Creating a CA and using it to sign your own certs?
Jefferson Kirkland
numberwhun at attbi.com
Wed Feb 19 17:22:37 EST 2003
Paul,
I don't know the answer to your questions, but I just wanted to send you
this link to an article at onlamp, that talks about becoming your own CA:
http://www.onlamp.com/pub/a/onlamp/2003/02/06/linuxhacks.html
I didn't know if it would be any help in your quest.
Regards,
Jeff Kirkland
At 11:30 AM 2/19/2003 -0500, pll at lanminds.com wrote:
>Hi all,
>
>I'm trying to create a certificate for my SSL-enabled web server.
>According to this doc:
>
> http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html
>
>You can create your own CA and use that to sign the .csr files to
>create a .crt file. However, they simply mention that you need to
>
> Prepare a script for signing which is needed because the ``openssl
> ca'' command has some strange requirements and the default OpenSSL
> config doesn't allow one easily to use ``openssl ca'' directly. So a
> script named sign.sh is distributed with the mod_ssl distribution
> (subdir pkg.contrib/). Use this script for signing.
>
>Does anyone have such a script? I really don't feel like
>re-inventing the wheel :)
>
>Thanks,
>
>--
>
>Seeya,
>Paul
>--
>Key fingerprint = 1660 FECC 5D21 D286 F853 E808 BB07 9239 53F1 28EE
>
> It may look like I'm just sitting here doing nothing,
> but I'm really actively waiting for all my problems to go away.
>
> If you're not having fun, you're not doing it right!
>
>
>_______________________________________________
>gnhlug-discuss mailing list
>gnhlug-discuss at mail.gnhlug.org
>http://mail.gnhlug.org/mailman/listinfo/gnhlug-discuss
More information about the gnhlug-discuss
mailing list