[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-developers] PGP installation and config with SSL

Subject: Re: [cobalt-developers] PGP installation and config with SSL
From: "Robert Spurlock" <rspurlock@xxxxxxxxxxxx>
Date: Mon Mar 6 06:09:05 2000

Thanks for the input Jonas.  Just one quick question however...  Is there a
way to put the key in the form itself.  The customer will input the
information in the form to be sent to the magazine.  I wonder if there's a
way to encrypt it automatically?  Is this possible or will that compromise
the security?

Rob
Lock-Net

----- Original Message -----
From: "Jonas Pasche" <jonas@xxxxxxxx>
To: <cobalt-developers@xxxxxxxxxxxxxxx>
Sent: Monday, March 06, 2000 7:37 AM
Subject: Re: [cobalt-developers] PGP installation and config with SSL


> hello rob,
>
> At 03.03.00 18:54, you wrote:
> >Hello,  I have a broad technical question.  I have a RaQ2 and I have
> >installed an SSL certificate for a virtual site.  I am using this site
for
> >hosting customers.  I have one setup now
> >called:
>
><https://secure.lock-net.com/diecast/subscribe.htm>https://secure.lock-net.
com/diecast/subscribe.htm
> >and it's a subscription page for a magazine.  I need to take this form
> >data and send it to the recipient securely.  I was looking into PGP to do
> >this with a script of something but I'm in a little over my head.
> >
> >Question 1:  Is this the best way to get the data sent securely?
>
> i think pgp is a good thougt, but then your customers must have pgp-keys.
> if you're not familiar with pgp-encryption: everybody has (or SHOULD have
> *g*) a private key and a public key. you have to encrypt the message with
> the public key of the customer (which you can get from a keyserver), so
> only he can decrypt the message, using his private key.
>
> >Question 2:  If it is, what do I need to download?/purchase? and install
> >to make this work?
>
> you need pgp or gpg, and a field in your form where your customers can
> enter their key id. your script has to get the public key from a
keyserver,
> encrypt the message with it and send it.
>
> i don't know how important the data is that you're sending. maybe it'd be
a
> good choice to say "if you want your data encrypted, enter your key id
> here. if you don't have a key, download pgp and create one. if you don't
> fill in a value, data will be send unencrypted."
>
> >Question 3:  If it is NOT the best way, what would you guys/gals suggest?
>
> how about presenting the generated data on you ssl-certificated website?
>
> cya, jonas.
> ____________________________________________
> Jonas Pasche
> Technischer Support
>
> webagentur Domke GmbH
>
> Rheinstr. 3 - 64283 Darmstadt - Germany
>
> Telefon +49 6151 17742-33
> Telefax +49 6151 293173
>
> http://www.domke.de
>
> mailto:jonas@xxxxxxxx
> ____________________________________________
>
>
> _______________________________________________
> cobalt-developers mailing list
> cobalt-developers@xxxxxxxxxxxxxxx
> http://list.cobalt.com/mailman/listinfo/cobalt-developers

Follow-Ups:
- Re: [cobalt-developers] PGP installation and config with SSL
  - From: Jonas Pasche

References:
- Re: [cobalt-developers] PGP installation and config with SSL
  - From: Jonas Pasche

Prev by Date: Re: [cobalt-developers] PGP installation and config with SSL
Next by Date: Re: [cobalt-developers] PGP installation and config with SSL
Previous by thread: Re: [cobalt-developers] PGP installation and config with SSL
Next by thread: Re: [cobalt-developers] PGP installation and config with SSL

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index