On my little system I've three types of self created certificates that
will all expire this year (I didnt pay much attention to expiration
when first creating them).
I'm now looking for a way how to extend this validity without
recreating the
certificates and therefore breaking existing
It is not true, because it is possible to extend the validity of a
certificate, even with openssl.
You have to create a new certification request, with an extended period of
time.
Rossi
- Original Message -
From: Markus Lorch [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Monday,
It is not true, because it is possible to extend the validity of a
certificate, even with openssl.
I'd be really curious how you accomplish this, other than the solution
below ... which creates a new cert request which becomes a new cert
after the cert request has been signed
I.e. a PKC is
Thnx a lot for your detailed answer.
I already started following your recommandations and created a new
CA.crt based on the given old ca.key and also created a new CSR
(also based on its old key) and signed it with the new CA to get a
new CRT.
The new CRT is perfectly accepted by all clients
Hi Rodney,
Rodney Thayer wrote:
I'm trying to build OpenSSL 0.9.7 on OS X 10.2.3 with CodeWarrior.
I tried using the 'mcp' files in the MacOS directory, but they
don't work. Specifically, they can't find /usr/include/sys/types.h.
Short of being grumpy the compiler's too clueless to find
At 07:15 AM 2/17/2003 -0800, Aram wrote:
I've built it with GNU on OS X. The only problem I ran into was the problem
stated in the file PROBLEMS, where OS X already has an older version of the
OpenSSL libraries.
I've done that too. There is, by the way, a serious problem with
that
Hi
Is there a way to redirect the GET/POST request from a file to the openssl
s_client app? something like:
cat get.txt | openssl s_client -connect server:443 -cert crtfile -key keyfile
The result of the above is that the program exists with DONE printed to the
console.
I have tried the
Hi Rodney,
Yes, that happened to me. I didn't delete the files, just moved them to
another directory, but then I couldn't boot. I had to boot into single user
mode, copy the files back and then I was able to reboot fine.
Regards,
Aram
Rodney Thayer wrote:
At 07:15 AM 2/17/2003 -0800, Aram
TL == Terry Lambert [EMAIL PROTECTED] writes:
TL not being overridden, even when the library path is. This is
TL most likely due to a bug in the GNU configure script. The best
TL way around those bugs is do not use GNU configure.
FYI, FreeBSD is not the only OS on which this problem has been
Vivek Khera wrote:
TL == Terry Lambert [EMAIL PROTECTED] writes:
TL not being overridden, even when the library path is. This is
TL most likely due to a bug in the GNU configure script. The best
TL way around those bugs is do not use GNU configure.
FYI, FreeBSD is not the only OS on
Hello,
I am making my own private CA, using the CA.pl scripts provided under the
apps directory of OpenSSL release.
I run ./CA.pl -newca
It asks for filename, and I enter without giving any.
I am prompted for PEM pass phase. I enter some.
After which, I
11 matches
Mail list logo