> Use a public domain and certificate that does not generally > have any public facing servers, except for port 80 when you > collect the certificate.
You can also authenticate commercial domain validated certificates by email so don't need a public server at all, ie use internal.mydomain.com validated against ad...@mydomain.com. > The PemTool sample can be used to sign certificates as a CA, but > it is quite complex This is really something that should be in the new TSslX509Certs component and sample, it's very little extra code. I'll add a new tab to the sample 'Private CA' which will create and sign certificates locally. Angus -- To unsubscribe or change your settings for TWSocket mailing list please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket Visit our website at http://www.overbyte.be