× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. March 2017

RE: DCM cert for Apache settings

The only time you need a client side certificate is if the server side
requires you to prove who you are. That is very rarely used.
http://ops-basics.blogspot.com/2015/06/how-sslsecure-socket-layer-works.
html is a good write up on how it works.
99.999% of the time on the servers public and private keys, along with a
random key the client creates is all that is used. That link also shows
where in the chain a client side certificate would be used. We had a
client using a healthcare application that required a client certificate
to connect. I think that is the only time I've ever seen a client side
certificate used.




Kevin Bucknum
Senior Programmer Analyst
MEDDATA/MEDTRON
Tel: 985-893-2550

-----Original Message-----
From: MIDRANGE-L [mailto:midrange-l-bounces@xxxxxxxxxxxx] On Behalf
Of Nathan Andelin
Sent: Thursday, March 9, 2017 12:07 PM
To: Midrange Systems Technical Discussion
Subject: Re: DCM cert for Apache settings

Yes.

The client side rarely uses an SSL certificate, especially in cases
like
using an SMTP server/relay. SSL or TLS doesn't matter either. TLS
is
just SSL but starting the SSL handshake later in the communications.

The only time I've personally seen a client side certificate used is
with web services when the server requires the use of a client side
SSL certificate.


Apparently your understanding and mine differ. That's okay, I'll test
what
you're saying. My understanding is that the client certificate is used
to
encrypt the transmission, and that without the key, the mail-relay
would not
know how to decipher it.
--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe,
unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take
a moment to review the archives at
http://archive.midrange.com/midrange-
l.

Please contact support@xxxxxxxxxxxx for any subscription related
questions.

Help support midrange.com by shopping at amazon.com with our affiliate
link: http://amzn.to/2dEadiD

As an Amazon Associate we earn from qualifying purchases.

This thread ...
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.