kevin-smets/creating-a-self-signed-ssl-certificate.md

Forked from raftheunis87/creating-a-self-signed-ssl-certificate.md

Last active November 14, 2022 23:29

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/kevin-smets/b745167d1522b429f7eb8cfdb23b7cfa.js"></script>
Save kevin-smets/b745167d1522b429f7eb8cfdb23b7cfa to your computer and use it in GitHub Desktop.

Download ZIP

Creating a Self-Signed SSL Certificate

Raw

creating-a-self-signed-ssl-certificate.md

Create a secrets file:

touch ~/.secret

Make sure it looks like this:

#!/bin/bash
PASSPHRASE=mysecretpassphrase

And source it:

. ~/.secret

openssl genrsa -des3 -passout pass:$PASSPHRASE -out server.pass.key 2048;
openssl rsa -passin pass:$PASSPHRASE -in server.pass.key -out server.key;
openssl req -new -key server.key -out server.csr;
openssl x509 -req -sha256 -days 365 -in server.csr -signkey server.key -out server.crt;

# Remove the unencrypted private key
rm server.key

Test your generated and encrypted private key:

openssl rsa -in server.pass.key -text