On Tue, Dec 29, 2009 at 1:37 PM, R P Herrold <herrold at centos.org> wrote: > On Tue, 29 Dec 2009, Dan Carl wrote: > >> On 12/29/2009 11:36 AM, Lanny Marcus wrote: >>> I looked on the openssl man page but am too dense with commands to >>> understand what I need to do > ... snip >>> openssl commands I need to use, after I ssh into the web site, to >>> generate a 2048 bit key and csr. TIA and Happy New Year! > > My notes indicate that another certificate authority > [startssl] also requires a stronger (sha1) signing algorithm > on CSR's -- ymmv Jackpot Russ. This is with StartCom Ltd. (StartSSL) in Israel. Eddy there really hung in there with me on this today. Super Support. :-)