Wade L. Scholine wrote:
>
> > -----Original Message-----
> > From: Dr Stephen Henson [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, May 25, 1999 6:35 AM
> > To: [EMAIL PROTECTED]
> > Subject: Re: req_attributes
> >
> >
> > Wu Zhigang wrote:
> > >
> > > Hi,
> > >
> > > can an expert give me some ideas what is mean of a
> > > req_attributes? Do I have to provide these when
> > > generate a req?
> > >
> > > [ req_attributes ]
> > > challengePassword = A challenge password
> > > challengePassword_min = 4
> > > challengePassword_max = 20
> > >
> > > unstructuredName = An optional company name
> > >
> >
> > Usually you can completely ignore these. They are part of the PKCS#10
> > request specification but OpenSSL ignores them at present and few CAs
> > require their use.
> >
> > The original idea behind challengePassword was to allow a
> > password to be
> > included with the request which would need to be given in order to
> > revoke the certificate.
> >
>
> So I can completely delete the req_attributes section if I want to make a
> minimal config file for making CSRs for common CAs?
Yes you can.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
