Ok, i updated to apache2.....so i've some problem with RSA, i'm trying to create my own CA autority with the following commands: 1)openssl genrsa -out /etc/ssl/private/inet_ca.key -aes256 1024 2)openssl req -x509 -new -key /etc/ssl/private/inet_ca.key -out /etc/ssl/certs/inet_ca.crt 3)openssl genrsa -out /etc/apache/ssl.key/secure_inet_org.key 1024 4)openssl req -new -key /etc/apache/ssl.key/secure_inet_org.key -out /etc/apache/ssl.csr/secure_inet_org.csr 5)openssl x509 -req -CA /etc/ssl/certs/inet_ca.crt -CAkey /etc/ssl/private/inet_ca.key -CAcreateserial -CAserial /etc/ssl/certs/inet_ca.srl -in /etc/apache/ssl.csr/secure_inet_org.csr -out /etc/apache/ssl.crt/secure_inet_org.crt ------Apache2 error.log------------------> [Sun Aug 12 23:08:15 2007] [warn] RSA server certificate CommonName (CN) `Inet Administrati on' does NOT match server name!? [Sun Aug 12 23:08:15 2007] [error] Unable to configure RSA server private key [Sun Aug 12 23:08:15 2007] [error] SSL Library Error: 185073780 error:0B080074:x509 certifi cate routines:X509_check_private_key:key values mismatch <----------------------------------------- Thanks ! Vianney Le Sun, 12 Aug 2007 21:09:14 +0200, Nick Kew <nick@xxxxxxxxxxxx> a écrit: > On Sun, 12 Aug 2007 20:49:31 +0200 > via.lej@xxxxxxx wrote: > >> I'm using 1.3 because this is the officialy stable release of apache. > > Who told you that? If it was later than April 2002, they're > officially wrong. > --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|