Difference between revisions of "Openssl"
Jump to navigation
Jump to search
m |
|||
| Line 1: | Line 1: | ||
=Useful OpenSSL Commands= | =Useful OpenSSL Commands= | ||
| − | == | + | ==Get ssl cert expiration date== |
openssl s_client -connect secure.healthcareerweb.com:443 2>/dev/null </dev/null | openssl x509 -noout -enddate | openssl s_client -connect secure.healthcareerweb.com:443 2>/dev/null </dev/null | openssl x509 -noout -enddate | ||
| + | |||
==Ensure key and crt match== | ==Ensure key and crt match== | ||
* The following should be the same md5 sum if the key and crt match. | * The following should be the same md5 sum if the key and crt match. | ||
| Line 15: | Line 16: | ||
==View certificate details== | ==View certificate details== | ||
openssl x509 -in filename.crt -noout -text | openssl x509 -in filename.crt -noout -text | ||
| + | ==View csr details== | ||
| + | openssl req -noout -text -in server.csr | ||
=Using openssl instead of telnet= | =Using openssl instead of telnet= | ||
Revision as of 08:09, 28 June 2012
Useful OpenSSL Commands
Get ssl cert expiration date
openssl s_client -connect secure.healthcareerweb.com:443 2>/dev/null </dev/null | openssl x509 -noout -enddate
Ensure key and crt match
- The following should be the same md5 sum if the key and crt match.
openssl x509 -noout -modulus -in server.pem | openssl md5 ; openssl rsa -noout -modulus -in server.key | openssl md5
Generate key with password
openssl genrsa -des3 -out www.domain.com.key 2048
Generate key & csr without password
openssl req -nodes -newkey rsa:2048 -keyout domain.com.key -out domain.com.csr
More info: [here]
View certificate details
openssl x509 -in filename.crt -noout -text
View csr details
openssl req -noout -text -in server.csr
Using openssl instead of telnet
- openssl s_client -connect www.mysite.com:443
- ssl info scrolls by
- Now do a normal get:
GET /healthcheck.txt HTTP/1.1 \n Host: www.getauto.com