Jason Gilmore schrieb:
>
> I have very recently (today) set up a secure server, and am currently
> using the test certificate to test the setup.
>
> The reason why I am using a secure server is to protect database data
> for a project we are currently working on. The database will be for
> internal use only, and will not be accessible to the outside.
>
> Therefore, my question is:
>
> Is the test certificate good enough for encryption, or is it suggested
> that we purchase a certificate?
Regarding encryption every cert is equal. In fact the cert
issuer has in principle nothing to do with the choosen cipher.
(The only exception is Global Server ID. But you would not
qualify for this special cert. Check README.GlobalID for more
info).
> If it is not good enough, why? I have read the docs, but must not
> understand something...
A own CA / test cert / what ever is a little uncomfortable
since every user needs to accept either the Server cert or
the CA cert. but since you are targeting at a closed user
group I guess you will be completely happy with a own-rolled
solution.
> Many thanks!
--
Holger Reif Tel.: +49 361 74707-0
SmartRing GmbH Fax.: +49 361 7470720
Europaplatz 5 [EMAIL PROTECTED]
D-99091 Erfurt WWW.SmartRing.de
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
