2004-12-13 19:43 - Tech
I wrote a series of separate howto guides just the other day. They were generally bad, and I removed them. I happened to find not much later another online guide that was just plain great, and ended up being much more helpful. Set files up as this Self Signed Certs guide tells you to. Also make a directory called cert. Then you can use these two quickie scripts to further automate the process:
#!/bin/sh openssl req -new -nodes -out req.pem -config ./openssl.cnf openssl ca -out cert.pem -config ./openssl.cnf -infiles req.pem mv cert.pem tmp.pem openssl x509 -in tmp.pem -out cert.pem cat key.pem cert.pem >key-cert.pem mv cert.pem key.pem key-cert.pem req.pem cert
#!/bin/bash openssl x509 -in cert/cert.pem -noout -text -purpose | less
Enjoy! I have a just-in-case unauthorized mirror of that document as well.