** Reply to note from Adrian Stovall <[EMAIL PROTECTED]> Thu, 7 Sep 2000 12:36:46 -0500
>
> The key is unique to the server (i.e. the machine you have set up to
> serve pages). You can generate multiple csr's to get multiple
> certificates from a single server key (btw, you don't have to name the
> key based on domain name, it can be simply, "server.key" or
> "mylefttoe.hurts", etc). There is nothing *wrong* with creating multiple
> server keys, but it isn't necessary to accomplish csr generation.
I disagree...
Technically it will work, but if someone gets that _one_ key, they can
impersonalte ALL of your secure sites. I don't think that is a very good
idea. It is not that hard to create a key for each certificate you
request, and it is MUCH more secure.
Rick Widmer
Internet Marketing Specialists
http://www.developersdesk.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
