Re: FN-FORUM Wildcard SSL certificates

date posted 9th January 2002 23:23

Don't know what you mean by wildcard but..
You can issue your own certificate from Cert Server in any name you want but
why should anyone trust it (and IE's default settings are NOT to)? Three
hackers in a garage could issue their own certificate. To get others to
trust your cert commercially you need to exchange contracts with them (legal
thing) and also set up either ?shared secret or exchange the cert--sorry
just gone blank, in the middle of doing the washing. I'll look it up
tomorrow if I remember. Alex will know.

Kathy
----- Original Message -----
From: "James Fidell" [EMAIL REMOVED]
To: [EMAIL REMOVED]
Sent: Wednesday, January 09, 2002 10:33 PM
Subject: FN-FORUM Wildcard SSL certificates


> In a change from your usual programming (or at least a partial respite
> from grammar flames), I bring you the wildcard SSL certificate debate...
>
> I want to use a wildcard cert, so set one up and self-signed it.
> Netscape appears quite happy to talk to the server now, although it
> warns me that it doesn't recognise the signer. Marvellous.
>
> IE on the other hand seems to refuse the certificate because it
> doesn't match the name, for some versions of IE which appear to be
> totally randomly chosen. IE5.00 works for me, IE5.5 and IE6 don't.
>
> Has anyone else used wildcard certs with success across a range of
> versions of IE, or should I give up and hand over more money to
> Thawte than I really ought to have to?
>
> James
>
> ============================================================
>
> * Free listing for freelancers
> * Free to advertise jobs
> * Free jobs distribution service
> * Free database of 5000 freelancers
>
> Freelancers and Freelance Jobs:
> http://www.freelancers.net
>
> Forum FAQs:
> http://freelancers.netrickery.com
>
> To unsubscribe please email:
> [EMAIL REMOVED]
>
> If you have difficulties unsubscribing please email:
> [EMAIL REMOVED]
>