Michael Slass wrote:
>
>
> That said, here's my question:
> I'm using OpenSSL 0.9.3a on Linux v 2.0.36
> I generated an RSA key and stored it in mykey.pem (unencrypted)
> I generated a certificate request (to stdout, so I could see the
> results) with the following command line
>
> openssl req -new -key mykey.pem -text
>
> after answering the questions about country, state, name, etc, I
> received output below, which clearly includes ALL of my RSA key. I
> expected the cert to contain (besides the header information) only
This is actually a side efffect of the -text option when you call req to
generate a new request. I agree that it looks misleading: its a side
effect of how a public key is copied to a request.
If you save the request to a file (without the -text option) and then
do:
openssl req -in req.pem -text
you will see that only the public key components are present.
>
> A related question:
> What's the command line to convert to/from plaintext/base64?
>
There isn't one. The "plain text" is a print out of selected fields for
informational purposes.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
