Carles Xavier Munyoz Bald� schrieb:
>
> Hello,
>
> Wiht this command I make a CSR (Certificate Signing Request) valid only
> for 365 days:
> openssl req -new -days 365 -key server.key -out server.csr
Havn't you forgot the option -x509?
This forces the req utility to issue a (selfsigned x509) certificate
instead of a CSR (that a CA would sign).
A CSR itsself has no time information in it. Try generating
one with
openssl req -new
and then have a look at the actual request with
openssl req -noout -text
> How could I make a CSR for a cetificate that never expires ?
You can't make a non expiring cert. But you can make it
valid long enough (e.g. until 2020) although I don'T
know what the reason for this should be.
> Greetings.
> ---
> CTV-JET
> Carles Xavier Munyoz Bald� / [EMAIL PROTECTED]
> http://www.ctv.es/USERS/carles
> Dpto. Sistemas / System Department
> Clave p�blica PGP / PGP public KEY
> http://www.ctv.es/PGP-STAFF/carles.html
> Tel: +34 96 584 52 91 - Fax: +34 96 584 48 96
> ---
> ______________________________________________________________________
> OpenSSL Project http://www.openssl.org
> User Support Mailing List [EMAIL PROTECTED]
> Automated List Manager [EMAIL PROTECTED]
--
Holger Reif Tel.: +49 361 74707-0
SmartRing GmbH Fax.: +49 361 7470720
Europaplatz 5 [EMAIL PROTECTED]
D-99091 Erfurt WWW.SmartRing.de
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
