Red Hat NETWORK PROXY SERVER 3.7 - Bedienungsanleitung PDF herunterladen (Seite 64)

54 Securing Your Server

The next section covers how to get test certiﬁcates from both VeriSign and

Thawte, as well as how to create a test certiﬁcate yourself.

3.5 Getting a Test Certiﬁcate

Both VeriSign and Thawte will issue you a temporary certiﬁcate which

you can use to test your secure web server to make sure it is working.

VeriSign’s testcertiﬁcatelasts fortwo weekswhile Thawte’slasts for thirty

days.

Another option, which we’ll discuss ﬁrst, is to create your own test certiﬁ-

cate using the SSLeay library.

3.5.1 Creating a Test Certiﬁcate On Your Own

To createyour own testcertiﬁcate, type in make testcert or thefollow-

ing command:

ssleay req -new -x509 -key httpsd.key > httpsd.crt

Your display will show the following text and wait for your input. Note

that this is very similar to the input you typed in when you generated

your key. You can press Enter to accept the default input, which is shown

within brackets. Again, remember not to abbreviate anything. If you dis-

abled the password option, it will not prompt you for a password.

Using configuration from /etc/ssl/lib/ssleay.cnf

Enter PEM pass phrase:

You are about to be asked to enter information

that will be incorporated into your certificate

request.

What you are about to enter is what is called a

Distinguished Name or a DN.

There are quite a few fields but you can leave

some blank

For some fields there will be a default value,

1 2 ... 59 60 61 62 63 64 65 66 67 68 69 ... 100 101

Keine Kommentare

Red Hat NETWORK PROXY SERVER 3.7 - Bedienungsanleitung Seite 64