Hi,
I have an Apache webserver running with ssl enabled. I configured it to use: “SSLVerifyClient required “ option, so my customers can reach me only if they have the pfx file that I generate using openssl command. The whole process completes when I send the pfx file to my customer and he installs it on his computer, in that way he gains access to my webserver. But I see one problem with this: If my client send the pfx file to another guy I will be in trouble because I cannot control what they will do with the pfx files. I think the fix for that is something like creating certificates to my customers with expire time or by using some SSL mechanism to control the use of a PFX file by client, in a way that if the certificate is used for the first time in a machine, it cannot be used on a second one. (I really don’t have any experience with SSL, so that is why i´m talking about these ugly examples) My concert is just about on how to control my clients using SSL. I expect you understand my doubt and if you appoint me any website or any ideas of what can I use to implement this I will really appreciate that. Thanks Fabiano _________________________________________________________ Voce quer um iGMail protegido contra vírus e spams? Clique aqui: http://www.igmailseguro.ig.com.br
