On 2008-06-15, Stuart Henderson <[EMAIL PROTECTED]> wrote:
> On 2008-06-14, General Delivery <[EMAIL PROTECTED]> wrote:
>> If, as you've indicated, you're going to use the cert for e-commerce, then
>> self-signed is NOT the way to go.
>>
>> FREE, no cost, non-testing, one-year SSLs are available fr
Many thanks to all who gave information. It's been really useful.
So to help others here is a write up:
1) Generate your ssl key file
openssl genrsa -des3 -out server.key 4096
2) Protect your key file (not vital but you should take REAL care over the key
file)
chmod 400 server.key
3) Generat
On Sun, 15 Jun 2008, Rogier Krieger wrote:
On Sun, Jun 15, 2008 at 9:37 AM, Khalid Schofield
<[EMAIL PROTECTED]> wrote:
Running openbsd 4.0 and apache 1.3 . I've loads of virtual hosts on
apache and I'm now running apache from rc.conf.local with:
httpd_flads "-u -DSSL" .
That probably is a t
On Sun, Jun 15, 2008 at 9:37 AM, Khalid Schofield
<[EMAIL PROTECTED]> wrote:
> Running openbsd 4.0 and apache 1.3 . I've loads of virtual hosts on
> apache and I'm now running apache from rc.conf.local with:
> httpd_flads "-u -DSSL" .
That probably is a typo and in your rc.conf.local it would rea
Hi,
ok used godaddy in the end and decided to throw both suggestions and use a
password with a 4096bit certificate.
So I've got my certificate signed back and the key on my box.
I've tried to intergrate it into my system but had no luck.
Running openbsd 4.0 and apache 1.3 . I've loads of virt
On 2008-06-14, General Delivery <[EMAIL PROTECTED]> wrote:
> If, as you've indicated, you're going to use the cert for e-commerce, then
> self-signed is NOT the way to go.
>
> FREE, no cost, non-testing, one-year SSLs are available from
> http://cert.startcom.org. starcom's root CA is "recognized"
Khalid,
A certificate bought from a trusted Certificate Authority simply means
a client can verify the certificate's validity through a third party.
This does not mean the web page data is securely encrypted, does not
mean the data on the site is valid and does not mean that the data can
not be co
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of
Khalid Schofield
Sent: Saturday, June 14, 2008 12:34
To: misc@openbsd.org
Subject: OpenSSL On Openbsd help
Hi,
I need to get a proper signed ssl certificate for my ecommerce website
hosted on my openbsd
Hi!
Even if I'm not the OP, this is a good guide... Cool.
On Sat, Jun 14, 2008 at 10:42:37AM -0700, Dustin Lundquist wrote:
>[...]
>The process of setting up signed cert is as follows:
>1. Generate your private key and secure file permissions (you want to do
>this in a secure fashion, i.e. on th
This is REALLY useful. Thanks. Gets right to the matter! Although this
will fix my issue the other people's replys are an interesting insight and
I shall follow advice and read about how x509 works.
On Sat, 14 Jun 2008, Dustin Lundquist wrote:
Khalid Schofield wrote:
So do I have to use pa
On Sat, 14 Jun 2008, Chris Kuethe wrote:
On 6/14/08, Khalid Schofield <[EMAIL PROTECTED]> wrote:
One last thing who would you recomend to sign my csr?
I got my cert through godaddy. ~$20. took about 4hrs, start to finish...
I started looking at godaddy and almost bought a 4 year certificat
Khalid Schofield wrote:
> So do I have to use pass phrases when generating the certificate? If I
> use a pass phrase why? How does it effect the certificate and it's use?
>
> Also if I use a pass phrase do I have to tell apache about it? Does it
> go in a config or do I have to enter it when reloa
On Sat, 14 Jun 2008, Khalid Schofield wrote:
> Hi,
> I need to get a proper signed ssl certificate for my ecommerce website
> hosted on my openbsd box. Getting confused as most websites describe
> how to do this in many different ways and most refere to self signed
> certificates. Wanted to ask th
Hi,
I need to get a proper signed ssl certificate for my ecommerce website
hosted on my openbsd box. Getting confused as most websites describe how
to do this in many different ways and most refere to self signed
certificates. Wanted to ask the experts before I go and throw $100 at the
task.
14 matches
Mail list logo
