[Mono-list] XSP ssl
sebastien.pouliot at gmail.com
Mon May 8 18:46:07 EDT 2006
On Mon, 2006-05-08 at 17:30 -0500, Carlos Solorzano wrote:
> We have XSP working with SSL by following
> however we want to be able to create certificates with OpenSSL with our
> own CA
This shouldn't be a problem if you take care of creating the X.509
certificates correctly. Reading the RFC and (mostly) testing is key.
> and be able to create certificates for other uses (apache, etc)
> with the same CA. Is this possible?
Sure. Apache, for HTTPS, is the same usage (as XSP). Other kinds of
usage could be S/MIME, code signing... all possible under a same CA.
> anyone have any good examples?
There are a few "must avoid examples" in bugzilla, when people hit a
problem (e.g. certificate usage). You can also find a lot of them by
Googling - but their quality will vary a lot.
The best approach would be to read the related RFC, OpenSSL
documentation, test and, when required, ask questions on mono-list (well
if it's related to Mono ;-)
Sebastien Pouliot <sebastien at ximian.com>
More information about the Mono-list