On Tue, 13 Mar 2001, Francisco M. Marzoa Alonso wrote:
> >
> > Well, we want to avoid SSL if possible. Certificates for the servers aren't
> > that cheap, and we could potentially have quite a few servers. As we're a
> > startup company, I don't really want to commit ourselves to get SSL, seeing
> > as with SSL is only partly about encryption - its more to do with making
> > sure yiour dealing with trusted parties.
>
> As far as I known, you do NOT need Certificates, you can run SSL encryption
> without them, certificates are just for identify without doubt that a server
> is who it says. By other side, you can create your own certificates but
> they'll be not signed by a hmmmm... certification authority.
>
It will WORK without certificates, but the user will get big warning
messages that something fishy is going on. This would scare off a large
number of users (myself included).
Joe Laffey
LAFFEY Computer Imaging
St. Louis, MO
----------------------
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
