-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> I''m aware of the VeriSign test certificates. However I want to
> create my own for the time being. I know that this is possible
> with the openssl library. I just would like to get some info on
> setting it up.
>
> Thanks
The LASG covers this.
http://www.securityportal.com/lasg/
Basically, RSA/Verisign/etc are starting to behave like a 30000lb
gorilla (RSA has a %100 monopoly on the RSA algorithm, meaning they
can pretty much dictate terms to companies like Red Hat, and they
have marketing deals with Verisign/etc.). As I understand it (someone
from Red hat please correct me if I am wrong) Verisign told them "no
test certificiate, no test certificate instructions, or you don''t get
to play". Sucks huh. Anyways the patent runs out in September, which
should improve things alittle bit.
Kurt Seifried
http://www.securityportal.com/lasg/
http://www.securityportal.com/closet/
http://www.cryptoarchive.net/
http://www.seifried.org/
http://www.seifried.org/keys/
>
> >
> >From: Carole Williams <carole@redhat.com>
> >Date: Thu, 13 Jan 2000 08:33:58 -0500 (EST)
> >To: Erich Oliphant <ericho@vantixnet.com>
> >CC: redhat-secure-server@redhat.com
> >Subject: Re: Creating a Test Cert.
> >
> >Hi, Erich,
> >
> >You can get a test certificate from a Certificate Authority (CA).
> >The manual goes step by step through the process of getting a test
> >certificate from VeriSign (section 3.5.2 on page 30) and Thawte
> >(section 3.5.3 on page 34), but you can get a test certificate
> >from any CA you choose. Getting a test certificate from a CA is
> >quick, should only take you a minute or two, and doesn''t cost
> >anything.
> >
> >Hope this helps,
> >
> >Carole Williams
> >Technical Writer
> >Red Hat, Inc.
> >
> >On Wed, 12 Jan 2000, Erich Oliphant wrote:
> >
> >> Hi,
> >> I have installed the RH secure server. I am now trying to
> >> create a test certificate. Sec. 3.5.1 of the install guide says
> >> to run "make testcert". This does not work. I checked
the
> >> makefile and there is no "testcert" target. The
"genkey" and
> >> "certreq" targets are there and work fine. Does anyone
know
> >> what this target is supposed to do so that perhaps I can run the
> >> steps by hand???
> >>
> >> Thanks,
> >> EKO
> >>
> >
> >
> >
> >--
> > PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST
> > ARCHIVES! <a href="<a
> >
href="http://www.redhat.com">http://www.redhat.com</a>">http://www
> > .redhat.com">http://www.redhat.com</a></a> <a
href="<a
> >
href="http://archive.redhat.com">http://archive.redhat.com</a>">ht
> >
tp://archive.redhat.com">http://archive.redhat.com</a></a>
> > To unsubscribe: mail
> > redhat-secure-server-request@redhat.com with
> > "unsubscribe" as the Subject.
> >
> >
>
>
> --
> PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST
> ARCHIVES! http://www.redhat.com http://archive.redhat.com
> To unsubscribe: mail
> redhat-secure-server-request@redhat.com with
> "unsubscribe" as the Subject.
>
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 6.5.2 for non-commercial use <http://www.pgp.com>
iQA/AwUBOH404Yb9cm7tpZo3EQKasACgu2rBzDiNrK3IDvA0VthtpGASEXwAn2Tv
H8FyMpJucoi9KJ6IiWyKpm15
=G5T/
-----END PGP SIGNATURE-----