[lug] htpasswd security
Nate Duehr
nate at natetech.com
Wed Mar 5 12:17:17 MST 2003
> "Third-party registration authorities" means that BLUG, say, could
> decide to issue personal certificates to members so they could
> prove their membership, send secret messages to each other, access
> a secure web site that requires client certs, whatever. All they
> need to do is write a JMS "registration authority" and subscribe
> to the BeastMark message server. The BLUG RA would then be able
> to provide profiles (think blank certificate requests) via all
> interfaces, and approve certificates for their members.
It might also make client-side certificate requirements on a website a heck
of a lot more useful than they are in today's environment. :-)
If your organizations your belong to could easily be their own "real" CA's
like you describe, the could issue client-side certs for clients to access
their websites, etc... that's neat.
It can be done today but it's kludgy for anything other than
server-to-server communications/authentication.
Good luck with it Bear, neat projects!
Nate Duehr, nate at natetech.com
More information about the LUG
mailing list