| Author |
 Topic  |
|
|
Actionscripter
Starting Member
Singapore
14 Posts |
 Posted - 14 March 2002 : 22:04:46
|
1) Now, I'm only a student, meaning that I don't have any company and so on. I only wanna play around with SSL on my system. My question is, can I request for a certificate for testing purposes only?
2) Where can I request for a certificate?
3) Certificates uses public key encryption. This means that the original data can be obtained by performing the inverse function of the algorithm. Since it's reversible, what's the use?
4) All a hacker need to do is to try and intercept the transmission, and get hold of the encrypted values. If he wanna login to my account, he can just send the encryted values directly to the server. So what's the use of SSL?
5) When I create the text file for the cert request (of course I didn't send it, since I don't know where to :D), I can see that the encryption strength can be set to 512, 1024, 2048, 4096, 16384. But I thought that IE can only support 128 bit encryption? Also, what's the meaning of bit? For example, what's the meaning of 128 bit?
OK, basically I know nothing about encryption or SSL. If you think that my questions don't seem to make any sense pls correct me, but PLEASE don't flame me or laugh at me.....
Edited by - actionscripter on 14 March 2002 22:22:58 |
|
|
Gremlin
General Help Moderator
New Zealand
7528 Posts |
Posted - 14 March 2002 : 22:11:28
|
Have a wander around www.verisign.com should answer most of your questions about SSL and Certificates
Pretty sure you can still get free trial ID's from verisign also.
www.daoc-halo.com |
 |
|
|
Doug G
Support Moderator
USA
6493 Posts |
Posted - 14 March 2002 : 23:43:53
|
If you have NT Server/2K Server you can make your own certificate. Also thawte used to have personal certificates I think they are (were) free.
======
Doug G
====== |
|
|
|
Actionscripter
Starting Member
Singapore
14 Posts |
Posted - 15 March 2002 : 05:20:36
|
Personal Certificate is not what I want. I want the kind of certificate that can enable SSL on my IIS. Must I really buy one?
|
|
|
|
Gremlin
General Help Moderator
New Zealand
7528 Posts |
Posted - 15 March 2002 : 06:24:23
|
I'm not aware of any way to get a free certificate, other than the trial one I already mentioned above.
www.daoc-halo.com |
|
|
|
Actionscripter
Starting Member
Singapore
14 Posts |
Posted - 15 March 2002 : 10:05:11
|
What will happen after 14 days? At that time I can't use SSL anymore?
Anyway there's another thing I'm confused. A site is said to have 128 bit cipher strength. When I view the cert, it says "RSA (1024 bits)". One said 128 bit, and the other said 1024 bit. What's happening?
Which Windows OS can allow you to create custom certs in order to enable SSL, other than Win 2k server and Win NT server? I'm currently using Win XP Pro, and it seems that I can't create one.
Edited by - actionscripter on 15 March 2002 10:11:19 |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
Posted - 15 March 2002 : 10:44:41
|
The cheaper way to have a certificate generated is to use Win2K server or advanced server to generate one for you. The certificare won't be recognized as being generated by a recognized entity, but it will allow you to use SSL with your IIS .
-------------------------------------------------
Installation Guide | Do's and Dont's | MODs |
|
|
|
Gremlin
General Help Moderator
New Zealand
7528 Posts |
Posted - 15 March 2002 : 17:17:39
|
quote:
The cheaper way to have a certificate generated is to use Win2K server or advanced server to generate one for you. The certificare won't be recognized as being generated by a recognized entity, but it will allow you to use SSL with your IIS .
-------------------------------------------------
Installation Guide | Do's and Dont's | MODs
Is that a personal certificate ?
www.daoc-halo.com |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
Posted - 15 March 2002 : 17:31:17
|
quote:
quote:
The cheaper way to have a certificate generated is to use Win2K server or advanced server to generate one for you. The certificare won't be recognized as being generated by a recognized entity, but it will allow you to use SSL with your IIS .
-------------------------------------------------
Installation Guide | Do's and Dont's | MODs
Is that a personal certificate ?
www.daoc-halo.com
Well to tell you the truth I'm not sure about what is a personal certificate. Is it a certificate (as the name implies) to certify others about your identity? If the answer to that is yes, then the certificates generated by Win2K server editions are not personal. I think they are normal certificates, just that they are not being issued by a recognized authority. You can even use them for production server's but client browser's will always complain, warning that the entity that issued the certificate is not part of the recognized, idoneous certification entities list.
For that I think they are good for testing purposes. Hey, my portable proudldy presents a certificate issued by the Ruirib CA (that is Ruirib Certificate Authority   ).
-------------------------------------------------
Installation Guide | Do's and Dont's | MODs |
|
|
|
Gremlin
General Help Moderator
New Zealand
7528 Posts |
Posted - 15 March 2002 : 17:36:41
|
quote:
For that I think they are good for testing purposes. Hey, my portable proudldy presents a certificate issued by the Ruirib CA (that is Ruirib Certificate Authority ).
www.daoc-halo.com |
|
|
|
Doug G
Support Moderator
USA
6493 Posts |
Posted - 15 March 2002 : 23:44:24
|
quote:
Well to tell you the truth I'm not sure about what is a personal certificate. Is it a certificate (as the name implies) to certify others about your identity? If the answer to that is yes, then the certificates generated by Win2K server editions are not personal. I think they are normal certificates, just that they are not being issued by a recognized authority. You can even use them for production server's but client browser's will always complain, warning that the entity that issued the certificate is not part of the recognized, idoneous certification entities list.
What I recall from Thawte's site was they had a different process they followed when granting a certificate to an individual vs. granting a certificate to a business entity.
In either case you have to provide quite a bit of information to a certificate authority to get a certificate.
======
Doug G
====== |
|
|
| |
Topic |
|
Topic Locked
