Editing Privacy-Enhanced Mail (.PEM)
Jump to navigation
Jump to search
Warning: You are not logged in. Your IP address will be publicly visible if you make any edits. If you log in or create an account, your edits will be attributed to your username, along with other benefits.
The edit can be undone. Please check the comparison below to verify that this is what you want to do, and then save the changes below to finish undoing the edit.
Latest revision | Your text | ||
Line 1: | Line 1: | ||
− | [[wikipedia: | + | [[wikipedia:PEM]] |
+ | |||
+ | pem - Defined in [[RFCs]] 1421 through 1424, this is a container format that may include just the public certificate (such as with Apache installs, and CA certificate files [[/etc/ssl/certs]]), or may include an entire certificate chain including public key, private key, and root certificates. Confusingly, it may also encode a CSR (e.g. as used here) as the PKCS10 format can be translated into PEM. The name is from Privacy Enhanced Mail (PEM), a failed method for secure email but the container format it used lives on, and is a base64 translation of the x509 ASN.1 keys.<ref>https://serverfault.com/questions/9708/what-is-a-pem-file-and-how-does-it-differ-from-other-openssl-generated-key-file </ref> | ||
PEM or [[DER]] or [[PFX]] | PEM or [[DER]] or [[PFX]] | ||
− | * <code>[[ssh-keygen -m PEM | + | * <code>[[ssh-keygen]] -m PEM -t [[rsa]] -f your_new_rsa_key.pem</code> |
− | |||
− | |||
Read [[certificate]]: | Read [[certificate]]: | ||
− | * <code>[[openssl x509 -in | + | * <code>[[openssl x509]] -in certificate.pem -text</code> |
* <code>[[openssl s_client]] -showcerts -connect YOUR_DOMAIN.COM:443</code> | * <code>[[openssl s_client]] -showcerts -connect YOUR_DOMAIN.COM:443</code> | ||
* <code>[[keytool]] -printcert -file certificate.pem</code> | * <code>[[keytool]] -printcert -file certificate.pem</code> | ||
Line 25: | Line 25: | ||
[[file]] your_pem_file.pem | [[file]] your_pem_file.pem | ||
your_pem_file.pem [[PEM]] RSA private key | your_pem_file.pem [[PEM]] RSA private key | ||
− | |||
− | |||
− | |||
− | |||
− | |||
− | |||
== Related terms == | == Related terms == | ||
− | |||
− | |||
* [[X.509]] | * [[X.509]] | ||
− | * <code>[[ssh-keygen | + | * <code>[[ssh-keygen]]</code> |
+ | * <code>[[openssl]]</code> | ||
* <code>[[.crt]]</code> ([[Core FTP]]) | * <code>[[.crt]]</code> ([[Core FTP]]) | ||
* <code>[[.key]]</code> ([[Core FTP]]) | * <code>[[.key]]</code> ([[Core FTP]]) | ||
− | * [[Let's Encrypt]]: <code>[[certbot certonly | + | * [[Let's Encrypt]] request certificate: <code>[[certbot certonly]]</code> |
* [[Nginx]] <code>[[ssl_certificate]]</code> directive | * [[Nginx]] <code>[[ssl_certificate]]</code> directive | ||
− | |||
− | |||
− | |||
− | |||
− | |||
== See also == | == See also == | ||
− | * {{ | + | * {{openSSL}} |
− | * {{ | + | * {{OpenSSH}} |
− | * {{ | + | * {{ssh}} |
− | * {{ | + | * {{TLS}} |
− | * {{ | + | * {{CA}} |
− | |||
− | |||
[[Category:Security]] | [[Category:Security]] |
Advertising: