当前在线人数16374
[合集] SSL certificate - 未名空间精华区
首页 - 版面精华区 - 电脑网络精华区 - 窗口里的风景版精华区 - 精华区文章阅读 首页
未名交友
[更多]
[更多]
[合集] SSL certificate

发信人: les (Walk the walk, talk the talk), 信区: DotNet
标  题: [合集] SSL certificate
发信站: BBS 未名空间站 (Sat May 26 22:20:53 2007), 站内

☆─────────────────────────────────────☆
  Dintern (.Net newbie) 于 (Tue Apr  3 13:55:19 2007) 提到:

I'm trying to secure a web service with SSL certificates. Is there
any easy way to generate the certificates for the web servers? Don't
want to buy them since I'm still at testing stage.

I used selfssl bundled in IIS resource kit. It generates the certs
but doesn't tell me where they are stored. I need the physical files
to secure the web service.


☆─────────────────────────────────────☆
  kongzi (鸡龟骨滚羹) 于 (Tue Apr  3 20:47:02 2007) 提到:

You can export it to .pfx file and import it to another site
【 在 Dintern (.Net newbie) 的大作中提到: 】
: I'm trying to secure a web service with SSL certificates. Is there
: any easy way to generate the certificates for the web servers? Don't
: want to buy them since I'm still at testing stage.
: I used selfssl bundled in IIS resource kit. It generates the certs
: but doesn't tell me where they are stored. I need the physical files
: to secure the web service.





☆─────────────────────────────────────☆
  yiyayiyayo (Mera naam Itiaan hai) 于 (Tue Apr  3 23:09:08 2007) 提到:

Free CA:

http://www.cacert.org/

OpenSSL should have a tool for you to create a self-signed certificate as we
ll.  Never tried, though.

I tried JDK's keytool and created a self-signed cert for Tomcat.


【 在 Dintern (.Net newbie) 的大作中提到: 】
: I'm trying to secure a web service with SSL certificates. Is there
: any easy way to generate the certificates for the web servers? Don't
: want to buy them since I'm still at testing stage.
: I used selfssl bundled in IIS resource kit. It generates the certs
: but doesn't tell me where they are stored. I need the physical files
: to secure the web service.





☆─────────────────────────────────────☆
  yiyayiyayo (Mera naam Itiaan hai) 于 (Tue Apr  3 23:14:48 2007) 提到:

IIS 可以直接用PKCS #12 keystore 吗?

我用tomcat的时候,得将PFX 文件import到JKS keystore才行。JDK的keytool还不支持
PKCS #12文件。


【 在 kongzi (鸡龟骨滚羹) 的大作中提到: 】
: You can export it to .pfx file and import it to another site





☆─────────────────────────────────────☆
  Dintern (.Net newbie) 于 (Tue Apr  3 23:32:27 2007) 提到:

I can export with the command certmgr.msc now but selfssl generated
certs don't get seem to count as trusted certs on other machines.

【 在 kongzi (鸡龟骨滚羹) 的大作中提到: 】
: You can export it to .pfx file and import it to another site





☆─────────────────────────────────────☆
  kongzi (鸡龟骨滚羹) 于 (Wed Apr  4 10:17:29 2007) 提到:

Of course 'YOU' are not trusted publisher. For development testing purpose,
you can install the cert on the client machine.
【 在 Dintern (.Net newbie) 的大作中提到: 】
: I can export with the command certmgr.msc now but selfssl generated
: certs don't get seem to count as trusted certs on other machines.





☆─────────────────────────────────────☆
  yiyayiyayo (Mera naam Itiaan hai) 于 (Wed Apr  4 14:10:42 2007) 提到:

What do you want?  You'll be in the trusted root CA keystore by default in
all browsers only if you are VeriSign, Thawte or something like these.

【 在 Dintern (.Net newbie) 的大作中提到: 】
: I can export with the command certmgr.msc now but selfssl generated
: certs don't get seem to count as trusted certs on other machines.





☆─────────────────────────────────────☆
  Dintern (.Net newbie) 于 (Thu Apr  5 00:59:12 2007) 提到:

I figured it out, just followed what WSE 3.0 document suggests.

【 在 yiyayiyayo (Mera naam Itiaan hai) 的大作中提到: 】
: What do you want?  You'll be in the trusted root CA keystore by default in
: all browsers only if you are VeriSign, Thawte or something like these.





[返回]
赞助链接
未名交友
将您的链接放在这儿
 

Site Map - Contact Us - Terms and Conditions - Privacy Policy

版权所有,未名空间(mitbbs.com),since 1996