I will be using these steps to generate the key and csr: # openssl genrsa -out /etc/ssl/private/server.key 2048 (without des3 so I get no password prompt)
# openssl req -new -key server.key -out domain.server.csr I will then cat the above server.key and the returned .crt from thawte (or verisgn) then create a PEM file. Then this directive will be added in pound.cfg; Cert "/etc/pound/host.pem" Do I need to worry about the CA file? Previously we had a thawte cert where I did not need to deal with any CA file for POUND. Just the server private key and the return CRT pem'd together worked fine. anyone have experience with Thawte/Verisgn and POUND? TIA -- To unsubscribe send an email with subject unsubscribe to [email protected]. Please contact [email protected] for questions.
