[OT] Apache SSL certificate authentication

CyberLeo Kitsana cyberleo at cyberleo.net
Mon Sep 29 17:00:12 UTC 2008

Fraser Tweedale wrote:
> - Create my CA key and a CSR, and have CACert sign it.

Are you sure it's signed as an intermediary CA? cacert.org's website
suggests they will only sign leaf certificates.

Fortunately, your client certs need not be signed by the same CA as your
server cert, and it's probably somewhat pointless to have a client cert
(which will be used for your infrastructure alone) vetted by a third party.

Fuzzy love,
Technical Administrator
CyberLeo.Net Webhosting
<CyberLeo at CyberLeo.Net>

Furry Peace! - http://wwww.fur.com/peace/

More information about the freebsd-questions mailing list