A customer recently got confused between SSL certs, keys, and CA certificates -- and put them into the wrong fields (specifically, they put the CA cert into the SSL cert field).
The result was Apache dieing during the restart. Ugh :-)
Would it be possible to examine those when the customer adds them, to verify they are what the customer thinks they are?
Or at the very least, to somehow have Apache validate them before allowing it to restart?
Second, and somewhat related -- generating a CSR implies that an SSL key is created at the same time, and is put on the server in ssl.key.
Not all customers realize that, and it seems unnecessary to make them log into the server to retrieve ssl.key, just to paste it into the Manage SSL Certs form and be saved as ssl.key again.
At the very least, can the text box for "SSL Key" default to the value of the current ssl.key for that domain?
I think that would reduce the confusion for the SSL certs.
Thanks!