openssl-notes.md

Openssl Notes

Generating passwords with openssl:

$ openssl rand -hex 4
$ openssl rand -base64 6
$ repeat 25 openssl rand -hex 4

Encrypting a file

$ openssl des3 -in foo.txt -out foo.txt.crypt

Decrypting a file

$ openssl des3 -in foo.txt.crypt -out foo.txt -d

Generating an SSL certificate

Generate a private key:

$ openssl genrsa -out myapp.com.key 2048

Create the certificate signing request:

$ openssl req -new -sha256 -key myapp.com.key -out myapp.com.csr

Generating a self signed certificate

You can do this with a single command:

$ openssl req -x509 -nodes -days 365 -newkey rsa:2048 -keyout myapp.com.key -out myapp.com.crt

Getting a Comodo Cert from NameCheap

These are in the ballpark of $10 a year. However, the process of buying and activating isn't super straight forward.

Here are some quick videos on the process:

• buying the SSL certificate
• activating the SSL cert

After the cert is activated, you will be emailed the cert and the signing chain. These need to be combined in the same file in this order:

1. certificate
2. signing chain certificates