Menu
▾
▴
RE: [webmin-l] SSL Certificate error
|
From: Frank H. <fr...@we...> - 2006-01-12 09:47:17
|
I had bit of bother with an SSL I was working on at the turn of the year. I meant to ask on here about it but it slipped my mind to mention it and this has reminded me! I had an old site on an Ensim box and I was moving the site to a new box running Webmin and when I moved the SSL certs over to the new box it worked fine. Then I generated a new certificate for the site and sent it off to Geotrust and using they sent me back a message saying the CSR wasn't 128bit. I tried in vain to recreate the certificate by manually entering the key size but it didn't make any difference - it always generated the smaller default size key. When I applied the certificate I got from Geotrust Apache refused to start - due to the anomaly in the key/certificate. I got round it by generating a new CSR on the old Ensim box and moving the SSL to the Webmin one. I'm guessing this might be the problem you are having - as when I first ordered my certificate through the automated process all seemed well and they issued me with a 128bit certificate but it fell over and when I talked to a support engineer at Geotrust the problem was discovered to be the smaller key size. I might be missing something obvious but I don't see anyway other than manually entering the bigger size in the SSL management section of Virtualmin of getting 128bit CSR's. Hope this helps a bit and if someone could set me straight on generating these CSR's correctly I'd be much obliged as I've a few coming up which are on Webmin boxes which were moved directly over from Ensim boxes and I'll need to regenerate new CSR's for them on the Webmin system later in the year. Thanks, Frank Hutcheon -----Original Message----- From: web...@li... [mailto:web...@li...] On Behalf Of dav...@da... Sent: 12 January 2006 07:58 To: web...@li... Subject: [webmin-l] SSL Certificate error Jamie, Have you run into any issues with Chained SSL certs and Webmin? We got a chained cert from Equiafax, and Webmin won't accept it as a valid cert, always fails to load. The cert from last year works fine. Yes I did update the CA, Private Key, and Cert... I also tried having the Private key and Cert in one file, no go.. Thanks David Coley Codecipher ------------------------------------------------------- This SF.net email is sponsored by: Splunk Inc. Do you grep through log files for problems? Stop! Download the new AJAX search engine that makes searching your log files as easy as surfing the web. DOWNLOAD SPLUNK! http://ads.osdn.com/?ad_id=3D7637&alloc_id=3D16865&op=3Dclick - Forwarded by the Webmin mailing list at web...@li... To remove yourself from this list, go to http://lists.sourceforge.net/lists/listinfo/webadmin-list |
