SSL Certificates

[nitro13]

Hello y'all

I am trying to learn more about SSL certificates, how to generate them and how to implement them.

One of the things I am not quite sure as I was reading the different tutorial on the internet... If I generate a certificate for instance on debian and I set the validity to 999 days for instance... would that mean that in three years, if I did not renew the certificate, the browser (in case of accessing my webserver "https") will not be able to connect to the server with an expired certificate?

right?

so i can generate a certificate and then keeping renewing it or can it renew itself automatically!

Please note that I am talking about self-generated certificates, I do not want to have to buy, I am ok with the browser warning me everything.

Thanks lads

[Sparda]

would that mean that in three years, if I did not renew the certificate, the browser (in case of accessing my webserver "https") will not be able to connect to the server with an expired certificate?

right?

Not exactly. What would happen is the web browser would see that the date of the certificate has expired and 'warn' the user about it.

[nitro13]

would that mean that in three years, if I did not renew the certificate, the browser (in case of accessing my webserver "https") will not be able to connect to the server with an expired certificate?

right?

Not exactly. What would happen is the web browser would see that the date of the certificate has expired and 'warn' the user about it.

So.. things will still remain encrypted, although the certificate has expired?

thanks