On 2009.02.19 at 12:38:27 -0800, Database System wrote: > > Hi, > > I'm new to openSSL/SSL. I downloaded the file. It is
If you are new to openSSL, it is better to use version which is provided by your Linux distribution. Every linux distribution out there already includes OpenSSL, and applications which require SSL support are already compiled with it. Only if you are absolutely sure, that version provided by your distribution is too old for your needs, you should bother with compiling OpenSSL under Linux. > openssl-0.9.8j.tar.tar and I want to use it on Linux. But I think > it doesn't mater of which version on my question. > > What I need to do next? Do I need to compile it? what compiler and command? Unpack the archive. There is file named INSTALL in the top level directory. All the installation instructions are in this file. > Is there any instructions for creating certificate after compile it? Typically, OpenSSL user doesn't create certificates. User creates certificate request, and send it to Certification Authority. Authority creates certificate. Of course, OpenSSL allows you to run your own CA. But it is a bit more complicated thing. Your linux distribution probably contain some scripts which simplify creation of certificate request. For example, RedHat/Fedora has crypto-utils package, which contains nice interactive genkeys script. >Or any How to step by step...? This is a big problem. Most of howtos I'm aware of are outdated or even completely disappear from web. Documentation included in the OpenSSL distribution is pure reference, which doesn't outline whole picture. You have to know a lot of things before you can use this documentation effectively. There is also O'Reilly book "Securing applications with OpenSSL". But I haven't read it so don't know if it suites you. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [email protected]
