From owner-freebsd-questions@FreeBSD.ORG Sun Jul 22 07:37:09 2012 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id A4ED9106566B for ; Sun, 22 Jul 2012 07:37:09 +0000 (UTC) (envelope-from m.seaman@infracaninophile.co.uk) Received: from smtp.infracaninophile.co.uk (smtp6.infracaninophile.co.uk [IPv6:2001:8b0:151:1:3cd3:cd67:fafa:3d78]) by mx1.freebsd.org (Postfix) with ESMTP id F1D0F8FC0C for ; Sun, 22 Jul 2012 07:37:08 +0000 (UTC) Received: from seedling.black-earth.co.uk (seedling.black-earth.co.uk [81.187.76.163]) (authenticated bits=0) by smtp.infracaninophile.co.uk (8.14.5/8.14.5) with ESMTP id q6M7ax1Y093584 (version=TLSv1/SSLv3 cipher=DHE-RSA-CAMELLIA256-SHA bits=256 verify=NO) for ; Sun, 22 Jul 2012 08:36:59 +0100 (BST) (envelope-from m.seaman@infracaninophile.co.uk) X-DKIM: OpenDKIM Filter v2.5.2 smtp.infracaninophile.co.uk q6M7ax1Y093584 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=infracaninophile.co.uk; s=201001-infracaninophile; t=1342942619; bh=7wSfGOnQygZ3BIExRJDri2tNOdbIINnRt9eRuLiBo4U=; h=Date:From:To:Subject:References:In-Reply-To:Cc:Content-Type: Message-ID:Mime-Version; b=hFNg4pnEJXFrdxT15vs/wmGNnvUAzPU0OuUdUlsPViaOrCY6h7h7j8HpfdMAPmu8X lbo1hniZBPXFc16dJsjsxbm0Km6Ht6jscs3EL2MV1DBI1HEDfSXQ7a2NQw0xY0GSj2 aVOfh10ImrMiV4Bk1ZIbHp1ngbcx02YDhWxv79xk= Message-ID: <500BAD93.5080007@infracaninophile.co.uk> Date: Sun, 22 Jul 2012 08:36:51 +0100 From: Matthew Seaman User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:14.0) Gecko/20120713 Thunderbird/14.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org References: <20120721155922.GA4774@tinyCurrent> <20120722063818.GA2445@tinyCurrent> In-Reply-To: <20120722063818.GA2445@tinyCurrent> X-Enigmail-Version: 1.4.3 OpenPGP: id=60AE908C Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enig089DD87A9A523B875322554B" X-Virus-Scanned: clamav-milter 0.97.5 at lucid-nonsense.infracaninophile.co.uk X-Virus-Status: Clean X-Spam-Status: No, score=-1.8 required=5.0 tests=ALL_TRUSTED,AWL,BAYES_00, DKIM_ADSP_ALL,DKIM_SIGNED,T_DKIM_INVALID autolearn=no version=3.3.2 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on lucid-nonsense.infracaninophile.co.uk Subject: Re: setting up an openssl client/server X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 22 Jul 2012 07:37:09 -0000 This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig089DD87A9A523B875322554B Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 22/07/2012 07:38, Matthias Apitz wrote: > What it is missing, as well in the pages of www.openssl.org and > www.freebsd.org, is a complete step by step guide to make certificates > and keys to SSL a simple client/server communition, or at least I can't= > see them. I've found TinyCA (ports: security/tinyca) to be simple and easy to use for setting up a personal certification authority. Just remember not to fill in the e-mail field when creating a HTTPS server cert if you want the filename of the cert to be based on the site URL. Cheers, Matthew --=20 Dr Matthew J Seaman MA, D.Phil. 7 Priory Courtyard Flat 3 PGP: http://www.infracaninophile.co.uk/pgpkey Ramsgate JID: matthew@infracaninophile.co.uk Kent, CT11 9PW --------------enig089DD87A9A523B875322554B Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.16 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/ iEYEARECAAYFAlALrZsACgkQ8Mjk52CukIyRaACeNkFq+/66PoNZHNW9jMD16QL9 fZ8AnRvpt+YL9LB8Ye3EvSTBKssgEj0A =291Q -----END PGP SIGNATURE----- --------------enig089DD87A9A523B875322554B--