On Fri, May 13, 2011 at 6:22 PM, Girish Venkatachalam < [email protected]> wrote:
> > You don't get your private key signed by anybody. It is private and should > not be shown to anybody. > > You generate a keypair and the private key is encrypted with a pass phrase > or a password. > > Now your public key is what is called the certificate. But that > becomes a certificate > only when it is signed by the CA's private key. > > In the case of certificate your public key is appended with a > signature of the MD5 > or SHA1 hash of the certificate data. > > Private keys are used only for document signing and for symmetric key > encryption > when communicating. > > Thanks Girish for you nice answer. But, I am still unclear that, "from where should I generate CSR"? I mean, is it OK if I generate CSR + Private key from my home machine ( please remember, this CSR will be for my www.myserver.com). OR, do I need to login there in www.myserver.com and then need to create CSR+Private key for that server? Which one? -- Best, Zico _______________________________________________ ILUGC Mailing List: http://www.ae.iitm.ac.in/mailman/listinfo/ilugc
