From owner-freebsd-isp Sun Jun 2 17: 5:34 2002 Delivered-To: freebsd-isp@freebsd.org Received: from oubliette.darkspire.net (oubliette.darkspire.net [216.80.25.129]) by hub.freebsd.org (Postfix) with ESMTP id 7432437B403 for ; Sun, 2 Jun 2002 17:05:28 -0700 (PDT) Received: from stardust.darkspire.net ([216.80.25.138] ident=daemon) by oubliette.darkspire.net with esmtp (angarius/aenigma) id 17EfLi-0006Ah-00 for ; Sun, 02 Jun 2002 19:05:26 -0500 Received: (from oneiros@localhost) by stardust.darkspire.net (sol/avis) id g5305Qc05676 for freebsd-isp@freebsd.org; Sun, 2 Jun 2002 19:05:26 -0500 (CDT) Date: Sun, 2 Jun 2002 19:05:26 -0500 From: James To: freebsd-isp@freebsd.org Subject: Re: SSL certificates Message-ID: <20020603000526.GA5542@stardust.darkspire.net> Mail-Followup-To: freebsd-isp@freebsd.org References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4i X-PGP-Key: On keyservers and Sender: owner-freebsd-isp@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Thus spake Mark Bojara (mark@mics.co.za): > This is hardly a FreeBSD question but rather a apache question. Is it > possible for me to generate my own CA certificate then sign a RA > certificate with it to not get that option in Internet Explorer asking me > to accept the certificate everytime I go to the site. Yesh. You'll need to put your CA certificate (not private key) somewhere on your website. x509 format is fine, that'll work with all browsers. Then direct your viewers to it and ask them to trust it. When they click on the URI to your cert IE will automatically start a wizard allowing them to import your CA certificate. -- James Nine wolves under an uri: http://oneiros.darkspire.net/ elm. Three trout darting in a 1024D/62C2F77D river. Two doves fly. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message