This document helped me so much. It's from Frederick Hirsh..
http://www.ultranet.com/~fhirsch/Papers/cook/ssl_cook.html
It's about SSLeay but it also applies to Openssl very well.
BTW, if Frederick is around here, THANK YOU.
[EMAIL PROTECTED] wrote:
> Okay,
> I'm feeling like a moron, now. I have built quite a few ssl
> servers for people (Thanks, Ralf, et alia!), but never bothered to look
> into the CA side of things ... before now. I am completely lost! I have
> scoured the FAQ at [modssl|openssl].org, but am still very much adrift. I
> cannot understand how to use the ca commands to sign a cert request that
> was generated from an O'Reilly Website Pro box. I am running
> openssl/modssl+apache on a Linux box. The Linux box is where I am
> attempting to run the ca commands. Any, and all, help is enthusiastically
> welcomed! Pointers to a *VERY* detailed HOWTO would help.
> Thanks,
>
> geoffrey
> +++++++++++++++++++++++++++++++++++
> Santa Claus,
> the Tooth Fairy,
> Windows 2000 ...
> Some things you just outgrow.
> ++++++++++++++++++++++++++++++++++
>
> Key fingerprint ===> E8E2 1EC4 6640 1F9A 5A09 0DB6 FC5E BDAA D9CB 6F04
> Public key available upon request.
>
> ------------------------------------------------------------------------
> Part 1.2Type: application/pgp-signature
S/MIME Cryptographic Signature