918 cp /etc/pki/tls/openssl.cnf .
919 vi openssl.cnf
3653, 1825
923 openssl req -new -x509 -keyout private/cakey.pem -out cacert.pem -config openssl.cnf
926 cd private/
932 openssl rsa -in cakey.pem -out cakey_unencrypted.pem -outform PEM
958 openssl rsa -in cakey_unencrypted.pem -out cakey.pem -outform PEM -aes256
942 openssl req -config openssl.cnf -new -nodes -keyout private/ldapkey.pem -out server.csr
968 ls -l private/
969 cd private/
970 chmod 600 *
971 cd ..
972 chmod 700 private/
973 ls
974 openssl ca -config openssl.cnf -out certs/server.crt -infiles server.csr
975 rm server.csr
976 openssl x509 -in certs/server.crt
979 openssl x509 -in certs/server.crt -text
980 openssl verify -purpose sslserver -CAfile cacert.pem certs/server.crt
1062 openssl x509 -hash -noout -in cacert.crt
1063 ln -s cacert.crt d76c2882.0
12 Mar 2006
CA Cert expired - redo
880 vi serial
881 vi serial
882 rm serial.old
883 ls certs
884 rm newcerts/01.pem
885 openssl ca -config openssl.cnf -out serve_new.crt -infiles server_new.csr
886 ls
887 ls certs
888 cd certs/
889 rm server.crt
890 cd ..
891 ls newcerts/
892 ls private
893 ls -las private/
894 ls -a
895 vi index.txt
896 rm index.txt.*
897 openssl ca -config openssl.cnf -out serve_new.crt -infiles server_new.csr
898 ls
899 ls
900 ls certs
901 openssl verify -purpose sslserver -CAfile canewcert.pem server_new.crt
902 openssl verify -purpose sslserver -CAfile canewcert.pem serve_new.crt
903 mv serve_new.crt server_new.crt
904 openssl verify -purpose sslserver -CAfile canewcert.pem serve_new.crt
905 ls
906 vi serial
907 rm serial.old
908 vi index.txt
909 rm index.txt.*
910 mv canewcert.pem cacert.pem
911 rm cacert.der
912 rm cacert.crt
913 ls certs
914 mv server_new.crt certs/server.crt
915 ls
916 ls newcerts/
917 rm newcerts/00.pem
918 ls
919 ls private/
920 ls
921 ls certs
922 openssl verify -purpose sslserver -CAfile cacert.pem certs/server.crt
923 ls
924 rm certs/server.crt
925 ls index
926 cat index.txt
927 cat serial
928 openssl ca -config openssl.cnf -out serve_new.crt -infiles server_new.csr
929 ls
930 rm cacert.pem
931 rm serve_new.crt server_new.csr
932 ls private/
933 ls newcerts/
934 ls crl
935 ls certs
936 history | grep openssl
937 openssl req -new -x509 -key private/cakey.pem -out cacert.pem -config openssl.cnf -days 3653
938 openssl req -new -x509 -key private/cakey.pem -out cacert.pem -config openssl.cnf -days 3653
939 openssl req -config openssl.cnf -new -nodes -out server.csr -key private/ldapkey.pem
940 ls
941 ls cacert.pem
942 openssl x509 -in cacert.pem -text
943 openssl x509 -in server.csr -text
944 openssl req -in server.csr -text
945 oepnssl ca -config openssl.cnf -out certs/server.crt -infiles server.csr
946 openssl ca -config openssl.cnf -out certs/server.crt -infiles server.csr
947 ls
948 rm server.csr
949 openssl verify -purpose sslserver -CAfile cacert.pem certs/server.crt
950 file cacert.pem
951 more cacert.pem
952 ls
953 openssl x509 -in cacert.pem -out cacert.crt -outform DER
954 more cacert.crt
955 tset
956 exit
957 cd /etc/openldap
958 ls
959 cd CA
960 ls
961 file cacert.crt
962 file cacert.
963 file cacert.*
964 rm cacert.crt
965 history | grep openssl
966 openssl x509 -in cacert.pem -out cacert.crt -text
967 more cacert.crt
968 ls
969 cd ..
970 ls
971 pwd
972 cd cacerts/
973 ls
974 ls -l cacert.crt
975 openssl x509 -hash -noout -in cacert.crt
976 rm d76c2882.0
977 ln -s cacert.crt e990a8ae.0
978 ls -l
979 /etc/init.d/ldap restart
980 pwd
981 cd ..
982 cd CA
983 openssl verify -purpose sslserver -CAfile cacert.pem certs/server.crt
984 ls
985 cd ..
986 ls
987 ls cacerts/
988 history
989 id cllee
990 id jing-wei
991 vi /etc/passwd
992 vi /etc/group
993 id cllee
994 getent passwd
995 ls
996 pwd
997 ls
998 cd ~cllee
999 ls
1000 exit
1001 cd ~cllee
1002 ls
1003 history > hhh