On Tue, Jul 27, 2004 at 11:40:00AM +0100, Enda mentioned:
> The key generation must be done by the webserver, or within the webserver
> rulesets, so for example, if you wanted to SSL enable a netscape server, you
> couldnt generate an arbitary cert and import it in and have SSL working
> perfectly as the public key in the cert wouldnt necessarily match a private
> key in the webserver, you would first have to use netscapes keygeneration
> programs to generate a public and private key pair and it will automatically
> add the private key to its keychain etc, and produce a certificate template
> with the public key and produce a CSR.
Damn, that's convoluted.
All I want is something that'll make the unsigned cert and the csr, for
apache or IIS. You have to be a developer to make something so simple so
complex...
As was pointed out, it's a pair of openssl commands, with some simple PHP
to hide their invocation. No webservers needed.
John
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!
