Bruce Momjian <bruce@momjian.us> writes:
> I think the reason we have those cumbersome instructions is that there
> is no way to create a non-expireable certificate using simpler
> instructions.
Um ... but the current instructions don't address that either.
> I would like to revisit these instructions, as well as document how to
> create intermediate certificates. I have scripts that do that.
I don't think we should try to teach people how to use openssl.
A quick example of setting up a dummy certificate for testing is fine,
but going much beyond that is not our turf.
regards, tom lane