SystemSh0cker/gocsaf
1
0
Fork 0
mirror of https://github.com/gocsaf/csaf.git synced 2025-12-22 11:55:40 +01:00
Code Issues Releases Activity Actions

Use recommended ciphers and typo

Browse source 
* "des3" --> "aes256"
This commit is contained in:
Fadi Abbud 2022-01-12 14:24:21 +01:00
parent 3281387087
commit dd8378fe19
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
docs/client-certificate-setup.md
View file

@ -9,7 +9,7 @@ cd /etc/ssl
### Create the Certificate Autority (CA) ### Create the Certificate Autority (CA)
Firstly, generate the CA: Firstly, generate the CA:
```openssl genrsa -des3 -out ca.key 4096``` ```openssl genrsa -aes256 -out ca.key 4096```
This asks to enter a passphrase. This asks to enter a passphrase.
Next, create the server-side certificate, that will be sent via the TLS server to the client. Next, create the server-side certificate, that will be sent via the TLS server to the client.
```openssl req -new -x509 -days 365 -key ca.key -out ca.crt``` ```openssl req -new -x509 -days 365 -key ca.key -out ca.crt```
@ -18,7 +18,7 @@ You will be asked to answer a few questions.
### Create a client certificate ### Create a client certificate
Create the key like previously: Create the key like previously:
```openssl genresa -des3 -out userA.key 4906``` ```openssl genrsa -aes256 -out userA.key 4906```
Then create a Certificate Signing Request (CSR) Then create a Certificate Signing Request (CSR)
```openssl req -new -key userA.key -out userA.csr``` ```openssl req -new -key userA.key -out userA.csr```
A number of questions should be answered also. A number of questions should be answered also.