What is openssl.cnf for?
Todd Zullinger
tmz at pobox.com
Tue Jul 7 02:16:30 UTC 2009
Timothy Murphy wrote:
> I'm trying to work out if /etc/pki/tls/openssl.cnf
> is actually used, and if so how one should edit it.
> The file provided with Fedora says it is an "example",
> and says, inter alia,
> dir = ../../CA # Where everything is kept
> although in my case at least this directory is empty.
>
> I glanced through openssl documentation,
> but did not see any mention of this particular file.
>
> Perhaps there is some document that would explain to me
> the purpose of this file?
The format of this file is described in the config(5) manpage,
provided with openssl. If you wanted to change the defaults for
creating ssl certificates and such, you could edit this file and avoid
the need to manually enter some of the information each time you run
various openssl commands.
--
Todd OpenPGP -> KeyID: 0xBEAF0CE3 | URL: www.pobox.com/~tmz/pgp
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
The trouble with opportunity is that it always comes disguised as hard
work.
-- Herbert V. Prochnow
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 542 bytes
Desc: not available
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20090706/5e2974e1/attachment-0001.sig>
More information about the fedora-list
mailing list