User Tools

Site Tools


doc:howto:boxbackup

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
doc:howto:boxbackup [2013/10/18 22:44]
friedzombie
doc:howto:boxbackup [2014/04/27 23:07] (current)
tmomas typo correction
Line 43: Line 43:
   - Self-sign request: <​code>​openssl x509 -req -in ca-req.pem -sha1 -extensions v3_ca -signkey ca-key.pem -out ca-cert.pem -days <​numberofdays></​code>​   - Self-sign request: <​code>​openssl x509 -req -in ca-req.pem -sha1 -extensions v3_ca -signkey ca-key.pem -out ca-cert.pem -days <​numberofdays></​code>​
  
-It does this for a '​server'​ CA and a '​client'​ CA.  ​the serverCA signs server requests and the clientCA signs client requests. ​ You do not have to use seperate CAs if you don't want to, even though they do.+It does this for a '​server'​ CA and a '​client'​ CA.  ​The serverCA signs server requests and the clientCA signs client requests. ​ You do not have to use seperate CAs if you don't want to, even though they do.
  
 === Sign server certificate === === Sign server certificate ===
Line 53: Line 53:
 <​code>​openssl x509 -req -in client-req.pem -sha1 -CA ca-key.pem -CAkey ca-key.pem client-key.pem -out client-cert.pem -days <​numberofdays></​code>​ <​code>​openssl x509 -req -in client-req.pem -sha1 -CA ca-key.pem -CAkey ca-key.pem client-key.pem -out client-cert.pem -days <​numberofdays></​code>​
  
-Note that the difference between the server signing and the client signing ends up being insignificant because the default openssl configuration uses a defualt ​extension of usr_cert.+Note that the difference between the server signing and the client signing ends up being insignificant because the default openssl configuration uses a default ​extension of usr_cert.
  
 ==== Server ==== ==== Server ====
doc/howto/boxbackup.1382129055.txt.bz2 · Last modified: 2013/10/18 22:44 by friedzombie