Managing keys and certifying authorities are hard. Tools like openssl does not make it easy either. Given below is a set of Makefiles used to perform some common cryptographic tasks. This should be seen more as a hack on openssl, an industrial standard cryptographic tool kit, with all the resulting brain dead features and limitations that are so common to industrial standards. Hope some day we will have a nice crypto tool kit using something like the nacl library with a Haskell interface. Until then will have to live with monstrosity called openssl.
Your are free to use this if you feel like. Comments are always welcome. Patches and fixes will be incorporated provided it does not change the overall philosophy of the code, whatever that means, and does not lead to an increase in complexity --- I intend to keep the code simple so that it can fit into one human brain.
You will need a working Unix system to use these Makefiles. Besides you need openssl, ssh and related subsystem like scp which are by now standard. The make that I use is GNU make which is the default on GNU/Linux systems. For *BSD users, please install GNU make from the ports.
Although these make files can be used independently, it makes more sense to use server and server-ca package together. I hope to have enough tutorials to explain their usage some time. Till then have to live with the README's of each of these packages.
The code is in public domain. You do not require any license to use it.
Last modified on Tuesday (14 August 2012 12:10:38 UTC)