You need to create a secure web site, but don't want—or need—to pay for an SSL certificate generated by a third party.
Generate your own self-signed certificate and install it on your web server:
Create a certificate authority key:
openssl genrsa -des3 -out ca.key 1024
Create a self-signed certificate authority certificate:
openssl req -new -x509 -days 365 -key ca.key -out ca.crt
Generate two private web server keys:
openssl genrsa -des3 -out web server.key 1024 openssl rsa -in web server.key -out web server.nopassword.key
Generate a certificate request:
openssl req -new -key web server.key -out web server.csr
Sign the certificate request:
openssl x509 -req -days 365 -in web server.csr -CA ca.crt -CAkey ca.key -signkey web server.key -set_serial 01 -out web server.crt
Create an SSL configuration file.
Enable SSL on the web server.
A SSL certificate is a must-have for any online enterprise that asks its visitors to submit confidential information, such as credit card or Social Security numbers, through forms on its web site. When combined with an SSL-enabled web server, a certificate signed by a third-party certificate authority assures visitors that the personal information they are sharing will be sent to the company or organization operating the web site over an encrypted connection.
But SSL certificates are not cheap, and they must be renewed every year or two. The cost may seem high for what typically amounts to just ...