The best way to create a CA using only openssl tools is to use the CA.pl or CA.sh shell scripts.
The best way to create and manage a CA is to use other tools. -Kyle H On Tue, Apr 22, 2008 at 2:17 PM, Jason Dusek <[EMAIL PROTECTED]> wrote: > In the HOWTO on making certificates, it suggests we should > check out the file called "ca.txt" to learn more about making > a CA: > > > 4. Creating a self-signed test certificate > > If you don't want to deal with another certificate > authority, or just want to create a test certificate for > yourself. This is similar to creating a certificate > request, but creates a certificate instead of a certificate > request. This is NOT the recommended way to create a CA > certificate, see ca.txt. > > openssl req -new -x509 -key privkey.pem -out cacert.pem -days 1095 > > -- http://www.openssl.org/docs/HOWTO/certificates.txt > > > There is no such file, nor has there been one for a long time. > I've seen emails on this topic dating back as far as 2001. If > the file can't be restored, can the reference be removed? > > I'd like to know the "recommended" way but net tutorials tend > to be about the easy way. > > -- > _jsn > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List openssl-users@openssl.org > Automated List Manager [EMAIL PROTECTED] > ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
