Re: [Openvpn-users] key-signing machine

[Erich Titl <erich.titl@xxxxxxxx>]

Ivan "Rambius" Ivanov wrote:
> Hello,
> 
> Thanks to all who have responded. I found your posts valuable.
> 
> I downloaded roCA and I gave it a try. It seems pretty interesting.
> 
> On 9/12/06, Erich Titl <erich.titl@xxxxxxxx> wrote:
>> I use either roCA or, if online signing is important a hacked version of
>> tinyCA with an interface to mail and web.
>>
>> cheers
>>
>> Erich
> Can you give me more information about this hacked version of tinyCA
> and its interface to web? Is it an extension of yours or is it an open
> source?

Both, it is just a perl script which reads some parameters from an input
file, in my case from a mail body, builds a certificate and stores it on
a ftp server. The user can specify the password to be used for the key.
Basically it could be used just as well to collect a CSR, sign it and
publish it. The CSR can be built wherever you feel it is suitable, even
on a 'doze box :-(. You are welcome to have it.

The script just does what the average dummy CA does to your certificate
(signing, no checking). TinyCA is just a nice interface to the
Certificate storage. The web part just presents the file to the user for
download. It is not my code and I belive it's outdated anyway, but
definitely no rocket science.

cheers

Erich

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

-------------------------------------------------------------------------
Get stuff done quickly with pre-integrated technology to make your job easier

_______________________________________________
Openvpn-users mailing list
Openvpn-users@xxxxxxxxxxxxxxxxxxxxx
https://lists.sourceforge.net/lists/listinfo/openvpn-users