[Freedombox-discuss] Freedombox CA
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Thu Sep 12 17:21:59 UTC 2013
On 09/12/2013 09:11 AM, Eugen Leitl wrote:
> On Thu, Sep 12, 2013 at 03:06:46PM +0100, Keith wrote:
>> After further thought:
>>
>> With a CA on each freedombox we could have something like this
>>
>> Create a CA using (options used could be changed)
>> openssl genrsa -des3 -out "Freedombox CA.key" 4096
>
> Is there any remote change to use a different crypto library/tool
> than OpenSSL? I realize that the license issues preclude many
> of potential alternatives from inclusion in Debian.
yes, /usr/bin/certtool from the gnutls-bin package is clearly up to the
task of creating keys and certificates and operating as a CA.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1027 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/freedombox-discuss/attachments/20130912/bad7fbde/attachment.sig>
More information about the Freedombox-discuss
mailing list