On Mon, May 15, 2006 at 10:36:08AM +0200, gmu 2k6 wrote: > this is going into a new PBX so it in the first step is it more like > an independent box without dependence on Kerberos. I'm gonna > issue certificates for all nodes and use those to authenticate > inter-service connections. With TLS I then can also encrypt the > complete traffic.
Likewise with Kerberos, but it seems that TLS better fits your needs, which is fine. > Moreover for some reason the ppl on sci.crypt > told me to use TLS in EDH (ephemeral DH mode) vs RSA mode. http://en.wikipedia.org/wiki/Perfect_forward_secrecy -- Viktor. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
