Date: 17 Jul 2000 21:28:54 -0400 From: dberlin@redhat.com (Daniel Berlin+list.freebsd-current) To: "Leif Neland" <leif@neland.dk> Cc: <freebsd-current@FreeBSD.ORG> Subject: Re: cer/b7b/pfc -> pem Message-ID: <m21z0si5ux.fsf@dan2.cygnus.com> In-Reply-To: "Leif Neland"'s message of "Tue, 18 Jul 2000 02:14:23 %2B0200" References: <005f01bff04d$3d39a800$0e00a8c0@neland.dk>
next in thread | previous in thread | raw e-mail | index | archive | help
"Leif Neland" <leifn@neland.dk> writes:
> Apropos pseudorandom, ssh etc; I hope this is not too off-topic, or can
> somebody point in the right direction:
>
> I have a Verisign personal certificate (Look me up at Verisign, as Leif
> Neland)
>
> This works nicely in Windows (Outlook Express), but I'd like to try using
> the same key with openssl to generate crypted (to myself) or signed
> messages.
>
> I can export the key as a .cer, .p7b or .pfx, but openssl seems to want it
> in .pem format.
>
What does the p7b file look like?
And the .cer file, and the .pfx file?
Are any of them ascii, with a "BEGIN PKCS7" or "BEGIN CERTIFICATE"
line?
> Am I totally confused, or is it possible to convert one of the above to
> .pem?
>
from crl2pkcs7's man page, in the notes section:
The output file is a PKCS#7 signed data structure
containing no signers and just certificates and an
optional CRL.
This utility can be used to send certificates and CAs to
Netscape as part of the certificate enrollment process.
This involves sending the DER encoded output as MIME type
application/x-x509-user-cert.
The PEM encoded form with the header and footer lines
removed can be used to install user certificates and CAs
in MSIE using the Xenroll control.
> Leif
>
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?m21z0si5ux.fsf>