boxrick · February 15, 2018 00:54
diff --git a/gistfile1.txt b/gistfile1.txt
 Generating a pub cert from your private key ( This is going to be stored inside Ansible mist under each user )

 openssl req -x509 -new -key ~/.ssh/id_rsa -nodes -subj "/C=GB/ST=*/L=*/O=*/OU=*/CN=NAMEHERE/"

 Encrypting some data against the above key(s) 

 echo STRINGTOENCRYPT | openssl smime -encrypt -aes256 -outform PEM /tmp/rick.CERT /tmp/james.CERT /tmp/stuartgr.CERT

 Decrypting data

 openssl smime -decrypt -in /tmp/ONDISKENCRYPTEDSTRINGFILE -inform PEM -inkey ~/.ssh/id_rsa

 ^^ can also be fed from stdin as per encrypting line
	Generating a pub cert from your private key ( This is going to be stored inside Ansible mist under each user )

	openssl req -x509 -new -key ~/.ssh/id_rsa -nodes -subj "/C=GB/ST=/L=/O=/OU=/CN=NAMEHERE/"

	Encrypting some data against the above key(s)

	echo STRINGTOENCRYPT \| openssl smime -encrypt -aes256 -outform PEM /tmp/rick.CERT /tmp/james.CERT /tmp/stuartgr.CERT

	Decrypting data

	openssl smime -decrypt -in /tmp/ONDISKENCRYPTEDSTRINGFILE -inform PEM -inkey ~/.ssh/id_rsa

	^^ can also be fed from stdin as per encrypting line