diff --git a/generate-and-sign-cert.sh b/generate-and-sign-cert.sh
index 19e4396..78fdad0 100755
--- a/generate-and-sign-cert.sh
+++ b/generate-and-sign-cert.sh
@@ -8,6 +8,7 @@ WWWGROUP="www-data"
 CERTS_DIR="$1"
 SUBJ="$2"
 EXT="$3"
+TMP_DIR="/tmp"
 
 if [ -z "$CERTS_DIR" ] || [ -z "$SUBJ" ]; then
   echo "Usage:"
@@ -22,6 +23,7 @@ fi
 BASE_DIR=$(cd `dirname "$0"`; pwd)
 NAME=`date +%Y-%m-%d--%H-%M-%S--%N`
 PREFIX="$CERTS_DIR/$NAME"
+TMP_PREFIX="$TMP_DIR/$NAME"
 
 if openssl x509 -checkend 864000 -noout -in "$CERTS_DIR/public.crt"; then
   echo " -------------------------------------------- "
@@ -53,7 +55,14 @@ fi
 echo "ok"
 
 echo "verify certificate"
-openssl verify -CAfile "$PREFIX.crt" "$PREFIX.crt"
+openssl verify -CAfile "$PREFIX.crt" "$TMP_PREFIX.crt"
+cp "$TMP_PREFIX.crt" "$PREFIX.crt"
+rm "$TMP_PREFIX.crt"
+
+
+#chown root:root "$PREFIX.crt"
+#chmod 644 "$PREFIX.crt"
+
 
 echo "update symlinks"
 chown :$WWWGROUP "$PREFIX.key"