[Zope] - Comments on SSL issues
Christopher G. Petrilli
petrilli@amber.org
Mon, 14 Dec 1998 12:03:52 -0500
OK, one other thing that just struck me regarding SSL issues, at least
in the HTTP world... Verisign won't issue a server sert (x.509) for just
"any" server, it has to be examined and approved (Apache finally got
this), I believe Thawte Consulting, while more freewheeling, is also in
a similar case. The reality is, you have to have a cert from someone
who is pre-registered as a root server, or you're going to confuse your
users.... sad but true.
Now, SSL for backend connectivity is another question :-)
Chris
--
| Christopher Petrilli
| petrilli@amber.org