If you are using in house applications or testing applications, there is no
problem with generating your own cert. If you are dealing with people that
don't know you, you will want to purchase a cert.
If you generate it yourself, everytime someone new tries to hit your site,
they will have a message popup that says the cert was generated by someone you
have not chosen to trust.
Both self generated and purchased certs do the same thing. They encrypt the
information between the server and the client. When you purchase a cert from
a 3rd party, they are validating that your server actually belongs to you.
My personal thought is for in house use, you would be better off to generate
your own cert. Cert's that are purchased from a 3rd party could be acquired
by someone else like the FBI w/o your knowledge. It would be like a phone
wire tap in the legal process. When you generate your own cert, you know that
no one else has your key and it couldn't be acquired by anyone else w/o your
knowledge.
Troy Sosamon
>===== Original Message From [EMAIL PROTECTED] =====
>Well that much was clear but the whole issue here I thought was if you could
>generate one yourself which I thought not using someone like Verisign. Would
>seem to defeat the purpose to me but I thought that was what someone was
>saying.
>
>on 6/28/02 7:02 PM, Rick Sanders at [EMAIL PROTECTED] wrote:
>
>>
>> Hi Dan,
>>
>> Yes, you have to process the request for later. Once you receive the code
>> from the certificate issuer, you go back to the wizard and process the
>> certificate.
>>
>> Rick
>>
>>
>>> Looks like the wizard only creates one to send later. Is that then a valid
>>> one or do you have to submit one or am I missing some install.
>>>
>>> Dan
>>>
>>> on 6/28/02 3:20 PM, Troy Sosamon at [EMAIL PROTECTED] wrote:
>>>
>>> Yes, you can generate your own cert.
>>> It is under properties for your default web site, the directory security
>> tab
>>> should have a button for Server Certificate. If it is grayed out, or
>> not
>>> there, you probably need to install the windows component "Certificate
>>> Services" from add/remove programs on the server.
>>>
>>> Troy Sosamon
>>>
>>> ===== Original Message from [EMAIL PROTECTED] at 6/28/02 11:18 am
>>>> Doesn't W2K have a built-in Certificate Authority?
>>>> The idea behind certificates is to have a trusted third party verify
>> that the
>>>> domain
>>>> is who it says it is, so having a certificate from your own domain is
>> kinda
>>>> pointless
>>>> for e-commerce sites, but since most users just want their ccard info
>>>> scrambled,
>>>> and don't care who is in charge of the scrambling, this could save some
>> time
>>>> and
>>>> money.
>>>> Now, does anyone know where the CAuthority wizard is?
>>>> Mark Bushaw
>>>>
>>>> On 28 Jun 2002 at 11:21, Dan Stein wrote:
>>>>
>>>>> I am getting ready to deploy a new solution for a customer that will
>> require
>>>>> using SSL. It is a course registration site where we will be
>> processing
>>>>> credit Cards. I have not done this before but have the Authorize net
>> manual
>>>>> and hope to get some sample witango code.
>>>>>
>>>>> Here is the customers setup I need to know what I have to do and where
>> the
>>>>> pitfalls may be.
>>>>>
>>>>> The max site traffic at any time would be 1,000 unique visitors a day
>> and
>>>>> most often in the 100's.
>>>>>
>>>>> There will be one Web server which will when the project is done be
>> running
>>>>> 4 sites. It is a new IBM server and I can have as much RAM in it as I
>> want
>>>>> right now there is 1G
>>>>> OS Windows 2000 Server
>>>>>
>>>>> The Web server will sit in a DMZ
>>>>>
>>>>> All port 80 traffic is filtered through a proxy server
>>>>>
>>>>> The DB server windows 2000 server OS and SQL 2000 DB
>>>>>
>>>>> The DB server will be behind a second firewall.
>>>>>
>>>>> Dan
>>>>>
>>>>> --
>>>>> Dan Stein
>>>>> Digital Software Solutions
>>>>> 799 Evergreen Circle
>>>>> Telford PA 18969
>>>>> Land: 215-799-0192
>>>>> Mobile: 610-256-2843
>>>>> FMP, WiTango, EDI,SQL 2000
>>>>> [EMAIL PROTECTED]
>>>>> www.dss-db.com
>>>>>
>>>>>
>>>>>
>> ________________________________________________________________________
>>>>> TO UNSUBSCRIBE: send a plain text/US ASCII email to
>> [EMAIL PROTECTED]
>>>>> with unsubscribe witango-talk in the message body
>>>>
>>>>
>>>>
>> ________________________________________________________________________
>>>> TO UNSUBSCRIBE: send a plain text/US ASCII email to
>> [EMAIL PROTECTED]
>>>> with unsubscribe witango-talk in the message body
>>>
>>> ________________________________________________________________________
>>> TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
>>> with unsubscribe witango-talk in the message body
>>>
>>>
>>> --
>>> Dan Stein
>>> Digital Software Solutions
>>> 799 Evergreen Circle
>>> Telford PA 18969
>>> Land: 215-799-0192
>>> Mobile: 610-256-2843
>>> FMP, WiTango, EDI,SQL 2000
>>> [EMAIL PROTECTED]
>>> www.dss-db.com
>>>
>>> ________________________________________________________________________
>>> TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
>>> with unsubscribe witango-talk in the message body
>>
>> ________________________________________________________________________
>> TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
>> with unsubscribe witango-talk in the message body
>>
>
>--
>Dan Stein
>Digital Software Solutions
>799 Evergreen Circle
>Telford PA 18969
>Land: 215-799-0192
>Mobile: 610-256-2843
>FMP, WiTango, EDI,SQL 2000
>[EMAIL PROTECTED]
>www.dss-db.com
>
>
>________________________________________________________________________
>TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
> with unsubscribe witango-talk in the message body
Troy Sosamon
Denver Co
[EMAIL PROTECTED]
________________________________________________________________________
TO UNSUBSCRIBE: send a plain text/US ASCII email to [EMAIL PROTECTED]
with unsubscribe witango-talk in the message body
