Hi,
> 1. Is there a way I can get rid of those certifcates at all and still
> use openssl, this would give me the advantage that I don't implement
> stuff in our software that we don't need nor use and hence cannot
> cause bugs or support problems.
You can use anonymous ciphers, that don't require certificates, but then
they are not really secure. Someone listening to the handshake can break
your encoding. Therefore I'd advise against it.
Using server certificates doesn't require much doing, and most of that
certificate code is internal to the OpenSSL library which is quite
stable.
So you really needn't lose much sleep on the bugs front.
Regards,
Amit.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
