Current time: 11-16-2024, 09:40 AM Hello There, Guest! (LoginRegister)


Post Reply 
[HowTo] Create your own SSL CA and secure multiple services
Author Message
rsmithgs Offline
Junior Member
*

Posts: 176
Joined: Apr 2007
Reputation: 1
Post: #11
RE: [HowTo] Create your own SSL CA and secure multiple services
http://www.cacert.org/

Dont quite know how reconised the certificates are though.

Think some dedicated server providers do free SSL certs with packages. But they have to remain with that server.
04-03-2008 04:59 AM
Find all posts by this user Quote this message in a reply
DaSilva Offline
Member
***

Posts: 302
Joined: Dec 2007
Reputation: 0
Post: #12
RE: [HowTo] Create your own SSL CA and secure multiple services
This cacert gives me a free certificate after the successful test or what?
04-03-2008 06:01 AM
Visit this user's website Find all posts by this user Quote this message in a reply
rsmithgs Offline
Junior Member
*

Posts: 176
Joined: Apr 2007
Reputation: 1
Post: #13
RE: [HowTo] Create your own SSL CA and secure multiple services
Dunno.

I would try and check to see what percentage of browsers will see the certificate as a valid one. Otherwise your back to square one.

Edit : Found this on the site

(*) Please note a general limitation is that, unlike long-time players like Verisign, CAcert's root certificate is not included by default in mainstream browsers, email clients, etc. This means people to whom you send encrypted email, or users who visit your SSL-enabled web server, will first have to import CAcert's root certificate, or they will have to agree to pop-up security warnings (which may look a little scary to non-techy users).

Which would be the same for your self signed certificates.

Though by spreading CAcerts instead of your self signed ones you are helping the spread of the CAcert Root certificate
(This post was last modified: 04-03-2008 06:49 AM by rsmithgs.)
04-03-2008 06:20 AM
Find all posts by this user Quote this message in a reply
DaSilva Offline
Member
***

Posts: 302
Joined: Dec 2007
Reputation: 0
Post: #14
RE: [HowTo] Create your own SSL CA and secure multiple services
I know have a certificate from StartSSL but I don't know how to implement it to my server because I only have a *.crt , a *.csr and a *.key file but no *.pem .
How can I use this now?
Thanks.
04-04-2008 06:49 PM
Visit this user's website Find all posts by this user Quote this message in a reply
rsmithgs Offline
Junior Member
*

Posts: 176
Joined: Apr 2007
Reputation: 1
Post: #15
RE: [HowTo] Create your own SSL CA and secure multiple services
DaSilva Wrote:I know have a certificate from StartSSL but I don't know how to implement it to my server because I only have a *.crt , a *.csr and a *.key file but no *.pem .
How can I use this now?
Thanks.

I think you can copy your *.crt and rename the copy *.pem
04-04-2008 07:06 PM
Find all posts by this user Quote this message in a reply
Cube Offline
Member
***

Posts: 740
Joined: Apr 2007
Reputation: 9
Post: #16
RE: [HowTo] Create your own SSL CA and secure multiple services
But StartSSL is not trusted as well as far as I see.
04-04-2008 08:14 PM
Find all posts by this user Quote this message in a reply
rsmithgs Offline
Junior Member
*

Posts: 176
Joined: Apr 2007
Reputation: 1
Post: #17
RE: [HowTo] Create your own SSL CA and secure multiple services
Cube Wrote:But StartSSL is not trusted as well as far as I see.

That does look like the case.

If you do not want the certificate errors to appear in the web browser and are looking to get a certificate for free you will need to get the clients to install your certificate on the PC they are using. TO get a reconised certificate you will need to pay money.
04-04-2008 08:46 PM
Find all posts by this user Quote this message in a reply
fulltilt Offline
Member
***

Posts: 1,225
Joined: Apr 2007
Reputation: 5
Post: #18
RE: [HowTo] Create your own SSL CA and secure multiple services
error by certificate generation

if i use:
Code:
openssl genrsa -out apache.key.pem -rand private/.rand 2048
openssl req -new -key apache.key.pem -out apache.req.pem
openssl ca -name RootCA -in apache.req.pem -out apache.cert.pem

i get this error in last step openssl ca:
Code:
Using configuration from /usr/lib/ssl/openssl.cnf
variable lookup failed for RootCA::private_key
21745:error:0E06D06C:configuration file routines:NCONF_get_string:no value:conf_lib.c:329:group=RootCA name=private_key
05-20-2008 03:28 AM
Find all posts by this user Quote this message in a reply
thibotus01 Offline
Junior Member
*

Posts: 47
Joined: Feb 2009
Reputation: 0
Post: #19
RE: [HowTo] Create your own SSL CA and secure multiple services
This error is still unsolved? I got the same...... Rolleyes
08-01-2009 08:12 PM
Find all posts by this user Quote this message in a reply
MasterTH Offline
Member
***

Posts: 570
Joined: Feb 2009
Reputation: 4
Post: #20
RE: [HowTo] Create your own SSL CA and secure multiple services
i used the script several times.
may u forget something in the howto??
08-02-2009 04:49 AM
Find all posts by this user Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 4 Guest(s)