Look for the SSL Certificates HOWTO on www.tldp.org I still don't know why there is no link to it from the openssl.org web site?
Franck Martin Network and Database Development Officer SOPAC South Pacific Applied Geoscience Commission Fiji E-mail: [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> Web site: http://www.sopac.org/ <http://www.sopac.org/> Support FMaps: http://fmaps.sourceforge.net/ <http://fmaps.sourceforge.net/> Certificate: https://www.sopac.org/ssl/ This e-mail is intended for its addresses only. Do not forward this e-mail without approval. The views expressed in this e-mail may not be necessarily the views of SOPAC. -----Original Message----- From: Rakesh B Bobba [mailto:[EMAIL PROTECTED]] Sent: Wednesday, 11 September 2002 1:50 To: [EMAIL PROTECTED] Subject: Re: how to generate authoritive CA i don't know whether the third step you did is correct. you can get the request signed by using opesssl ca utility(just like openssl req) even after that your netscape will say untrusted certificate because how will netscape know that the CA which issued the certificate to your web server is trustworthy? so you have to include the self signed certificate of your CA (which issued certificate to your web server, openssl ca utility) in trusted CA list of netscape and the it should work fine creating a self signed certificate is possible with openssl req command actually you can do first two of your steps using one openssl req command rakesh ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
