It's not exactly a bug in openSSL. Just weirdness: openssl req command options: "-days n when the -x509 option is being used this specifies the number of days to certify the certificate for. The default is 30 days." It looks like default_days setting in ca.cnf is irrelevant. Ivan Kalik Kalik Informatika ISP Dana 22/9/2008, "sphaero" <arnaud@sphaero.org> piše:
Alan DeKok-2 wrote:
sphaero wrote:
I was just wondering why the Makefile in freeradius 2.0 for creating certificates only produces a CA which is valid for 1 month. I don't reckon that's handy for production use.
They are "test" certificates. For production use you need to edit the OpenSSL configuration files.
Well according to your site the instructions are for production use.
http://deployingradius.com/ link to "Create certificates for production use."
Rg,
Arnaud
-- View this message in context: http://www.nabble.com/make-certificate-with-make-is-only-1-month-valid-tp196... Sent from the FreeRadius - User mailing list archive at Nabble.com.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html