Sep 052009

Creating certificate change to whatever your domain name is

# mkdir /usr/share/ssl/certs/
# cd /usr/share/ssl/certs/
(umask 077 && touch host.key host.cert host.pem)
# openssl genrsa 2048 > host.key
# openssl req -new -x509 -nodes -sha1 -days 3650 -key host.key > host.cert
...[enter * for the Common Name]...
# openssl x509 -noout -fingerprint -text < host.cert >
# cat host.cert host.key > host.pem
# chmod 400 host.key host.pem

In apache

SSLEngine on
SSLCertificateFile /path/to/host.cert
SSLCertificateKeyFile /path/to/host.key
SSLProtocol all

  2 Responses to “self-signed wildcard SSL certificate”

Comments (2)
  1. Great Website. You will need to imagine far more about RSS Feeds as a traffic source. They bring me a great bit of visitors.

  2. Thanks for the code, i am creating mobile apps that need SSL so we need to make some SSL certificate free and the same port and from what my friend has told me the wildcard SSL are the only SSL certificate that support multiple website over port 443

 Leave a Reply

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>