User Tools
пакет_openssl
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
пакет_openssl [2024/05/03 13:02] val [Debian] |
пакет_openssl [2024/05/08 16:20] (current) val [Создание параметра DH] |
||
|---|---|---|---|
| Line 23: | Line 23: | ||
| $ openssl s_client -starttls smtp -crlf -connect mailhub.bmstu.ru:25 | $ openssl s_client -starttls smtp -crlf -connect mailhub.bmstu.ru:25 | ||
| - | $ openssl s_client -cert user1.crt -key user1.key -connect www.corpX.un:443 | + | lan# openssl s_client -cert user1.crt -key user1.key -connect www.corpX.un:443 |
| </code><code> | </code><code> | ||
| GET /cgi-bin/test-cgi HTTP/1.1 | GET /cgi-bin/test-cgi HTTP/1.1 | ||
| Host: www.corpX.un | Host: www.corpX.un | ||
| </code><code> | </code><code> | ||
| - | $ openssl s_client -cert user1.crt -key user1.key -connect server.corpX.un:993 | + | lan# openssl s_client -cert user1.crt -key user1.key -connect server.corpX.un:993 |
| </code><code> | </code><code> | ||
| 01 AUTHENTICATE EXTERNAL = | 01 AUTHENTICATE EXTERNAL = | ||
| Line 81: | Line 81: | ||
| <code> | <code> | ||
| # time openssl dhparam -out /etc/openvpn/dh2048.pem 2048 | # time openssl dhparam -out /etc/openvpn/dh2048.pem 2048 | ||
| - | real 0m24.676s | + | ... |
| + | real 2m6.588s | ||
| + | ... | ||
| </code> | </code> | ||
| Line 379: | Line 381: | ||
| ==== Создание запроса на сертификат ==== | ==== Создание запроса на сертификат ==== | ||
| <code> | <code> | ||
| - | $ openssl req -new -key user1.key -out user1.req #-sha256 | + | $ openssl req -new -key user1.key -out user1.req |
| ... | ... | ||
| Organizational Unit Name (eg, section) [noc]:group1 | Organizational Unit Name (eg, section) [noc]:group1 | ||
| Line 385: | Line 387: | ||
| Email Address [noc@corpX.un]:user1@corpX.un | Email Address [noc@corpX.un]:user1@corpX.un | ||
| ... | ... | ||
| + | </code> | ||
| + | ИЛИ | ||
| + | <code> | ||
| + | $ openssl req -new -key user1.key -out user1.req -subj '/C=RU/ST=Moscow region/L=Moscow/O=cko/OU=group1/CN=user1/emailAddress=user1@corpX.un/' | ||
| </code> | </code> | ||
| Line 416: | Line 422: | ||
| lan# openssl ca -gencrl -out /var/www/html/ca.crl | lan# openssl ca -gencrl -out /var/www/html/ca.crl | ||
| + | |||
| + | lan# openssl crl -text -noout -in /var/www/html/ca.crl | less | ||
| + | ... | ||
| + | Serial Number: 0M | ||
| + | ... | ||
| + | Serial Number: 0N | ||
| + | ... | ||
| </code> | </code> | ||
пакет_openssl.1714730579.txt.gz · Last modified: 2024/05/03 13:02 by val
Page Tools
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
