On 09/12/2013 09:11 AM, Eugen Leitl wrote: > On Thu, Sep 12, 2013 at 03:06:46PM +0100, Keith wrote: >> After further thought: >> >> With a CA on each freedombox we could have something like this >> >> Create a CA using (options used could be changed) >> openssl genrsa -des3 -out "Freedombox CA.key" 4096 > > Is there any remote change to use a different crypto library/tool > than OpenSSL? I realize that the license issues preclude many > of potential alternatives from inclusion in Debian.
yes, /usr/bin/certtool from the gnutls-bin package is clearly up to the
task of creating keys and certificates and operating as a CA.
--dkg
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Freedombox-discuss mailing list [email protected] http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/freedombox-discuss
