Problem with Re-keying an SSL Certificate

[Lynnwood]

I am trying to rekey my ssl certificate (from godaddy) due to the Debian ssl vulnerability. I updated Debian and DirectAdmin and then went to the ssl certificate management screen in DirectAdmin and went through process to create a new certificate request (as instructed by godaddy). However, when submitted the CSR to godaddy, I received an error message that said "CSR includes Debian Weak Key".

I have searched the DirectAdmin forums and have found nothing about fixing the Debian ssl vulnerability or rekeying my ssl certificate.

Is there something I'm missing in the process or can you point me to an additional information?

 

[nobaloney]

If Debian has been properly updated then the problem is that you're sending a CSR based on the old key. Delete the old key (from a shell login; you really can't do it from DirectAdmin) and then when you create a Certificate from inside DirectAdmin you'll get a new key. Note that this will break your Certificate until after the new one is installed.

Jeff