Woops. You are correct. I just checked, and indeed the certification part is quite different for Server ID's. I was under the assumption that there was not significant differences between certificates. Definitely extensive. Thanks though for the answers regarding the Chain of Trust establishment. ----- Original Message ----- From: "Andrew T. Finnell" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Saturday, March 02, 2002 3:09 PM Subject: RE: OpenSSL Chain Of Trust
> From what I can see you bought an email certificate from > Verisign. Not a certificate for web servers. They do extensive > background checks before giving you a certificate that will work on a > server. If this is the case you will not be able to use the certificate > you obtained from Verisign for your website. You need to purchase the > certificate for web servers not your email address. > > - > Andrew T. Finnell > Active Solutions L.L.C > [EMAIL PROTECTED] > > > -----Original Message----- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED]] On Behalf Of Gregory Stark > > Sent: Saturday, March 02, 2002 2:21 PM > > To: [EMAIL PROTECTED] > > Subject: Re: OpenSSL Chain Of Trust > > > > > > Amazing. Are you serious? What is the issuer Name in your > > certificate? I'd like to believe VeriSign did more than just > > identify your cash. > > > > ====================== > > Greg Stark > > [EMAIL PROTECTED] > > ====================== > > > > > > ----- Original Message ----- > > From: <[EMAIL PROTECTED]> > > To: <[EMAIL PROTECTED]> > > Sent: Thursday, February 28, 2002 5:16 PM > > Subject: OpenSSL Chain Of Trust > > > > > > > I'm rather new to the SSL world, but I have a simple issue. I paid > > > big > > $$$ > > > to Verisign for a Certificate for my web server. It seems > > to me that > > > the only reason I had to pay big $$$ is because Microsoft lists > > > Verisign as a Trusted CA. Of course, the reason for this is so > > > Verisign can "Identify" who I am, which I must say, is not > > > verification. They took my Hotmail Email > > Address, > > > and a > > > Wire Transfer from Western Union. I never had to provide > > my identity. > > > > > > Can I do the following? > > > > > > Issue an openSSL certificate to another server, from the > > server where > > > I installed the expensive Verisign certificate? > > > > > > My hope is that the certificate I issue will establish a chain of > > > trust > > back > > > to verisign, thus, users won't get that silly popup window in their > > browsers > > > saying the site is dangerous, etc etc. I don't think my > > certificate > > > is dangerous just because I have not paid Microsoft massive > > amounts of > > > money > > to > > > consider me a CA. Is their any way to do this? Thanks. > > > > > > > > > > > ______________________________________________________________________ > > > OpenSSL Project > > http://www.openssl.org > > > User Support Mailing List > > [EMAIL PROTECTED] > > > Automated List Manager > > [EMAIL PROTECTED] > > > > > > > ______________________________________________________________________ > > OpenSSL Project http://www.openssl.org > > User Support Mailing List [EMAIL PROTECTED] > > Automated List Manager [EMAIL PROTECTED] > > > > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
