On Fri, 16 Feb 2001, Darren Nickerson wrote:
>
> Is the "cannot load CA data" important? Have I missed a step in the SSL setup?
Nope. There's a sort of virtual monopoly on certificate authorities (CAs)
whereby apps that have builtin SSL automatically trust the CAs that are
built into them. These are generally Verisign, Thawte, etc. If you
create and sign your own certificate, you're becoming your own certificate
authority. Eudora has no knowledge of your CA (especially since you just
created it). It might be possible to insert your CA into Eudora (it is
possible with Netscape and IE), but I'll bet it's undocumented.
Regardless, all the error means is that Eudora doesn't know who signed
your certificate, and trusts it only because you told it to do so. You
still have all the encryption that you would have with a known-CA signed
one. Otherwise, you could pay the insane amount of money to get a
certificate from Verisign or Thawte or whoever, but I wouldn't bother.
-Bitt
