Monday, May 09, 2005

 

Create the /usr/bin/sign.sh program file

Create the /usr/bin/sign.sh program file: "#!/bin/sh ## ## sign.sh -- Sign a SSL Certificate Request (CSR) ## Copyright (c) 1998-1999 Ralf S. Engelschall, All Rights Reserved. ## # argument line handling CSR=$1 if [ $# -ne 1 ]; then echo 'Usage: sign.sign .csr'; exit 1 fi if [ ! -f $CSR ]; then echo 'CSR not found: $CSR'; exit 1 fi case $CSR in *.csr ) CERT='`echo $CSR | sed -e 's/\.csr/.crt/'`' ;; * ) CERT='$CSR.crt' ;; esac # make sure environment exists if [ ! -d ca.db.certs ]; then mkdir ca.db.certs fi if [ ! -f ca.db.serial ]; then echo '01' >ca.db.serial fi if [ ! -f ca.db.index ]; then cp /dev/null ca.db.index fi # create an own SSLeay config cat >ca.config < $CERT:' openssl ca -config ca.config -out $CERT -infiles $CSR echo 'CA verifying: $CERT <-> CA cert' openssl verify -CAfile /etc/ssl/certs/ca.crt $CERT # cleanup after SSLeay rm -f ca.config rm -f ca.db.serial.old rm -f ca.db.index.old # die gracefully exit 0 "
# posted by Dr. Martin Menzel @ 10:53 AM
Comments: Post a Comment

<< Home

This page is powered by Blogger. Isn't yours?