-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 09/04/14 15:55, Timothe Litt wrote: [...snip...] > easyrsa seems to be a very simple wrapper around openssl. Good > for getting started with certificates, not powerful enough for > later on.
Agreed. Even though, I believe easy-rsa 3 will become better in this aspect. [...snip...] > However, I recently looked at tinyca (it's now called tinyca2 in > some places); it provides a GUI around openssl that you might find > more intuitive than the openssl man pages -- which are not very > approachable. I used tinyca2 for some time ... until I discovered xca. I could even import all the stuff created in tinaca2 with some efforts. With xca, I have also setup a template which I use to generate new certificates for OpenVPN - which provides enough information to put the right info at the right places fairly easy too. The only downside I've had with xca is that sometimes the data format changes, which makes some upgrades cumbersome. xca stores all the data inside a single encrypted file. Which on the other hand makes it more suitable to be put on an offline storage. - -- kind regards, David Sommerseth -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlNFkisACgkQDC186MBRfrqa4gCeKdMxw0mJblT0pGgJ3EPyMNYy sb0An0iBOHvZlprPve4vAkNaOaSqjguL =nH57 -----END PGP SIGNATURE----- ------------------------------------------------------------------------------ Put Bad Developers to Shame Dominate Development with Jenkins Continuous Integration Continuously Automate Build, Test & Deployment Start a new project now. Try Jenkins in the cloud. http://p.sf.net/sfu/13600_Cloudbees _______________________________________________ Openvpn-users mailing list Openvpn-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/openvpn-users
