Difference between revisions of "Openssl"
Jump to navigation
Jump to search
m |
|||
| (5 intermediate revisions by the same user not shown) | |||
| Line 1: | Line 1: | ||
| − | =Useful OpenSSL Commands | + | =Useful OpenSSL Commands= |
| − | == | + | ==Get ssl cert expiration date== |
openssl s_client -connect secure.healthcareerweb.com:443 2>/dev/null </dev/null | openssl x509 -noout -enddate | openssl s_client -connect secure.healthcareerweb.com:443 2>/dev/null </dev/null | openssl x509 -noout -enddate | ||
| + | |||
| + | ==Ensure key and crt match== | ||
| + | * The following should be the same md5 sum if the key and crt match. | ||
| + | openssl x509 -noout -modulus -in server.pem | openssl md5 ; | ||
| + | openssl rsa -noout -modulus -in server.key | openssl md5 | ||
| + | ==Remove passphrase from private key== | ||
| + | openssl.exe rsa -in privateKey.pem -out private.pem | ||
==Generate key with password== | ==Generate key with password== | ||
openssl genrsa -des3 -out www.domain.com.key 2048 | openssl genrsa -des3 -out www.domain.com.key 2048 | ||
==Generate key & csr without password== | ==Generate key & csr without password== | ||
openssl req -nodes -newkey rsa:2048 -keyout domain.com.key -out domain.com.csr | openssl req -nodes -newkey rsa:2048 -keyout domain.com.key -out domain.com.csr | ||
| + | |||
More info: [[http://www.networksolutions.com/support/csr-for-apache-with-mod-ssl-openssl/ here]] | More info: [[http://www.networksolutions.com/support/csr-for-apache-with-mod-ssl-openssl/ here]] | ||
| + | |||
==View certificate details== | ==View certificate details== | ||
openssl x509 -in filename.crt -noout -text | openssl x509 -in filename.crt -noout -text | ||
| + | ==View csr details== | ||
| + | openssl req -noout -text -in server.csr | ||
=Using openssl instead of telnet= | =Using openssl instead of telnet= | ||
| Line 15: | Line 26: | ||
* Now do a normal get: | * Now do a normal get: | ||
* <pre>GET /healthcheck.txt HTTP/1.1 \n Host: www.getauto.com</pre> | * <pre>GET /healthcheck.txt HTTP/1.1 \n Host: www.getauto.com</pre> | ||
| + | |||
| + | =IMAP= | ||
| + | ==Connect== | ||
| + | s_client -connect mail.district65.net:993 | ||
| + | a1 login <user> <pass> | ||
| + | |||
| + | ==List Folders== | ||
| + | a1 LIST "" "*" | ||
| + | ==Get Folder Contents== | ||
| + | a1 examine <folder name> | ||
Latest revision as of 07:17, 21 October 2015
Useful OpenSSL Commands
Get ssl cert expiration date
openssl s_client -connect secure.healthcareerweb.com:443 2>/dev/null </dev/null | openssl x509 -noout -enddate
Ensure key and crt match
- The following should be the same md5 sum if the key and crt match.
openssl x509 -noout -modulus -in server.pem | openssl md5 ; openssl rsa -noout -modulus -in server.key | openssl md5
Remove passphrase from private key
openssl.exe rsa -in privateKey.pem -out private.pem
Generate key with password
openssl genrsa -des3 -out www.domain.com.key 2048
Generate key & csr without password
openssl req -nodes -newkey rsa:2048 -keyout domain.com.key -out domain.com.csr
More info: [here]
View certificate details
openssl x509 -in filename.crt -noout -text
View csr details
openssl req -noout -text -in server.csr
Using openssl instead of telnet
- openssl s_client -connect www.mysite.com:443
- ssl info scrolls by
- Now do a normal get:
GET /healthcheck.txt HTTP/1.1 \n Host: www.getauto.com
IMAP
Connect
s_client -connect mail.district65.net:993 a1 login <user> <pass>
List Folders
a1 LIST "" "*"
Get Folder Contents
a1 examine <folder name>