I am trying to sign my own server.crt file for use with Apache. I am using
Debian, with OpenSSL 0.9.6b-1.
I seem to be running into a problem when I'm running sign.sh to sign the
.csr file. This is what I get:
sblabs:/etc/apache/ssl.crt# ./sign.sg server.csr
CA signing: server.csr -> server.crt:
Using configuration from ca.config
Enter PEM pass phrase:
Check that the request matches the signature
The Subjects Distinguished Name is as follows
Certificate is to be certified until Aug 20 10:46:44 2002 GMT (365 days)
Sign the certificate? [y/n]:y
1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated
CA verifying: server.crt <-> CA cert
error 18 at 0 depth lookup:self signed certificate
error 7 at depth 0 lookup:certificate signature failure
Can anyone please help me with this problem? Thanks!
And by the way, in the documentation for modssl at their website, it is
mentioned that there is a script 'ca.sh' or 'ca.pl' for creating
certificates. I've looked through the source but could not find them. Would
anyone be kind enough to tell me where to look, or to send me the script?