Gerard Earley wrote:
Can you recommend any cheap certificate issuers in the price range you mention and whether any will issue a cert for an IP address (if that's possible).
I have been happy with RapidSSL, because they are single root, easy to install, and the purchase process is convenient yet relatively secure (there is an automated confirmation call, so have a phone handy). They also offer a 30-day FreeSSL certificate, which is really nice if you have no experience generating a certificate request and installing commercial certificates on your server. You don't have to pay for a cert you messed up.
But there are plenty of others offering cheap certs. My recommendation isn't an endorsement (in principle, I'm against preinstalled commercial certs, but I guess it's a necessary evil). The market fluctuates, and you should still do your homework.
You can get a cert for just about anything (your name, your host name, your organization's name, your birthday) in the Common Name. Getting one for your IP address only makes sense if that's the *string* that will be used by clients (http://192.168.1.4/ for web, or if your mail clients enter the IP address for SMTP or IMAP/POP). But it seems like a waste to me, compared to properly setting up DNS and using a host name (even if it's for a local network).
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
