Hi, Eugen Leitl wrote:
Am I missing something?This passage, perhaps? In the case of respectable companies offering this kind of service
> users create their secret keys locally; the CA is only sent the > certificate application, a signed copy of which it then sends back. That's _exactly_ what's happening there when selecting the option I mentioned. You generate your key and request locally, send the request to StartCom, you get back a signed cert. Marco