Re: OT, self-signed ssl certificate generation

In reply to: bob prohaska : "Re: OT, self-signed ssl certificate generation"
Go to: [ bottom of page ] [ top of archives ] [ this month ]

From: Marcin Cieslak <saper_at_saper.info>
Date: Fri, 30 Aug 2024 01:06:36 UTC

On Thu, 29 Aug 2024, bob prohaska wrote:

> Probably I should just accept the necessity of a passphrase and
> resume trying to get apache working with https; getting chromium
> to accept a self-signed certificate is proving difficult.

For a fully automated generation you can try something like this:

openssl req -new -x509 -days 365 \
         -sha3-512 -newkey rsa:4096 \
         -keyout host.key -out host.crt -nodes \
         -subj '/CN=example.org' -addext "subjectAltName = DNS:example.org"

Marcin