Re: OpenSSL+Apache

[Steven J. Sobol]

You got that message because you generated a test certificate. You are not a Certificate Authority recognized by the major web browsers, and neither is Snake Oil Ltd. :> You would probably have to purchase a certificate from a known and trusted CA. The whole idea behind this concept is that they verify who you say you are, and they are a well known organization and can be trusted... There are several CA's that have their CA certificates installed in both of the Big Two browser products.   -- North Shore Technologies Corporation Steven J. Sobol, President & Head Geek 815 Superior Avenue #610, Cleveland, Ohio 44114 [EMAIL PROTECTED] http://NorthShoreTechnologies.net ----- Original Message ----- From: Jaime Torres To: [EMAIL PROTECTED] Sent: Friday, October 29, 1999 11:15 AM Subject: OpenSSL+Apache Hi to all. I installed mod_ssl with OpenSSL and the apache server is working great. Now I am wandering why do I get this message each time a client browser asks for a connection to my https server:   www.x.com is a site that uses encryption to protect transmitted information. However, Netscape does not recognize the authority who signed its Certificate. This Certificate was issued by: Snake Oil CA [EMAIL PROTECTED] Certificate Authority Snake Oil, Ltd Snake Town, Snake Desert, XY   I'm not sure, but I think I made some mistake during the certificate generation. Is my thinking right? How colud I fix it? Or where can I get a free certificate that doesn't cause this behavior? Thanks, Jaime