On Wed, Oct 27, 2004, Ronan wrote: > > > [EMAIL PROTECTED] wrote: > >Why did you concatenate the server.key and the server.csr? Why don't you > >use > >the csr to produce the certificate??? > > because all the examples in the > http://www.openssl.org/docs/apps/x509.html# > use .pem files
The CSR is a PEM file anyway so you could use that directly. > im just following the tutorials i can find on the web and the man pages... > if ive read them wrong its cause im not 100% sure of what im doing > > so in place of the pem file counld i just use... > > /usr/local/ssl/bin/openssl x509 -req -in ./server.csr -CA ./cacert.pem > -CAkey ./private/cakey.pem -CAserial ./serial -out ./ronanscert.pem > > would this give me what i need??? > I'd suggest you use the CA.pl script instead. That should make things much easier. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
