Subj : Re: Chromium and self-signed certificates To : Lawrence D'Oliveiro From : bp@www.zefox.net Date : Sun Sep 01 2024 16:12:50 Lawrence D'Oliveiro wrote: > On Sun, 1 Sep 2024 00:23:58 -0000 (UTC), bp wrote: > >> Lawrence D'Oliviero's reply following yours touches on what I suspect is >> my greatest misunderstanding: I thought a self-signed certificate stood >> on its own. > > You can do it that way. That requires importing every single self-signed > cert one by one. That's what I thought the instructions cited in the FreeBSD Handbook did and what I was trying to do initially. > If you need several of these, then setting up your own CA > just makes things simpler. It appears there's something fundamental that I'm not understanding 8-( In principle it would make sense to make a root CA for the three domains (zefox.com, zefox.net and zefox.org) under my control but if I disturb that one CA up all three become unreliable. I'm starting with one domain (and its only physical host) in an attempt to grade the learning curve a little flatter. Thanks for writing! bob prohaska --- SoupGate-Win32 v1.05 * Origin: Agency HUB, Dunedin - New Zealand | Fido<>Usenet Gateway (3:770/3) .