{"id":2279,"date":"2014-07-17T14:49:43","date_gmt":"2014-07-17T13:49:43","guid":{"rendered":"http:\/\/kudzia.eu\/b\/?p=2279"},"modified":"2016-09-02T07:57:23","modified_gmt":"2016-09-02T06:57:23","slug":"bundle-file-for-comodos-positivessl-apache2-mod_ssl","status":"publish","type":"post","link":"https:\/\/kudzia.eu\/b\/2014\/07\/bundle-file-for-comodos-positivessl-apache2-mod_ssl\/","title":{"rendered":"bundle file for Comodo&#8217;s PositiveSSL \/ apache2 + mod_ssl"},"content":{"rendered":"<p>generating csr is easy and well documented:<br \/>\n<!--more--><\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\nopenssl genrsa 2048 &gt; your_domain_com.key\r\n# common name should be equal to the domain name \r\nopenssl req -new -key your_domain_com.key &gt; your_domain_com.csr\r\n<\/pre>\n<p>but even comodo&#8217;s <a href=\"https:\/\/support.comodo.com\/index.php?\/Default\/Knowledgebase\/Article\/View\/643\/17\/\">own help website<\/a> is not up-to-date and provides bundle-creation that refers to files that are no longer sent to the clients. internet is full of examples that sort of work but fail some of <a href=\"http:\/\/www.digicert.com\/help\/\">online<\/a> <a href=\"http:\/\/www.sslshopper.com\/ssl-checker.html\">ssl<\/a> <a href=\"https:\/\/sslcheck.globalsign.com\/en_US\/sslcheck\">certificate<\/a> <a href=\"http:\/\/www.networking4all.com\/en\/support\/tools\/site+check\/report\/\">validators<\/a>.<\/p>\n<p>something that worked for me &#8211; in zip-file containing signed cert you&#8217;ll find:<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\nAddTrustExternalCARoot.crt\r\nCOMODORSAAddTrustCA.crt\r\nCOMODORSADomainValidationSecureServerCA.crt\r\nyour_domain_com.crt\r\n<\/pre>\n<p>to create a bundle run:<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\ncat COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt &gt; ssl-bundle.crt\r\n<\/pre>\n<p>and in apache&#8217;s config add<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\nSSLCertificateKeyFile \/etc\/apache2\/ssl\/your_domain_com.key\r\nSSLCertificateFile \/etc\/apache2\/ssl\/your_domain_com.crt\r\nSSLCertificateChainFile \/etc\/apache2\/ssl\/ssl-bundle.crt\r\n<\/pre>\n<p>for nginx:<\/p>\n<pre class=\"brush: plain; title: ; notranslate\" title=\"\">\r\ncat my_domain_com.crt COMODORSADomainValidationSecureServerCA.crt COMODORSAAddTrustCA.crt AddTrustExternalCARoot.crt &gt; ssl-bundle.crt\r\n<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>generating csr is easy and well documented:<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[51],"tags":[],"class_list":["post-2279","post","type-post","status-publish","format-standard","hentry","category-unimportant"],"_links":{"self":[{"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/posts\/2279","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/comments?post=2279"}],"version-history":[{"count":3,"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/posts\/2279\/revisions"}],"predecessor-version":[{"id":2670,"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/posts\/2279\/revisions\/2670"}],"wp:attachment":[{"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/media?parent=2279"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/categories?post=2279"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kudzia.eu\/b\/wp-json\/wp\/v2\/tags?post=2279"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}