	     ------------------------------------------------------
			     CERTIFICADOS DIGITALES
	     ------------------------------------------------------

1) Generar una llave en /etc/httpd/conf

-Borrar los ficheros server.key y server.crt
 rm ssl.key/server.key   (rw_ ___ ___)
 rm ssl.crt/server.crt   (rw_ ___ ___)

2) Crear llave aleatoria
   # cd /usr/share/ssl/certs
  
  -Si quieres ingresar la contraseña cada vez que reinicies el Servicio:
   # make genkey [Ingresa contraseña (*¡RECUERDALA!*)]
   /etc/httpd/conf/ssl.key/server.key   será generado

  -Si *NO* quieres tipear la contraseña cada vez que reinicies el servicio:
   Crea la llave así en vez de "#make genkey" :
   #/usr/bin/openssl genrsa 1024 > /etc/httpd/conf/ssl.key/server.key
   #chmod go-rwx /etc/httpd/conf/ssl.key/server.key


-------------------------------------
CREANDO TU PROPIO CERTIFICADO FIRMADO
-------------------------------------
# cd /usr/share/ssl/certs
# make testcert
 (Ingresa contraseña)
 (Se te preguntará por los datos de tu CERTIFICADO DIGITAL)
 /etc/httpd/conf/ssl.crt/server.crt   será generado

-------------------------------------------------------------------------------
[root@gunt certs]# make testcert
umask 77 ; \
/usr/bin/openssl req -new -key /etc/httpd/conf/ssl.key/server.key -x509 -days
365 -out /etc/httpd/conf/ssl.crt/server.crt
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [GB]:PE
State or Province Name (full name) [Berkshire]:Lima
Locality Name (eg, city) [Newbury]:Lima
Organization Name (eg, company) [My Company Ltd]:Company Ltd
Organizational Unit Name (eg, section) []:COMPANY
Common Name (eg, your name or your server's hostname) []:www.company.com
Email Address []:postmaster@company.com
-------------------------------------------------------------------------------

#/sbin/service httpd restart

!LISTO!



-------------------------------------------------------------------------------
                                               Hugo Martin (www.hackcraft.com)