Kyle Hamilton wrote:
> I'm going to hop in here and mention that MacOSX has a basic but
> useful X.509 CA app integrated into its Keychain Access application.
>
> -Kyle H
>
> On Mon, Mar 24, 2008 at 12:02 PM, Patrick Patterson
> <[EMAIL PROTECTED]> wrote:
>
>> 3: Your budget. If you are using r
Patrick Patterson wrote:
> Hi there;
>
> On Monday 24 March 2008 12:24:40 Cabz.List wrote:
>
>> Morning,
>>
>> I am experiencing some PKI comprehension issues:
>>
>> 1) When one talks about creating the "Trusted Root CA" is this different
>> from the "Signing CA"?
>> a. The Trusted Root CA's
I'm going to hop in here and mention that MacOSX has a basic but
useful X.509 CA app integrated into its Keychain Access application.
-Kyle H
On Mon, Mar 24, 2008 at 12:02 PM, Patrick Patterson
<[EMAIL PROTECTED]> wrote:
> 3: Your budget. If you are using raw OpenSSL for your CA, you probably do
Hi there;
On Monday 24 March 2008 12:24:40 Cabz.List wrote:
> Morning,
>
> I am experiencing some PKI comprehension issues:
>
> 1) When one talks about creating the "Trusted Root CA" is this different
> from the "Signing CA"?
> a. The Trusted Root CA's private key is hidden away from the world
On Mar 24, 2008, at 9:28 AM, Andreas Grimmel wrote:
I found this command somewhere in a forum:
openssl x509 -in cacert-old.pem -days 1460 -out cacert-new.pem -
signkey private/cakey.pem
- in my understanding, this command takes the old cert, changes the
validity to four more years (1460 da
Hi Patrick,
thanks a lot for this whole lot of useful information. Now let me see if
I got you right:
Patrick Patterson schrieb:
- First of all, is there any HowTo that deals not only with creaton, but
also with the renewal of self-signed CA certs in detail?
That depends on what you
Morning,
I am experiencing some PKI comprehension issues:
1) When one talks about creating the "Trusted Root CA" is this different
from the "Signing CA"?
a. The Trusted Root CA's private key is hidden away from the world
(not on an internet accessible disk)
b. The signing CA does all the
Hi Andreas:
Andreas Grimmel wrote:
> Hello list,
>
> I got one big problem for now: My self-signed CA cert will expire in
> about one month. I installed it 4 years ago and never minded about, but
> now I have to renew it.
> The Creation of a whole new CA and client certificates isn't possible
>
Hello list,
let me say first that I'm not too deep into the secrets of openssl, I just like
it as being a stable, great-working software for all concerns of dealing with
encryption and especially x.509 certificates for my VPN connections,
webservers, and so on.
I got one big problem for now:
> Maybe I need some more coffee before I google...
>
> I just upgraded to openssl-0.9.8g, but when I type openssl version it
> still shows me the old one.
That just means that you are running the executable from the old version.
> Am I missing some steps here and is there a web page where I can
10 matches
Mail list logo
