Home page logo
/

basics logo Security Basics mailing list archives

... may be a dumb question ?
From: Michael Gale <michael () bluesuperman com>
Date: Tue, 30 Dec 2003 22:35:17 -0700

Hello,

        I have a question, I want to make a secure web site for me and a few
people. So this is my crazy design.

I setup Apache with PHP and am using mod_ssl. I created my own CA on a
linux box. I then created a CSR for the web server and
signed it with my CA.

Now I give all the people I want to have access to the site my ca.crt
and they import it into their browser. So now there browser will accept
my site's cert :) with out the warning.

Now if they are running a linux / unix box I can have them create a CSR
and have my CA sign it. Then they can import that cert into their
browser.

Now if I understand it correctly when the client accesses my site the
server and client will exchange certs and trust each other :) unless I
add the user to the CRL.

The rest of the traffic will be over SSL ... so is this a secure way of
allows access to a directory ? 

Do you see any problems ?


-- 
Hand over the Slackware CD's and back AWAY from the computer, your geek
rights have been revoked !!!

Michael Gale
Slackware user :)
Bluesuperman.com 

---------------------------------------------------------------------------
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
  • ... may be a dumb question ? Michael Gale (Dec 31)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]