> openssl x509 -in cacert.pem -inform PEM -out cakey.der -outform DER > > I then renamed the cakey.der to cakey.cer and added it to > Acrobats trust just fine. However, I want to make sure that it > is OK to freely distribute the cakey.cer file to all of the users > that need to ad our CA to their Acrobat trust chain ?? > > Thanks, > > Andrew Greig > Systems Analyst/Developer > Kalamazoo Valley Community College
What do you mean by "OK"? What are you trying to prevent? As I read your question, it seems self-evident that the answer is yes, but that may be because one my assumptions is wrong. I'm assuming: 1) By "ok" you mean from a security standpoint. 2) You know the .pem file is safe to distribute. 3) You produced the .der file from just the .pem file, just as anyone else could. So the question is either trivial or there's a subtlety that's not coming across. DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
