[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: SSL client certificate question and bdb_dn2id_matched question

To: openldap-software@OpenLDAP.org
Subject: Re: SSL client certificate question and bdb_dn2id_matched question
From: Bradley Scutvick <brad@bytewise.net>
Date: Tue, 14 Jan 2003 15:01:07 -0800
References: <014901c2bbe1$c08c96b0$0e01a8c0@CELLO>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:1.0.2) Gecko/20021120 Netscape/7.01

Howard Chu wrote:

Self-signed certs can be made to work, but should not be used. They are a
security liability. Please read the admin guide:
http://www.openldap.org/doc/admin21/tls.html

Is it a security liability just because no institution is vouching for your identity or does it undermine the encryption somehow? I know it's off topic, ignore as you please.

-Brad

Follow-Ups:
- RE: SSL client certificate question and bdb_dn2id_matched question
  - From: "Howard Chu" <hyc@highlandsun.com>
- Re: SSL client certificate question and bdb_dn2id_matched question
  - From: Peter Lavender <plaven@bigpond.net.au>

References:
- RE: SSL client certificate question and bdb_dn2id_matched question
  - From: "Howard Chu" <hyc@highlandsun.com>

Prev by Date: Re: Solaris 8 and test008-concurrency fails
Next by Date: Re: how to check uniqueness of uidNumber ?
Index(es):
- Chronological
- Thread