Differences

This shows you the differences between two versions of the page.

--- notes:openssl [2023/12/05 21:18] – david
+++ notes:openssl [2024/06/01 21:18] (current) – [openssl s_client] david
@@ Line 88: / Line 88: @@
 With certificate verification
     openssl s_client -connect example.com:443 -cert mycert.pem  -key mykey.pem  -CAfile cacert.pem
+Retrieve just the RSA public key if the site has both ECDSA & RSA
+    openssl s_client -sigalgs "RSA-PSS+SHA256"  -connect google.com:443
+    to retrieve the EC cert use "ECDSA+SHA256" for sigalgs
+For more examples of using signature algorithms see https://node-security.com/posts/openssl-testing-signature-algorithm/
 wget and openssl s_client
@@ Line 96: / Line 104: @@
 ===== Encrypting using openssl =====
 openssl enc -e -k 1234 -aes256 -in text.txt -out text.txt.enc
+openssl enc -e -k 1234 -aes256 -pbkdf2 -in text.txt -out text.txt.enc
+openssl enc -d -k 1234 -aes256 -pbkdf2 -in text.txt -out text.txt.enc
 #Signing files
@@ Line 158: / Line 171: @@
 https://www.digitalocean.com/community/tutorials/openssl-essentials-working-with-ssl-certificates-private-keys-and-csrs
+https://dev.to/benjaminblack/obtaining-an-elliptic-curve-dsa-certificate-with-lets-encrypt-51bc
+https://blog.dnsimple.com/2022/10/ecc-support-for-certificates/
+https://soatok.blog/2022/05/19/guidance-for-choosing-an-elliptic-curve-signature-algorithm-in-2022/