Marco Cunha wrote:
>
> we can't have our clients going around creating,
> signing & installing new certificates every once in a while so I was
> thinking about doing the following :
>
> Look into openssl.c and friends and figure out a way of making the server
> generate a CA cert and server cert on the fly (no questions asked)
> [..]
> Are there any obvious obstacles
> or flaws in my reasoning that I'm not seeing ?
There's no authorization without proper authentication.
Ciao, Michael.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]