Skip to main content

Recent posts

Security files in Linux

Ayman Patel

Ayman Patel

Back End Engineer @ Mastercard

Steps to add files on Linux#

  1. Generate Private Key (RSA 2048)
sudo openssl genrsa -out test.key 2048
// Result
-----BEGIN RSA PRIVATE KEY-----
...
-----END RSA PRIVATE KEY-----
  1. Generate CSR (Certificate signing request)
sudo openssl req -new -key test.key -out test.csr
// Result
-----BEGIN CERTIFICATE REQUEST-----
...
-----END CERTIFICATE REQUEST-----
  1. Generate Certificate
openssl x509 -req -days 365 -in test.csr -signkey test.key -out test.crt
// Result
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
  1. Concatenate Private Key and Certificate to PEM file. This file is stored in secure etc/ssl/private/*.pem directory.

/etc/ssl/private is secure. Only sudo -i works in opening the PEM file

sudo bash -c 'cat test.key test.crt >> /etc/ssl/private/test.pem'
// Result
-----BEGIN RSA PRIVATE KEY-----
...
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----