~poptart/hosaka-pki

ref: 37325529913857f683edcca7d634e44054604cab hosaka-pki/README.md -rw-r--r-- 777 bytes
37325529 — poptart README cleanup 1 year, 9 months ago

#hosaka-pki

A set of shell scripts for configuring multiple kinds of common PKI systems in a functional manner. Currently the config supports:

  • SSL/TLS via the openssl(1) command
  • SSH via OpenSSH > 8.0

The goals are to attempt to shorten the nightmare of remember a ton of PKI commands and to encourage secure defaults. New versions never have guarentees about compatability.

#SSL/TLS PKI

hosaka-pki tls ca
hosaka-pki tls server ashpool /etc/ssl/
hosaka-pki tls info
hosaka-pki tls sign /etc/hosaka/pki/ssl/intermediate/csr/ashpool.csr.pem
hosaka-pki tls sign ashpool
hosaka-pki tls check

#OpenSSH PKI

hosaka-pki ssh ca
hosaka-pki ssh server ashpool poptart,users
hosaka-pki ssh info
hosaka-pki ssh sign ./ahspool.pub