From: Jamie C. <jca...@we...> - 2001-10-30 22:20:43
|
That all sounds right to me, though it isn't really necessary to copy ca.pem to /etc/webmin/miniserv.pem . One more thing you might want to try - did you delete the old certificate from your browser first before requesting a new one? - Jamie David Hughes <dh...@ep...> wrote .. > > That is what is perplexing. . . I did create a new CA. Pardon my > 'slowness', but here is my procedure: > > Access Webmin, link down to Webmin Configuration, run (click) on Certificate > Authority and fill in the blanks. That generates a new ca.pem in > /etc/webmin/acl. I copy this to /etc/webmin/miniserv.pem and restart sshd > and webmin (just to make sure I do both). The authority name, email addr. > . > . all that reflects the change in a new cert. But, the expiry stays the > same. > > This is the correct place to generate a new CA yes? I chased down all > the > openssl.cnf files and changed the values in each one of them for > .._crl_days. Your help is appreciated. Webmin btw is a super app. (butter > butter) > > david hughes > > > > > Date: Tue, 30 Oct 2001 13:39:55 +1100 > From: Jamie Cameron <jca...@we...> > Subject: Re: Certificates > To: web...@li... > Cc: > > This is a multi-part message in MIME format. > ----------1004409590 > Content-Type: text/plain > Content-Transfer-Encoding: 7bit > > Even though you generated a new certificate, the expiry date was still > 30 days? I created one just now, and it had a 365 day expiry date.. > It may be that you need to create a new certificate authority in webmin > to get the new expiry date. > > - Jamie |