Bruno Melo wrote:
> I've configured an Apache+OpenSSL+ModSSL system.
> I would like to use this system only to have data encryption, but I don't
> want to use Certificates.
> How can I don't use Certificates and have encryption with SSL?
Er... You can't. In order for encryption to work, the browser and server
have to exchange keys. The keys are contained in the certificates. It's
like trying to fly without using wings...
Probably you really mean you don't want to have to buy a certificate
from Thwate or Verisign or whatever - that's possible, just make your
own certificate:
- create a certificate authority CA (follow
http://www.modssl.org/docs/2.8/ssl_faq.html#ToC29 down to step 3)
- create a certificate request (follow
http://www.modssl.org/docs/2.8/ssl_faq.html#ToC28 down to step 3)
- sign your request with your own CA
(http://www.modssl.org/docs/2.8/ssl_faq.html#ToC29 step 4).
Best regards,
Owen Boyle.
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
