diff options
| author | Bob Beck <beck@cvs.openbsd.org> | 1999-03-16 07:25:14 +0000 |
|---|---|---|
| committer | Bob Beck <beck@cvs.openbsd.org> | 1999-03-16 07:25:14 +0000 |
| commit | 83cf9972f605c8f284dddd58670b6d54d188f24a (patch) | |
| tree | 0aae92cf34c130820bbc7e869d93b910fdbfa77e | |
| parent | a1a02754e9de15052e17465e7eb40ab771b603cb (diff) | |
Add install of reasonable default ssleay.cnf file
| -rw-r--r-- | lib/libssl/Makefile | 6 | ||||
| -rw-r--r-- | lib/libssl/ssleay.cnf | 65 |
2 files changed, 71 insertions, 0 deletions
diff --git a/lib/libssl/Makefile b/lib/libssl/Makefile index 38f2b0ae946..683e40e63bd 100644 --- a/lib/libssl/Makefile +++ b/lib/libssl/Makefile @@ -8,4 +8,10 @@ SUBDIR= crypto-patent ssl-patent SUBDIR= crypto ssl .endif +distribution: + @echo "Installing ${DESTDIR}/etc/ssl/lib/ssleay.cnf"; \ + ${INSTALL} ${INSTALL_COPY} -g ${BINGRP} -m 444 \ + ${.CURDIR}/ssleay.cnf ${DESTDIR}/etc/ssl/lib/ssleay.cnf; + .include <bsd.subdir.mk> + diff --git a/lib/libssl/ssleay.cnf b/lib/libssl/ssleay.cnf new file mode 100644 index 00000000000..c6480ee4657 --- /dev/null +++ b/lib/libssl/ssleay.cnf @@ -0,0 +1,65 @@ +# +# SSLeay example configuration file. +# This is mostly being used for generation of certificate requests. +# + +RANDFILE = /dev/arandom + +#################################################################### +[ req ] +default_bits = 1024 +default_keyfile = privkey.pem +distinguished_name = req_distinguished_name +attributes = req_attributes + +[ req_distinguished_name ] +countryName = Country Name (2 letter code) +#countryName_default = AU +countryName_min = 2 +countryName_max = 2 + +stateOrProvinceName = State or Province Name (full name) +#stateOrProvinceName_default = Some-State + +localityName = Locality Name (eg, city) + +0.organizationName = Organization Name (eg, company) +#0.organizationName_default = Internet Widgits Pty Ltd + +# we can do this but it is not needed normally :-) +#1.organizationName = Second Organization Name (eg, company) +#1.organizationName_default = CryptSoft Pty Ltd + +organizationalUnitName = Organizational Unit Name (eg, section) +#organizationalUnitName_default = + +commonName = Common Name (eg, fully qualified host name) +commonName_max = 64 + +emailAddress = Email Address +emailAddress_max = 64 + +[ req_attributes ] +challengePassword = A challenge password +challengePassword_min = 4 +challengePassword_max = 20 + +unstructuredName = An optional company name + +[ x509v3_extensions ] + +nsCaRevocationUrl = http://www.cryptsoft.com/ca-crl.pem +nsComment = "This is a comment" + +# under ASN.1, the 0 bit would be encoded as 80 +nsCertType = 0x40 + +#nsBaseUrl +#nsRevocationUrl +#nsRenewalUrl +#nsCaPolicyUrl +#nsSslServerName +#nsCertSequence +#nsCertExt +#nsDataType + |