From owner-freebsd-questions@FreeBSD.ORG  Wed Apr 29 23:05:53 2009
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id D1C05106567F
	for <freebsd-questions@freebsd.org>;
	Wed, 29 Apr 2009 23:05:53 +0000 (UTC)
	(envelope-from roberthuff@rcn.com)
Received: from smtp02.lnh.mail.rcn.net (smtp02.lnh.mail.rcn.net
	[207.172.157.102])
	by mx1.freebsd.org (Postfix) with ESMTP id 8EC538FC08
	for <freebsd-questions@freebsd.org>;
	Wed, 29 Apr 2009 23:05:53 +0000 (UTC)
	(envelope-from roberthuff@rcn.com)
Received: from mr02.lnh.mail.rcn.net ([207.172.157.22])
	by smtp02.lnh.mail.rcn.net with ESMTP; 29 Apr 2009 19:05:52 -0400
Received: from smtp01.lnh.mail.rcn.net (smtp01.lnh.mail.rcn.net [207.172.4.11])
	by mr02.lnh.mail.rcn.net (MOS 3.10.4-GA) with ESMTP id PUH70753;
	Wed, 29 Apr 2009 19:05:51 -0400 (EDT)
Received: from 209-6-22-188.c3-0.smr-ubr1.sbo-smr.ma.cable.rcn.com (HELO
	jerusalem.litteratus.org.litteratus.org) ([209.6.22.188])
	by smtp01.lnh.mail.rcn.net with ESMTP; 29 Apr 2009 19:05:51 -0400
From: Robert Huff <roberthuff@rcn.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <18936.56654.494648.286696@jerusalem.litteratus.org>
Date: Wed, 29 Apr 2009 19:05:50 -0400
To: Dan Nelson <dnelson@allantgroup.com>
In-Reply-To: <20090429225158.GC91578@dan.emsphone.com>
References: <624F45CA-1083-4DC2-8A98-DFE44B5B6CE8@identry.com>
	<20090429225158.GC91578@dan.emsphone.com>
X-Mailer: VM 7.17 under 21.5  (beta28) "fuki" XEmacs Lucid
X-Junkmail-Whitelist: YES (by domain whitelist at mr02.lnh.mail.rcn.net)
Cc: John Almberg <jalmberg@identry.com>, freebsd-questions@freebsd.org
Subject: Re: Is it necessary to generate a new SSL request each year?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 29 Apr 2009 23:05:54 -0000


Dan Nelson writes:

>  > When buying a new SSL cert, I've been generating a new 
>  > request each year...  I am just about to buy another and it
>  > occurred to me that I'm entering the same info.  Do I really
>  > need a new request file each year?  Or can I just reuse the
>  > same one (presuming none of the info has changed.) 
>  
>  You can reuse the old one.

	I'm not an expert on these, but it was my understanding that
certificates carry in internal "expiration date" after which the
application may respond as it pleases.


				Robert Huff