Should the root user receive emails from certwatch about expiring self-signed certificates, like these:
################# SSL Certificate Warning ################
Certificate for hostname 'yourhost', in file (or by nickname):
/etc/pki/tls/certs/localhost.crt
The certificate needs to be renewed; this can be done
using the 'genkey' program.
Browsers will not be able to correctly connect to this
web site using SSL until the certificate is renewed.
##########################################################
Generated by certwatch(1)
Then, you can run the following command to renew this self-signed certificate for a new year:
# openssl req -new -days 365 -x509 -nodes -out /etc/pki/tls/certs/localhost.crt \ -keyout /etc/pki/tls/private/localhost.key
More complete instructions can be found here: http://stevejenkins.com/blog/2010/08/renewing-a-self-signed-ssl-certificate-on-fedoracentos
If you found this useful, here's more on the same topic(s) in our blog:
- Red Hat: Creating a backup to ISO images
- Subscribing a Red Hat system
- Resetting the root password for a KVM guest image
- Monitor SSH logins
- Resolve a messed up terminal screen
UNIX Health Check delivers software to scan Linux and AIX systems for potential issues. Run our software on your system, and receive a report in just a few minutes. UNIX Health Check is an automated check list. It will report on perfomance, capacity, stability and security issues. It will alert on configurations that can be improved per best practices, or items that should be improved per audit guidelines. A report will be generated in the format you wish, and the report includes the issues discovered and information on how to solve the issues as well.
Interested in learning more?
Interested in learning more?
