1. Use a cert from a CA that is included in the MS Certificate Store
2. Add your cert to the store

Using self-signed certs is evil, get one from a CA, if you don't want to pay, you can use StartCom ( www.startssl.com ) which is included with every browser EXCEPT IE, and add it to your machines certificate store to avoid the warning with OE or other MS products. However, if you use Thunderbird the StartCom root cert is already included.

fg wrote:

Hello all
I use stunnel on a server with a stunnel.pem file generated with openSSL,( this file is not certified with verisign or others...)
Each time i launch outlook express on a client a have a warning saying that the server is using a certificate who can't be verified....
I have to close this warning and after all is ok...

Question
Is it possible to skip this warning? perhaps with a public key approuved in outlook express???

thanks for help

Ne gardez plus qu'une seule adresse mail ! Copiez vos mails vers Yahoo! Mail
_______________________________________________
stunnel-users mailing list
stunnel-users@mirt.net
http://stunnel.mirt.net/mailman/listinfo/stunnel-users
  