That was then. This is now. The target continues to move. Plan on client certificates if you are subject to privacy regulations.
The reason I was given is that server only authentication is vulnerable to a 'man in the middle' attack vector. HTH and good luck. -----Original Message----- From: IBM Mainframe Discussion List [mailto:[EMAIL PROTECTED] On Behalf Of Pinnacle Sent: Friday, September 26, 2008 2:50 PM To: [email protected] Subject: Re: Digital Certificate Implementation TN3270 > Melissa, Requiring a client certificate is an unnecessary complication. Your server certificate should suffice to establish the encrypted connection. I've set up hundreds of SSL connections with TN3270, and none of them required a client certificate. If your TN3270 client is requiring a client certificate to set up an SSL connection, get another TN3270 client, like Tom Brennan's Vista or PCOMM. Regards, Tom Conley NOTICE: This electronic mail message and any files transmitted with it are intended exclusively for the individual or entity to which it is addressed. The message, together with any attachment, may contain confidential and/or privileged information. Any unauthorized review, use, printing, saving, copying, disclosure or distribution is strictly prohibited. If you have received this message in error, please immediately advise the sender by reply email and delete all copies. ---------------------------------------------------------------------- For IBM-MAIN subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: GET IBM-MAIN INFO Search the archives at http://bama.ua.edu/archives/ibm-main.html
