In article <[EMAIL PROTECTED]> you wrote:
> I was wondering if it may be possible to configure modssl to do crypto
> with no certificate.
No.
> I know that it should be possible because certificates are just a way to
> authenticate the server, not to establish the crypto.
No, the server certificate is also important and required for the secure
exchange of the crytography parameters of SSL/TLS. Without this, the
client and server would not be able to securely exchange the necessary
symmetric encryption parameters.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
