> Hi,
>
> while creating certificate requests using openssl, one is prompted for
> some information like Country name, Sate, Locality name etc.
> Though these parameters have defaults set, one has to hit return to move
> ahead.
>
> Is there a way to achieve this without being prompted for any infor
You may have already gotten this answer, but just in case you haven't...
You're looking at two distinct problems. The first is protecting the data
"in motion", and you basically need to look at the SSL routines and
related authentication information (e.g., X.509 certificates). The data
you put i
>> Can a certificate repository freely convert between PEM and DER formats?
>
> Yes, they are simple transcriptions, so something else is going on.
IIRC the 'trusted' tag on some certs were getting lost when converted back
to PEM. But it's been awhile and could easily have been a problem between
[I'm not sure if this goes into -users or -dev since the implementation
uses the openssl library, not the command-line tools.]
Can a certificate repository freely convert between PEM and DER formats?
I thought they were simple transcriptions, but I'm not sure since I'm
having problems with a trus
> What could be the reasons for using anything other than openssl as CA? Are
> there security issues?
>
> Are people using openssl as their private CA? are any particular problems
> reported regarding the use of openssl as private CA on large scale?
I was designing an open Java/C CA a few years ba
