[144314] in cryptography@c2.net mail archive
Re: X.509 certificate overview + status
daemon@ATHENA.MIT.EDU (Dave Howe)
Mon Mar 2 19:00:06 2009
Date: Mon, 02 Mar 2009 19:44:55 +0000
From: Dave Howe <DaveHowe@gmx.co.uk>
To: Email List - Cryptography <cryptography@metzdowd.com>
CC: Travis <travis+ml-cryptography@subspacefield.org>
In-Reply-To: <20090227212645.GK15955@subspacefield.org>
Travis wrote:
> Hello,
>
> Recently I set up certificates for my server's SSL, SMTP, IMAP, XMPP,
> and OpenVPN services. Actually, I created my own CA for some of the
> certificates, and in other cases I used self-signed. It took me
> substantially more time than I had anticipated, and I'm left with
> feelings of unease.
odd. the openssl installations I am familiar with came with example
config files that were perfectly functional, took me about ten minutes
to figure out what needed doing purely from the man pages and the
example config.
if ten minutes is too long, just go with xca
(http://sourceforge.net/projects/xca) which does it all in a nice,
pretty gui for you. A few distros (suse, for example) also have a gui
for certificate issuing in their central admin tool.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
