Karl-
I appreciate the advice, and will most likely take it.
This does not, however, solve my problem of there not being an 'rsa' command
available to me using openssl. Beyond not allowing me to remove encryption,
it also will not allow me to sign my own certificate with my own CA, or do
anything else within the 'rsa' command structure. The weird thing is that it
was apparently available to "make certificate", but now that the server is
actually online, I would rather not go through all that again.
Todd
-----Original Message-----
From: Karl Denninger [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 10, 2000 5:45 PM
To: [EMAIL PROTECTED]
Subject: Re: rsa invalid?
Please don't do that.
If you do, and someone breaks into your machine, your certificate just
became worthless and now you have to go through the trouble of revoking it
and having a new one issued (which will also cost you money!)
IF THE PRIVATE KEY IS COMPROMISED YOU ARE SCREWED AND CANNOT RECOVER.
--
--
Karl Denninger ([EMAIL PROTECTED]) Web: http://childrens-justice.org
Isn't it time we started putting KIDS first? See the above URL for
a plan to do exactly that!
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
