• 9
name

A PHP Error was encountered

Severity: Notice

Message: Undefined index: userid

Filename: views/question.php

Line Number: 191

Backtrace:

File: /home/prodcxja/public_html/questions/application/views/question.php
Line: 191
Function: _error_handler

File: /home/prodcxja/public_html/questions/application/controllers/Questions.php
Line: 433
Function: view

File: /home/prodcxja/public_html/questions/index.php
Line: 315
Function: require_once

name Punditsdkoslkdosdkoskdo

changing ssl certificates on client machines

i am doing some changes to an application that had a very strange authentication system. for some reason the previous developer has a system where after the user/pass is authenticated, it generates a self-signed ssl certificate specifically for that user and tries to configure the client browser to use that certificate.

yes, that means if 100 people are on the server at once, the server is maintaining a different ssl cert for each user. obviously this isnt working very well.

i am getting authorization to strip this system out and simply deploy the app on a server with a certificate. my question is i have 3 years of users that have these self signed certificates installed on their browsers. if i move this to another server with a standard certificate am i going to run into any problems with these existing users?

ssl
      • 2
    • Are you talking about self-signed certificates generated to be used as client certificate (it doesn't seem to make any sense to generate a new server self-signed certificate every time a user logs on)? What would this have to do with a change of server certificate, then?
      • 2
    • im eliminating the system that generates a new cert for each user. my question is if i have existing clients with these certs installed on their browsers, is eliminating this system and moving to a standard 3rd party cert, will i have problems with these existing clients.
      • 1
    • Are you moving to 3rd part cert, one for each user (client certificates), or simply changing the server certificate?

The only way I can see that being an issue is if the users have something that's tracking which cert is on which site. If you just purchase a good third party CA cert that's trusted by your users, they shouldn't see any change in the site once it's switched out.

  • 0
Reply Report

Trending Tags