undefined | Better HN

0 pointsjosephcsible5y ago0 comments

This is the no true Scotsman fallacy. If I told you how to sign a certificate with your own CA, you'd tell me the result was "faked up".

0 comments

pwdisswordfish25y ago

If the owner of the example.com website creates the CSR and send its to the user, then the result is not "faked up". I use the term "faked up" only to refer to a scenario where the user generates a CSR for a domain name that is not under her control.

josephcsibleOP5y ago

Fair enough. This command would do it then:

    openssl x509 -req -days 365 -in example.com.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out example.com.crt

j / k navigate · click thread line to collapse

0 comments

pwdisswordfish25y ago

josephcsibleOP5y ago

Fair enough. This command would do it then:

    openssl x509 -req -days 365 -in example.com.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out example.com.crt

j / k navigate · click thread line to collapse