genkey segfaults when creating new cert
Matthew J. Roth
mroth at imminc.com
Wed Nov 14 18:48:55 UTC 2012
Alex wrote:
> Awesome, thanks. it works great. Not sure how I missed that. I
> remembered it having been done another way.
I'm glad I could help. There's probably more than one way to do it,
but that's the way I know.
There's one last thing I should point out. Make sure that you protect
the certificate and private key by setting the file ownership and
access permissions as restrictive as possible. Here's what works on
my servers:
# tree -pug /etc/httpd/conf/ssl.{crt,key}/
/etc/httpd/conf/ssl.crt
`-- [-r--r----- root apache ] www.example.com.crt
/etc/httpd/conf/ssl.key
|-- [-r-------- root apache ] www.example.com.key
`-- [-r-------- root apache ] www.example.com.key.unsecure
0 directories, 3 files
Regards,
Matthew Roth
InterMedia Marketing Solutions
Software Engineer and Systems Developer
More information about the users
mailing list