SSL証明書

コモドの90日間お試しSSLを申請してみたので、メモ。
まず、サーバ鍵の作成

www99999u:~# mkdir ./ssl_work
www99999u:~# mkdir ./ssl_work/meteor-strike.me
www99999u:~# cd ./ssl_work
www99999u:~/ssl_work# openssl md5 * >rand.dat
www99999u:~/ssl_work# cd meteor-strike.me
www99999u:~/ssl_work/meteor-strike.me# openssl genrsa -rand ../rand.dat -des3 2048 >2011key.pem
312 semi-random bytes loaded
Generating RSA private key, 2048 bit long modulus
....................................................................................................................................+++
................+++
e is 65537 (0x10001)
Enter pass phrase:
Verifying - Enter pass phrase:
www99999u:~/ssl_work/meteor-strike.me# openssl req -new -key ./2011key.pem -out 2011csr.pem
Enter pass phrase for ./2011key.pem:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:JP
State or Province Name (full name) [Some-State]:Iwate
Locality Name (eg, city) []:Oshu
Organization Name (eg, company) [Internet Widgits Pty Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) []:kei shinozuka
Email Address []:shino_kei.at.meteor-strike.me

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:

これでワイルドカード証明書のCSRが出来るので、申請する。