Side Channel

  • home
  • resources
Home

User login

What is OpenID?
  • Log in using OpenID
  • Cancel OpenID login
  • Create new account
  • Request new password

Navigation

  • Books
  • Feed aggregator

Recent blog posts

  • Ubuntu mirrors up and improved!
  • Google-jstemplate: Iterate object with unknown properties
  • nginx https proxypass for php apps
  • sugarcrm & memcache: Doing it Wrong
  • subversion and https in Ubuntu Karmic
  • Drupal: Views block delta converted to md5 hash
  • Ubuntu Server install requires PAE
  • Installing Drupal from command line
  • Drupal: Handling form field weight through CCK
  • minify javascript using Google Closure Compiler
more

angch's location

angch twitter

  • angch: Heading to Brunei. Business class for a change.
  • angch: tc qdisc htb activated on the mirror, and mirror reactivated. Hope nothing melts now.
  • angch: Hmmm, tbf doesn't work as advertised. htb does. #qos #linux
  • angch: @yoonkit me thinks #lucid is a much better tag than #lynx
  • angch: Great, you broke the dc's net and they disconnected us. Running to tpm from shah alam
more

ssl

angch's picture

Self Signed Cert, cheat sheet.

angch — Thu, 21/05/2009 - 13:01

No encrypting ofs erver.key in the first place, so we have one less step. Commands:

openssl genrsa -out server.key 4096
openssl req -new -key server.key -out server.csr
openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt
cat server.crt server.key > $myserver.pem
Apache config:
SSLEngine on
SSLCertificateFile $myserver.pem
SSLCertificateKeyFile $myserver.pem
nginx config:
ssl  on;
ssl_certificate $myserver.pem;
ssl_certificate_key $myserver.pem;

  • apache
  • https
  • nginx
  • openssl
  • ssl
  • angch's blog
  • Add new comment
Syndicate content


Creative Commons License

  • home
  • resources

Standard Disclaimer.