Changes between Version 8 and Version 9 of configure-mosh-x509


Ignore:
Timestamp:
Dec 20, 2013, 3:02:21 PM (7 years ago)
Author:
Ross
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • configure-mosh-x509

    v8 v9  
    116116    If  it exists, remove it with 'rm $(hostname).mayfirst.org.key' <-- the  key may have a .DATE extension (remove that key as well)
    117117
    118 2.  Create a new key in /etc/ssl/private with the command `umask 177;  certtool -p > $(hostname).mayfirst.org.key.$(date +%F)` <-- umask here  creates the correct permissions for the key file.
     1182.  Create a new key in /etc/ssl/private with the command `umask 177;  certtool -p > $(hostname).mayfirst.org.key.$(date +%F)` <-- umask here  creates the correct permissions for the key file.  '''Note:''' some versions of gnutls-bin (or certtool) add key info to the top of their output.  You'll want to verify the key created here and make sure it's clean, containing only the following:
     119{{{
     120-----BEGIN RSA PRIVATE KEY-----
     121key data
     122-----END RSA PRIVATE KEY-----
     123}}}
    119124
    1201253.  Run the following command from /etc/ssl/private `umask 133;  certtool --generate-request --load-privkey  $(hostname).mayfirst.org.key.$(date +%F)`