RE: Key - Certs

Thu, 28 Sep 2000 02:17:06 -0700 

We can't really answer this question without knowing whether the server name
in the certificate matches your hostname. 

If it does, and if you have paid full price for the certificate, then they
cannot normally legally withhold it as it would be your property. However,
there might well be some restriction in your agreement with them on the
transferring of certificates to you.

Since certificates only last twelve months and cost so little compared to
the probable legal costs I would just get another certificate if I were in
your position. ie create a new key, then a csr and send the csr to another
Certification Authority, eg Verisign or Thawte.

General disclaimer: I am not a lawyer (but I have taken legal action in
person that went all the way to the Court of Appeal).

- 
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED] 


-----Original Message-----
From: Nick Davies [mailto:[EMAIL PROTECTED]]
Sent: 28 September 2000 09:24
To: [EMAIL PROTECTED]
Subject: Key - Certs



Hi,

        I'm just wanting to know about about what a certificate stores...
My
hosting provider refuses to release our certificates, they tell us we
need to buy new certs.  I thought when a certificate is created you
would generate a key on the server and then the authority people (we are
in the UK so this is trustwise) would create the cert based on this
key.  Surely when the cert needs moving both the key and the cert can be
move to and new server?  The key doesn't hold any info about the isp or
anything does it?

Thanks.

Nick.

-- 
Nick Davies
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to