De Wiki inetshell
Saltar a: navegación, buscar

Create Self-signed cert

Convert DER to PEM

openssl x509 -inform der -in certificate.cer -out certificate.pem

Convert P7B to PEM

openssl pkcs7 -print_certs -in certificate.p7b -out certificate.pem

Convert PFX to PEM

openssl pkcs12 -in certificate.pfx -out certificate.pem -nodes

Probar conexiones SSL/TLS

Sin verificación de certificado:

openssl s_client -connect

Verificando certificado:

openssl s_client -connect -CApath ./cacert.crt


# with AES-NI
openssl speed -elapsed -evp aes-128-ecb
# without AES-NI
export OPENSSL_ia32cap="~0x200000200000000"
openssl speed -elapsed -evp aes-128-ecb