What encryption do I have to use with openssl?
I would like to create a SSL certificate for my server(apache), i'm fol开发者_JS百科lowing this tutorial: https://help.ubuntu.com/community/OpenSSL
My question is: what is the stronger encryption to create a key with openssl?
Thank you
There's a whole section about creating self-signed certificates on the page you linked, just follow it.
The guide uses RSA encryption. 2048-bit for the CA certificate and 1024-bit server certificate. I'd maybe use 2048-but for both.
If it's a high traffic or commercial site, I'd definitely consider a commercial server certificate from an acknowledged CA, since using a self-signed certificate will generate those ugly red errors you might see in Chrome or Firefox sometimes. In no browser you will get that yellow or green lock icon in the URL bar.
精彩评论