[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SSL client certificate question and bdb_dn2id_matched question





Howard Chu wrote:
Self-signed certs can be made to work, but should not be used. They are a
security liability. Please read the admin guide:
http://www.openldap.org/doc/admin21/tls.html

Is it a security liability just because no institution is vouching for your identity or does it undermine the encryption somehow? I know it's off topic, ignore as you please.


-Brad