On Thu, Jan 17, 2008 at 01:34:05PM +0800, Hou, LiangX wrote:

> Thank you for your help. I am using curl in a project actually. And
> I want to configure curl to do my custom authentication job. I am going
> to write an independent code and post it up with my cert. But before that
> I'd like to ask you whether it is caused by my cert. The cert looks like
> the following. I put certificate and private key together in a single
> file named "servercert.pem". Is it a correct or legal cert.pem file?


> -----BEGIN CERTIFICATE-----
> ...
> -----END CERTIFICATE-----
> -----BEGIN RSA PRIVATE KEY-----
> ...
> -----END RSA PRIVATE KEY-----


Well, your private key is not really private anymore, so you should
generate a new private key/cert pair. But, yes, you can store both in
the same file, provided the file is only readable by the right user
accounts. This is an X509 cert, not an X509v3 cert, typically one now
issues v3 certs, but it may not matter.

Please don't top post.

http://www.catb.org/jargon/html/T/top-post.html

--
Viktor.
__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majordomo@openssl.org