Comments on: Things to remember when creating Apache SSL certs http://spiralbound.net/2005/04/28/things-to-remember-when-creating-apache-ssl-certs my digital notebook Sun, 21 Mar 2010 15:12:10 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: Steven Burnell http://spiralbound.net/2005/04/28/things-to-remember-when-creating-apache-ssl-certs#comment-246968 Steven Burnell Wed, 30 Dec 2009 16:27:51 +0000 http://spiralbound.net/?p=6#comment-246968 Thanks for the post on this, I keep it bookmarked for easy reference. One thing I would like to note though is that in your example above, you first make your private key, encrypting it as you do so, and then in your second (optional) command you remove the encryption by inputting the encrypted file and outputting the results to a new plain text file. This can be done in one simple step if you don't want the encryption to begin with: openssl genrsa -out plaintext.key 2048 Then you can do the remaining steps for CSR and self-signing with that file. Just saves a step, an extra file, and possibly some confusion to someone new to this. Thanks for the post on this, I keep it bookmarked for easy reference. One thing I would like to note though is that in your example above, you first make your private key, encrypting it as you do so, and then in your second (optional) command you remove the encryption by inputting the encrypted file and outputting the results to a new plain text file. This can be done in one simple step if you don’t want the encryption to begin with:

openssl genrsa -out plaintext.key 2048

Then you can do the remaining steps for CSR and self-signing with that file. Just saves a step, an extra file, and possibly some confusion to someone new to this.

]]>