Rij wrote: > Hi All, > > I am absolutely new to this world of SSL, as will be evident from my > confusions and questions. > > I am trying to write a client that will securely connect to N web > servers every T seconds, and retrieve a document: info.txt. > > To test it, I wrote the following code (borrowed from: > http://www.ibm.com/developerworks/linux/library/l-openssl.html). I > then generated a self-signed certificate. I ran the code, trying to > connect to a secure site. And it was successful. > > My questions are: > 1) Can this approach be used to retrieve documents from ANY secure > server, ALWAYS?
Unless that secure server is configured not to allow anonymous connections. > 2) Does the server need to be configured for this? This is the typical configuration. Web servers generally don't care who they connect to. > 3) Is it common to have servers configured thus, without any > security hazard? Yes. > I generated the self-signed certificate using the following command: > openssl req -x509 -nodes -days 10 -newkey rsa:1024 -keyout mycert.pem > -out mycert.pem Your certificate is not doing anything. The web server doesn't care who you are. DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
