?Posted by: ?anonymous ?on 01/31/2008 10:59 AM
?Updated by: ?anonymous ?on 01/31/2008 10:59 AM
?Expires: 01/01/2017 12:00 AM
apache ssl
Create a certificate signing request (server.csr) and private key (privkey.pem)…
…]# openssl req -new -out server.csr
Remove pass-phrase from private key (privkey.pem), creating server.key…
…]# openssl rsa -in privkey.pem -out server.key
Create a self-signed certificate, server.crt (public key)…
…]# openssl x509 -in server.csr -out server.crt -req -signkey server.key -days 365
Remove file ‘.rnd’ which contains entropy information, and could be used to re-create keys…
…]# rm .rnd
Remove file ‘privkey.pem’ as we have no use for it…
…]# rm privkey.pem
Keep file ‘server.csr’ if you plan on self-signing any more keys and you want the authority to match up exactly, otherwise delete it…
…]# rm server.csr
Move the created certificate and key to their proper locations…
* …]# mv server.crt /usr/local/apache2/conf/ssl.crt
* …]# mv server.key /usr/local/apache2/conf/ssl.key
apache2: Could not reliably determine the server’s fully qualified domain name, using 127.0.0.1 for ServerName hatası veriyor