View Single Post
  #9  
Old 2nd March 2006, 03:53
badgerbox76 badgerbox76 is offline
Senior Member
 
Join Date: Feb 2006
Posts: 178
Thanks: 6
Thanked 1 Time in 1 Post
Default

Ok i just setup OpenSSH and i want to make sure i did it right because i have no idea what i just did and i have some what of a clue about ever thing els i have been doing.

Code:
root@monitorwaves:/etc/postfix/ssl#  openssl genrsa -des3 -rand /etc/hosts -out smtpd.key 1024
293 semi-random bytes loaded
Generating RSA private key, 1024 bit long modulus
.......++++++
....++++++
e is 65537 (0x10001)
Enter pass phrase for smtpd.key:
Verifying - Enter pass phrase for smtpd.key:
root@monitorwaves:/etc/postfix/ssl#  chmod 600 smtpd.key
root@monitorwaves:/etc/postfix/ssl#  openssl req -new -key smtpd.key -out smtpd.csr
Enter pass phrase for smtpd.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:US
State or Province Name (full name) [Some-State]:Ga
Locality Name (eg, city) []:Atlanta
Organization Name (eg, company) [Internet Widgits Pty Ltd]:None
Organizational Unit Name (eg, section) []:None
Common Name (eg, YOUR name) []:None
Email Address []:None

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:biteme$
An optional company name []:none
root@monitorwaves:/etc/postfix/ssl#  openssl x509 -req -days 3650 -in smtpd.csr -signkey smtpd.key -out smtpd.crt
Signature ok
subject=/C=US/ST=Ga/L=Atlanta/O=None/OU=None/CN=None/emailAddress=None
Getting Private key
Enter pass phrase for smtpd.key:
root@monitorwaves:/etc/postfix/ssl#  openssl rsa -in smtpd.key -out smtpd.key.unencrypted
Enter pass phrase for smtpd.key:
unable to load Private Key
11821:error:06065064:digital envelope routines:EVP_DecryptFinal:bad decrypt:evp_enc.c:509:
11821:error:0906A065:PEM routines:PEM_do_header:bad decrypt:pem_lib.c:423:
root@monitorwaves:/etc/postfix/ssl#  openssl req -new -x509 -extensions v3_ca -keyout cakey.pem -out cacert.pem -days 3650
Generating a 1024 bit RSA private key
....................++++++
...............++++++
writing new private key to 'cakey.pem'
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:US
State or Province Name (full name) [Some-State]:Ga
Locality Name (eg, city) []:Atlanta
Organization Name (eg, company) [Internet Widgits Pty Ltd]:None
Organizational Unit Name (eg, section) []:None
Common Name (eg, YOUR name) []:None
Email Address []:None
root@monitorwaves:/etc/postfix/ssl#
Reply With Quote