[CentOS] self signing certificates

Robert Heller heller at deepsoft.com
Mon Aug 24 14:23:27 UTC 2009


At Mon, 24 Aug 2009 09:32:00 -0400 CentOS mailing list <centos at centos.org> wrote:

> 
> hi all,
> 
> I have gone through the process of self signing certificates.
> Aside from the pop-ups about not trusted etc... everything appears to work.
> 
> For "internal" applications what do people/places do?
> It would be nice to be seamless and have the "your not trusted" window 
> pop-up.
> Yet this is not a public web site either. Just internal use.
> The server might be on the internet but people from the internet are not 
> using it.
> 
> I presume there is no way to by-pass the certificate signing process - 
> even for internal apps.
> Is there?

I think you need to set yourself up as a certificate authority and have
the people (clients) on the intranet import your certificate authority
(CA) into their browsers and E-Mail clients.  Once that it done, you use
your certificate authority thing to sign your cert(s).  Since you are a
"certificate authority" as far as the web browser is concerned, all of
the cert(s) you sign with your "certificate authority" are trusted.

(I don't know exactly how to do this, just know what the admins in the
UMass CS Dept. set up for internal https and imaps servers.)

> 
> Thanks,
> 
> Jerry
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
> 
>                                  

-- 
Robert Heller             -- 978-544-6933
Deepwoods Software        -- Download the Model Railroad System
http://www.deepsoft.com/  -- Binaries for Linux and MS-Windows
heller at deepsoft.com       -- http://www.deepsoft.com/ModelRailroadSystem/
                         



More information about the CentOS mailing list