On Mon, 17 Mar 2003, Federico Sevilla III wrote:
> On Mon, Mar 17, 2003 at 05:47:49PM +0800, Pong wrote: > > but you will need a wildcard cert instead (*.domain.com) for all of > > them. > > Can we make self-signed wildcard certificates with OpenSSL? > openssl can! =) when the CN is asked for, just type in the domain with the wildcard, ex: *.q-linux.com then self-sign it. and then you can put that same cert for any ssl-enabled subdomains under q-linux.com. the disadvantage of course is multiplying the task of protecting the single key by the number of subdomains. if you need a real CA, Thawte (a Verisign company) can sign it although at a higher price than regular beer. browser support is good. the major browsers support it = 98% although 2% of the internet crowd is still alot. pong _ Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph To leave: send "unsubscribe" in the body to [EMAIL PROTECTED] Fully Searchable Archives With Friendly Web Interface at http://marc.free.net.ph To subscribe to the Linux Newbies' List: send "subscribe" in the body to [EMAIL PROTECTED]
