Thomas Ackermann wrote:
>
> Dr S N Henson wrote:
>
> > Thomas Ackermann wrote:
> > >
> > > searching for a possibility to sign certificates non-interactively for
> > > use in a web-form..
> > > anyone any solutions for that ?
> >
> > The 'x509' utility can be used to sign certificates in a non interactive
> > manner.
> >
> > You can also generate certificate requests using 'req' non interactively
> > by supplying the necessary data in a config file.
> >
> > Check the manual pages for more info.
> >
>
> so i browsed through the manpages, tried the pipe suggested above, tried
> other pipes but didn't get a success.
> the openssl program requires that the password is entered and only after
> that happened the piped things are
> applied...
> sounds weird, got to enter the password, the rest comes out of the pipe,
> but, what to do ?
>
You don't need to pipe responses to the 'req' field queries, you should
use the non interactive form of the config file.
You may want to pipe passwords though. To do this you need to have the
correct password source options. Check out the -passin and -passout
arguments to the relevant commands and the full description in the
relevant manual pages.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
