Cert?

gheist (TechnicalUser)

8 May 02 10:48

Only if it makes you feel better

Netwrkengeer (IS/IT--Management)

8 May 02 21:47

Ok, so as far as the SSL goes I know nothing about it.
can someone walk me through the general rules of SSL.

For example, How many servers do you need, why would someone choose Verisign over Openssl, what is a public trust, Basically anything you thing a person who wants it but has never heard of it before..

Thanks.

gheist (TechnicalUser)

9 May 02 6:34

Your server owns a private key
It exports its public key that should be signed some way ( by server itself or verisign )

Public Trust - a self proclaimed status that Commercial CA's sell

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Click Here to join Tek-Tips and talk with other members!

Back To Forum

Back To FreeBSD (Server)

Member Login

Come Join Us!

LINK TO THIS FORUM!

Tek-Tips LinkedIn® Group

Partner With Us!

Feedback

Geography

Tek-Tips Shirts!

SSL

Reply To This Thread

Posting in the Tek-Tips forums is a member-only feature.

Back To Forum

Join Tek-Tips® Today!

Tek-Tips LinkedIn^® Group

Join Tek-Tips^® Today!