Dirk Meyer wrote:
I don't mind doing CSR and turning XMPP server into a full CA ;-), but I think your idea is simpler, so it would be easier to deploy.Philipp Hancke wrote:And it results in a certificate signed by an entity that the server trusts.Well, the server can trust the client with its own certificate. But you raise an interessting point: what do others think? CSR or the other way. Alexey already wrote that he prevers not to deal with CSR.
