~poptart/hosaka-pki

ref: d9b43ad4c3f19938d5ca98e8ee768545e5ac6e04 hosaka-pki/config.def -rw-r--r-- 981 bytes
d9b43ad4 — terrorbyte add more core functions and start cleaning up the structure 2 years ago
                                                                                
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
#This is the hosaka-pki configuration file. It is parsed by the PKI shell 
#script and functions a KEY=VALUE pair set of settings.
#
CONFIGDIR=/etc/hosaka/pki
SSL_CA_DIR=/etc/hosaka/pki/ssl
SSH_CA_DIR=/etc/ssh/pki/ssh

### SSL CONFIG OPTIONS
#How many days should the cert be valid for
DAYSVALID=375
CADAYSVALID=3750

#Which signing algorithm to use
MDALGORITHM=sha256

#Should we configure an intermediate CA
USEINTERMEDIATE=yes

#If an intermediate was generated and the root CA keys are still
#accessible then emit a warning that that's a bad idea
WARNROOTCERT=yes

#Default settings for signing if they are not set
COUNTRYDEFAULT="HX"
STATEDEFAULT="Cyberspace"
LOCALITYDEFAULT="NULL"
ORGNAMEDEFAULT="Hosaka Corporation"
ORGUNITDEFAULT="Crypto Munitions Bureau"
USERCERTCOMMENT="Hosaka PKI Generated Client Certificate"
SRVCERTCOMMENT="Hosaka PKI Generated Server Certificate"

#Default starting serial number
SSLSERIALDEFAULT=1000

### SSH CONFIG OPTIONS
SSHSERIALDEFAULT=1000