I've decided to start from scratch since I can't get around the 
SSL_CTX_use_PrivateKey_file error that with Pound 2.4e was showing:

   error:0B080074:x509 certificate routines:X509_check_private_key:key 
values mismatch

So, would you please correct the info below to reflect the currrent best 
practice for producing a certificate that works on my LAMP (Fedora Core 
6, x86) server.  In particular, are items (1) and (2) below correct?  
Having a correct "quick start" like I'm showing below would make a nice 
addition to the www.apsis.ch/pound web page.

Thanks,
Steve Amerige
Fat Bear Incorporated
www.fatbear.com
866.629.0000 x805 toll free - US/Canada
408.776.0000 local & international

 1. openssl genrsa -out www.domain.com.key 1024
 2. openssl req -new -key www.domain.com.key -out www.domain.com.csr
 3. Submit www.domain.com.csr to starfieldtech (via 
http://www.supersitename.com)
 4. Receive www.domain.com.crt and sf_intermediate_bundle.crt from 
starfieldtech
 5. cat www.domain.com.key www.domain.com.crt sf_intermediate_bundle.crt 
 > www.domain.com.pem
 6. Add to pound.cfg:
         ListenHTTP
             Address         <ipAddressHere>
             Port            80
         End
         ListenHTTPS
             Address         <ipAddressHere>
             Port            443
             Cert            "/path/to/certs/www.domain.com.pem"
         End
         Service
             BackEnd
                 Address     <ipAddressHere>
                 Port        <port that apache listens to; e.g., 8181>
                 TimeOut     120
             End
         End
 7. service pound restart