Digitaldogma	Main Page | About | Help | FAQ | Special pages | Log in

Apache

Notes on various configs for the Apache web server:

Contents 1 SSL 1.1 Renewing a certificate 1.2 Create new certifacte 1.3 External Links

SSL

All CA information is stored on monkeyboy in /etc/ssl/CA.

Renewing a certificate

Sadly, I did not save the separate requests, so I will need to create a new request once the most recent certificates timeout. In the future I will save these, and be able to use the following to request a new certifact using the same key:

First revoke the old certifacte

openssl ca -revoke newcerts/02.pem -config ./openssl.cnf

Then re-sign the request

openssl ca -out cert.pem -config ./openssl.cnf -infiles server-req.pem

Create new certifacte

Create request

openssl req -new -nodes -out server-req.pem -config ./openssl.cnf

Sign it

openssl ca -out server-cert.pem -config ./openssl.cnf -infiles server-req.pem

External Links

All information gathered from: http://www.eclectica.ca/howto/ssl-cert-howto.php

View source | Discuss this page | Page history | What links here | Related changes This page has been accessed 781 times. This page was last modified 16:05, 20 July 2007.