On Sun, Jun 13, 2004 at 10:21:30AM +1200, Sigi Kirchmair wrote: > I followed the instructions and generated a cert usung opnssl. > It worked fine but after 30 days the cert expired. > > Now I gueessed that the reason was in the openssl.conf files line: > > default_crl_days = 30 # how long before next CRL
The parameter "default_days" specifies how many days certificates last by default; that's what you want to change. "default_crl_days" refers to the Certificate Revocation List (CRL). You probably want to leave that short, like 30 days. George -- [EMAIL PROTECTED]
pgp34dTY1wvDY.pgp
Description: PGP signature
