Re: certificate expired

huumm...............ok.

I've checked the expiration time for each certificate, it's diffrent.
But all my certificates are generated with the same openssl.cnf.

So i did

openssl req -nodes -new -x509 -keyout my.key -out my.crt -days 10000
and my.crt is valid until 2031 :o)

u'r right about the diffrent expiration date with --cert and --ca(x509). 
thinks for those informations.
On Tuesday 29 June 2004 14:10, Daniel Berger wrote:

>>> > which means that it'll be expired in one month. someone has an idea?
>
>>
>> try other values for days like 1000 or 2000.
>> maybe 10'000 is just to long  ;)


Check out the "easy-rsa" mini-package in the OpenVPN distro.  It has 
scripts
which set long expiration times.

Also make sure you understand that both the host certificate (--cert) 
and the
root certificate (--ca) have their own individual expiration times.

James


-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 -
digital self defense, top technical experts, no vendor pitches,
unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users


-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - 
digital self defense, top technical experts, no vendor pitches, 
unmatched networking opportunities. Visit www.blackhat.com