fabiolagana.net » certificates http://blog.fabiolagana.net 640 Kb should be enough memory for anybody Mon, 26 Oct 2009 13:17:04 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Creating an SSL-certificate for my webserver http://blog.fabiolagana.net/creating-ssl-certificate-webserver/ http://blog.fabiolagana.net/creating-ssl-certificate-webserver/#comments Wed, 12 Nov 2008 10:13:39 +0000 Fabio Laganà http://blog.fabiolagana.net/?p=107 
#!/bin/sh
SERVER=ssl.mioserverweb.dominio
PRIVATE_KEY=$SERVER.private.key
CERTIFICATE_FILE=$SERVER.crt
VALID_DAYS=365
 
echo Delete old private key
rm $PRIVATE_KEY
echo Create new private/public-keys without passphrase for server
openssl genrsa -out $PRIVATE_KEY 2048
 
echo Create selfsigned certificate
rm $CERTIFICATE_FILE
# From man req:
#  -x509
#    this option outputs a self signed certificate instead
#    of a certificate request. This is typically used to
#    generate a test certificate or a self signed root CA.
#    The extensions added to the certificate (if any) are
#    specified in the configuration file.
 
openssl req -new 
        -days $VALID_DAYS 
        -key $PRIVATE_KEY 
        -x509 
        -out $CERTIFICATE_FILE
 
echo private-keyfile is $PRIVATE_KEY
echo server-certificate-file is $CERTIFICATE_FILE
 
ls -l $PRIVATE_KEY $CERTIFICATE_FILE
]]> http://blog.fabiolagana.net/creating-ssl-certificate-webserver/feed/ 0