[CentOS] self signing certificates

Les Bell lesbell at lesbell.com.au
Tue Aug 25 01:38:08 UTC 2009


Jerry Geis <geisj at pagestation.com> wrote:

>>
Was just trying to find a way so that users that "dont know" what this
box is that is poping up wont even see the box.
<<

Can't you install your own root certificate into the internal client
browsers? The book "Network Security Hacks" (Andrew Lockhart, O'Reilly)
gives a procedure for doing this (p. 112). You generate a .der file from
the cacert.pem file, add a new mime type in the Apache config and then make
the pem and der files available on your server. The users can now install
the new root cert by just clicking on a link.

(Sorry if this has already been covered - I wasn't paying attention to the
earlier discussion).

Best,

--- Les Bell
[http://www.lesbell.com.au]
Tel: +61 2 9451 1144





More information about the CentOS mailing list