• startssl only works in firefox (not chrome) – https://www.startssl.com/
  • certificate wizard
  • just make up some password – it's temporary
  • save to ssl.key, then run openssl rsa -in ssl.key -out ssl-decrypted.key
  • pick domain, then save to ssl.crt
  • download to intermediate files
  • cat ca.pem sub.class1.server.ca.pem > ca.crt
  • copy ca.crt to /etc/lighttpd/ on server
  • cat ssl-decrypted.key ssl.crt > server.pem
  • copy server.pem to /etc/lighttpd/ on server
  • on server: lighttpd-enable-mod ssl
  • on server: edit /etc/lighttpd/conf-enabled/10-ssl.conf – add this line after “ssl.pemfile”:
                  ssl.ca-file                 = "/etc/lighttpd/ca.crt"
computer/startssl_certs_in_lighttpd.txt · Last modified: 2011/07/11 18:06 by tdobes
Recent changes RSS feed Driven by DokuWiki Valid XHTML 1.0 Valid CSS