It's not exactly a bug in openSSL. Just weirdness: openssl req command options:
"-days n when the -x509 option is being used this specifies the number of days to certify the certificate for. The default is 30 days." It looks like default_days setting in ca.cnf is irrelevant. Ivan Kalik Kalik Informatika ISP Dana 22/9/2008, "sphaero" <[EMAIL PROTECTED]> piše: > > >Alan DeKok-2 wrote: >> >> sphaero wrote: >>> I was just wondering why the Makefile in freeradius 2.0 for creating >>> certificates only produces a CA which is valid for 1 month. I don't >>> reckon >>> that's handy for production use. >> >> They are "test" certificates. For production use you need to edit the >> OpenSSL configuration files. >> >> >> > >Well according to your site the instructions are for production use. > >http://deployingradius.com/ link to "Create certificates for production >use." > >Rg, > >Arnaud > >-- >View this message in context: >http://www.nabble.com/make-certificate-with-make-is-only-1-month-valid-tp19607549p19613999.html >Sent from the FreeRadius - User mailing list archive at Nabble.com. > >- >List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > > - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html