SSL Certificates: Difference between revisions
Jump to navigation
Jump to search
(Added Performance testing) |
|||
| (One intermediate revision by the same user not shown) | |||
| Line 1: | Line 1: | ||
== Create private authority == | == Create private authority == | ||
openssl genrsa -out ''XXX''-key.pem | openssl genrsa -out ''XXX''-key.pem 4096 | ||
openssl req -new -key ''XXX''-key.pem -out ''XXX''.csr | openssl req -new -key ''XXX''-key.pem -out ''XXX''.csr | ||
| Line 21: | Line 21: | ||
openssl x509 -in ''XXX''.pem -noout -text | openssl x509 -in ''XXX''.pem -noout -text | ||
== Performance testing == | |||
openssl speed -evp ''Algorithms'' | |||
For example: | |||
openssl speed -evp aes-256-cbc md5 | |||
== Links == | |||
* [https://wiki.samat.org/CheatSheet/OpenSSL Credits] | * [https://wiki.samat.org/CheatSheet/OpenSSL Credits] | ||
* [https://serverfault.com/questions/215606/how-do-i-view-the-details-of-a-digital-certificate-cer-file Credits @serverfault] | * [https://serverfault.com/questions/215606/how-do-i-view-the-details-of-a-digital-certificate-cer-file Credits @serverfault] | ||
Latest revision as of 05:55, 17 April 2023
Create private authority
openssl genrsa -out XXX-key.pem 4096 openssl req -new -key XXX-key.pem -out XXX.csr
File XXX-key.pem begins with this line:
-----BEGIN RSA PRIVATE KEY-----
File XXX.csr begins with this line:
-----BEGIN CERTIFICATE REQUEST-----
Create certificate signed by private authority
Certificate would be valid for 4 years.
openssl x509 -days 1461 -req -in XXX.csr -signkey XXX-key.pem -out XXX.pem
View certificate information
openssl x509 -in XXX.pem -noout -text
Performance testing
openssl speed -evp Algorithms
For example:
openssl speed -evp aes-256-cbc md5