Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
sbh2015-08-03 13:32:15
Digital certificates
sbh, 2015-08-03 13:32:15

What parameters are needed to generate the "correct" SSL certificate?

I know that the sha-1 hashing algorithm is outdated and sha-2 should be used.
Maybe someone is aware of what parameters you need to generate self-signed certificates so that when you register the root as trusted, the browser does not swear at unstable algorithms and other comments.
Is it possible to put a timestamp on a self-signed certificate?
What is the optimal RSA length?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
N
Nikolai Korabelnikov, 2015-08-03
@nmk2002

The minimum RSA key length, which browsers will not swear at now, is 2048. But I recommend making a key of at least 4096 for the root CA. You do
n’t need to use SHA-1, that’s right.
The certificate must always indicate the date and time of creation and expiration.

Similar questions
Y
Yuri Lychko2016-04-04 13:04:11
What certifications would benefit System Analyst? 1Reply
A
Alexander2018-08-30 17:10:07
Are there SSL certificates for 2 levels of subdomains at once? 3Reply
V
Valeri Lavrov2016-04-07 21:57:34
How to make HTTPS instead of HTTP without redirects? 3Reply
I
ingenerdsm2016-04-12 13:18:00
What threatens the lack of a security certificate on the server? 2Reply
A
Alex Wells2016-04-12 21:56:52
Cheap WildCard SSL certificates? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question