David Guerrero wrote:
>
> Eugene Crosser wrote:
> >
> > I am considering creation of a CA for company internal purposes.
> > "ca" program included in SSLeay/OpenSSL would be OK but it has
> > limitation of 255 total issued certificates. And text database
> > would be inconvenient for several thousands certificates that we
> > are going to maintain have. Is there any work in progress to create
> > a "better" certificate authority program then "ca"? Thanks.
>
> Is there a limitation of 255 total issued certificates in the OpenSSL
> "ca" program ?
>
> This could be a serious problem for some places....
>
As far as I understand it openSSL NEVER was meant to implement
a CA. The ca functions in openSSL are just meant as supporting
functions in a CA environment, the ca script just as a demo.
There is MUCH more in running a CA than just the openSSL
functionality. Check the openCA project at www.openca.org.
Regards
Michael
--
//---------------------------------------------------------------
// 3C Dr.Klingler, Dr.Portz GbR Tel: ++49 2407 96056
// Kaiserstr. 100 Fax: ++49 2407 96292
// 52134 Herzogenrath Email: [EMAIL PROTECTED]
// Germany
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
