[Zope] - Comments on SSL issues

Christopher G. Petrilli petrilli@amber.org
Mon, 14 Dec 1998 12:03:52 -0500


OK, one other thing that just struck me regarding SSL issues, at least
in the HTTP world... Verisign won't issue a server sert (x.509) for just
"any" server, it has to be examined and approved (Apache finally got
this), I believe Thawte Consulting, while more freewheeling, is also in
a similar case.  The reality is, you have to have a cert from someone
who is pre-registered as a root server, or you're going to confuse your
users.... sad but true.

Now, SSL for backend connectivity is another question :-)

Chris
-- 
| Christopher Petrilli
| petrilli@amber.org