Changes between Version 8 and Version 9 of configure-mosh-x509
- Timestamp:
- Dec 20, 2013, 8:02:21 PM (10 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
configure-mosh-x509
v8 v9 116 116 If it exists, remove it with 'rm $(hostname).mayfirst.org.key' <-- the key may have a .DATE extension (remove that key as well) 117 117 118 2. Create a new key in /etc/ssl/private with the command `umask 177; certtool -p > $(hostname).mayfirst.org.key.$(date +%F)` <-- umask here creates the correct permissions for the key file. 118 2. Create a new key in /etc/ssl/private with the command `umask 177; certtool -p > $(hostname).mayfirst.org.key.$(date +%F)` <-- umask here creates the correct permissions for the key file. '''Note:''' some versions of gnutls-bin (or certtool) add key info to the top of their output. You'll want to verify the key created here and make sure it's clean, containing only the following: 119 {{{ 120 -----BEGIN RSA PRIVATE KEY----- 121 key data 122 -----END RSA PRIVATE KEY----- 123 }}} 119 124 120 125 3. Run the following command from /etc/ssl/private `umask 133; certtool --generate-request --load-privkey $(hostname).mayfirst.org.key.$(date +%F)`