> I was wondering if there is any difference in renewing the CA cert as opposed to
> a normal server cert. Does the following steps look right?
> 1. req -new -key cakey.pem -out csr
> 2. ca -in csr -out newcacert.pem
> Then, proceed to replace the cacert.pem with the newcacert.pem
I think it's okay. But you should think about a twice as longer validity
period for your ca cert then for normal ones.
--
read you later - Holger Reif
------------------------------------ Signaturprojekt Deutsche Einheit
TU Ilmenau - Informatik - Telematik (Verdamp lang her)
[EMAIL PROTECTED] Alt wie ein Baum werden, um ueber
Remus.PrakInf.TU-Ilmenau.DE/Reif/ alle 7 Bruecken gehen zu koennen
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
