Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Cushing, David (David.Cushinghitachisoftware.com)
Date: Thu May 30 2002 - 10:34:51 CDT
> I was trying to implement self signed SSL certificates on a server.
> The commands I used to generate the certificate are:
> openssl genrsa -out server.key 1024
> openssl req -new -key server.key -x509 -out server.crt
> The whole thing works perfectly, but I have a small problem. The
> certificate is valid for a very short period (around a month or so).
> I would like the certificate to be valid for maybe around an
> year or so.
Use the -days option.
openssl req -new -key server.key -x509 -out server.crt -days 365
Also check on default_days setting in your config file. If you use this new CA to sign other certs, this is how long they will be valid for.