Hello
As many others, I decided to get certificate from Verisign for our
website.
1. I generated server private key using
./ssleay genrsa -des3 -rand rand.dat -out adelapriv.key 1024
2. I realized that I have to make CSR request file.
ssleay req -new -key adelapriv.key -out adelaziad.csr
But ssleay said:
Using configuration from /usr/local/ssl/lib/ssleay.cnf
Unable to load config info
Enter PEM pass phrase:
unable to find 'distinguished_name' in config
problems making Certificate Request
Question1: why SSLeay wants config file (which I haven't) when I am
generating CSR?
Question2: why documentation does't say that you must have some config
file?
3.So after reading mod-ssl's makefiles I add "-config .mkcert.cfg"
parameter.
ssleay req -new -key adelapriv.key -out adelaziad.csr -config
.mkcert.cfg
Then I answered all SSLeay's questions and SSLeay gave me CSR file.
Question3: Did I something wrong by using .mkcert.cfg file (with
Snakeoil company description)? I hope that my answers replaced every
default value.
Question4: Are there any problems with CSR files generated this way at
Verisign?
Question5: I have successfully installed apache + mod-sll + jserv. What
should I do
to install certificate received from Verisign and my private key?
thanx
MArtin Kuzela
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
