sslmake/README.md

67 lines
1.6 KiB
Markdown

Making SSL-Certificates
=======================
Creates keys and certificate requests via openssl.
It tries to keep files, if there exist. But if you change one file,
files which depend on it, will be recreated by this program.
Install
=======
Dependencies
------------
You need GNU-make and openssl. sslmake is a Makefile, so you really need make!
Install
-------
First clone this git-repository. Or download only sslmake.
YOu only need to copy it to a directory, which found in your $PATH.
install --owner root --group root --mode 0755 -t /usr/local/bin sslmake
But it's possible to run sslmake local, so, you do not need any install.
./sslmake exmaple.cnf
Howto
=====
All files will be replaced, if files which it depends on, are newer.
For example, if you create the `example.key`, and you run `sslmake example.csr`,
your CSR will be replaced be a new. But if your CSR is newer than the KEY,
it will not replace your CSR.
First Use
---------
If you creates something a first time, then you are alright here.
Renewing and removing will follow in 'Second Use'.
* Create the config:
sslmake example.cnf
This will copy `/etc/ssl/openssl.cnf` to local directory.
Now you edit this file and you can do next step.
Important are commonName_default and so on.
If you do not know the openssl.cnf, you should read a openssl-howto
about `openssl.cnf`.
* Create the KEY:
sslmake exmaple.key
It will create a key-file example.key with a 4096 bit strong rsa.
* Create the CSR:
sslmake example.csr
This will use `example.cnf` as configfile and creates a key and the csr
if didn't exists. Everything in one step.