Kyle Hamilton wrote: > If the certificates used within the network don't need to be trusted > outside that network, then using a commercial CA is worthless and overly > expensive. Just create a CA (using OpenCA or such), and issue > certificates from that authority. > > Otherwise, Thawte has a fairly-expensive program where they will embed > specific certificate extensions into their end-user/client certificates.
I'd go the self signed option or CAcert.org is also free... -- Best regards, Duane http://www.cacert.org - Free Security Certificates http://www.nodedb.com - Think globally, network locally http://www.sydneywireless.com - Telecommunications Freedom http://happysnapper.com.au - Sell your photos over the net! http://e164.org - Using Enum.164 to interconnect asterisk servers "In the long run the pessimist may be proved right, but the optimist has a better time on the trip." _______________________________________________ mozilla-crypto mailing list [email protected] http://mail.mozilla.org/listinfo/mozilla-crypto
