Skip site navigation (1)Skip section navigation (2)
Date:      Sun, 13 Jul 2003 06:34:50 -0000
From:      "admin" <admin2@enabled.com>
To:        Augusto Jun Devegili <freebsd@devegili.org>, admin <admin2@enabled.com>, freebsd-questions@freebsd.org
Subject:   Re: SSL certificates and IE
Message-ID:  <20030713061434.M56305@enabled.com>
In-Reply-To: <3F10EAAC.1010209@devegili.org>
References:  <20030713030742.M58442@enabled.com> <3F10EAAC.1010209@devegili.org>

next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 13 Jul 2003 02:14:20 -0300, Augusto Jun Devegili wrote
> Considering you won't buy a certificate from a trusted CA, you might 
> tell your users to install your CA certificate or your Web server 
> certificate by providing a link to these certificates: IE will 
> download them, ask the user if he/she trust them and put them in the 
> trusted certificate store.
> 
> Alternatively, when a user connects to an SSL Web server and IE 
> doesn't trust the certificate, there's an option in the dialog box 
> which allows for the certificate installation in the trusted 
> certificate store.
> 
> Anyway, you won't be able to change your certificate so that your 
> users access your SSL Web server without some sort of warning... 
> unless you buy a certificate from some (IE) trusted CA, such as Verisign.



Thanks for the advice - I understand a lot more now.  How can I find out who
all the trusted CA companies are?

- Noah


> 
> admin wrote:
> > OS: FreeBSD 4.8
> > mod_ssl 2.8.14
> > apache 1.3.27
> > 
> > 
> > ---
> > 
> > I am now servering a certificate to web connections. 
> > Internet Explorer complains of the certificate not being issued by a trusted
> > company.
> > 
> > I am the CA for the certificate.  What are ways I can modify the certificate
> > so IE does not complain about this anymore?
> > 
> > - Noah




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030713061434.M56305>