HOWTO: Create a self-signed (wildcard) SSL certificate
The following commands are all you need to create a self-signed (wildcard, if you want) SSL certificate:
mkdir /usr/share/ssl/certs/hostname.domain.com
cd /usr/share/ssl/certs/hostname.domain.com
(umask 077 && touch host.key host.cert host.info host.pem)
openssl genrsa 2048 > host.key
openssl req -new -x509 -nodes -sha1 -days 3650 -key host.key > host.cert
...[enter *.domain.com for the Common Name]...
openssl x509 -noout -fingerprint -text < host.cert > host.info
cat host.cert host.key > host.pem
chmod 400 host.key host.pem
Thanks for this and the SSL imap/smtp post.
[...] Basic instructions for setting up ssl certificates can be found at Just Samuels blog post HOWTO: Create a self-signed (wildcard) SSL certificate [...]
Just a note: It covers all the subdomains but not domain.com
Thanks, Justin. I’ve read that this sort of thing is easily found. It took me a lot of searching. Easy to do, unless you have to do it by the manual.
The web developer’s holy vhost trinity…
When you’re developing web stuff, working with projects in path names (i.e. not at the top level of a domain) can be difficult to work with, so you often need to set up a local apache virtual host, stick an entry in DNS and create an SSL certificate b…