LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 01-12-2014, 06:29 AM   #1
Al_
Member
 
Registered: Jun 2009
Location: Switzerland
Distribution: Ubuntu
Posts: 35

Rep: Reputation: 15
certificate for intranet server


Hi
Does anyone know whether (and how) it is possible to obtain from CAcert.org a signed SSL certificate for an intranet server? For a 'normal' server, that can be reached from the internet, CAcert.org ensures ownership of the server by sending an e-mail; but for an intranet server, that cannot be reached (using the LAN name) by CAcert.org ???
 
Old 01-12-2014, 06:51 AM   #2
wstewart90
Member
 
Registered: May 2013
Distribution: Arch Linux
Posts: 79

Rep: Reputation: Disabled
We use geotrust at work and they require a FQDN for an ssl cert AFAIK. They run a whois check and send the email to the administrative contact in the whois results. Take a look at the article I posted below as well. It looks like by 2016 You won't be able to get an ssl cert from a trusted CA without a FQDN. If you don't have a domain name then you're best bet is to self sign your own certificate. You could always just register a domain name for internal use only. The server itself doesn't need a valid internet connection. The client just needs to be able to contact the CA to verify the validity of the cert.

http://www.entrust.com/ssl-certifica...out-non-fqdns/
 
1 members found this post helpful.
Old 01-13-2014, 01:02 PM   #3
Al_
Member
 
Registered: Jun 2009
Location: Switzerland
Distribution: Ubuntu
Posts: 35

Original Poster
Rep: Reputation: 15
Thanks. That is what I feared. No way to register something like *.mycompany.intra (which is the format used at my workplace).
 
Old 01-18-2014, 08:47 AM   #4
myatthu
Member
 
Registered: Jan 2014
Distribution: CentOS, Fedora, Ubuntu
Posts: 108

Rep: Reputation: 17
It is a bit tough for now on with public CA. Start from Nov 2015, there is no way you can buy .local certificate from public CA.
Even already issued will be revoked.
Ref: http://www.digicert.com/internal-names.htm?SSAID=314743
 
  


Reply

Tags
certificate, lan, server, ssl


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Intranet server using Apache jameske Linux - Server 1 10-24-2009 10:42 AM
Resolving Intranet Server Name iseeuu Linux - Server 4 06-18-2008 01:50 PM
How to make DNS Server work with intranet with web site on Unbutu Server? explorer1979 Linux - Server 6 04-04-2007 10:50 AM
The best Intranet Mail Server !! hitesh_linux Linux - Networking 8 01-02-2005 09:30 AM


All times are GMT -5. The time now is 05:49 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration