Re: issues with OpenSSL 1.1.1n

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


On Tue, Nov 01, 2022 at 06:08:10PM -0500, Ray Crumrine wrote:

> Oh my gosh! Thank you. I am a newbie when it comes to certificates. I
> am only using tls for outbound calls. I thought I shouldn't need a
> certificate when doing outbound only [a client] but was getting some
> weird error. After I read your email I simply commented out both
> "certificate" lines in my configuration and it works!!!

You don't need (and generally should not configure) client certificates
for connections to random servers that are not specifically expected to
authenticate your client certificates.

> One last question. I don't need certbot at all then, right?

If you're not running any TLS-enabled servers, and no server expects
hostname-based TLS client certificates from your client, then indeed you
do not need certbot.  It vends TLS server/client certificates for domain
names based on trust-on-first-use verified DNS domain control.


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux