Académique Documents
Professionnel Documents
Culture Documents
OpenSSL> version -a
OpenSSL 0.9.8g 19 Oct 2007
built on: Tue Apr 1 03:53:59 2008
platform: VC-WIN32
options: bn(64,32) md2(int) rc4(idx,int) des(idx,cisc,4,long) idea(int) blowfis
h(idx)
compiler: cl /MD /Ox /O2 /Ob2 /W3 /WX /Gs0 /GF /Gy /nologo -DOPENSSL_SYSNAME_WI
N32 -DWIN32_LEAN_AND_MEAN -DL_ENDIAN -DDSO_WIN32 D_CRT_SECURE_NO_DEPRECATE -D_C
RT_NONSTDC_NO_DEPRECATE -DOPENSSL_USE_APPLINK -I. /Fdout32dll DOPENSSL_NO_CAMEL
LIA -DOPENSSL_NO_SEED -DOPENSSL_NO_RC5 -DOPENSSL_NO_MDC2 DOPENSSL_NO_TLSEXT -DO
PENSSL_NO_KRB5 -DOPENSSL_NO_DYNAMIC_ENGINE
OPENSSLDIR: "d:/openssl/ssl"
=====================================================================
===========
Genrate RSA key
OpenSSL> genrsa -out rsakey.txt
Loading 'screen' into random state - done
Generating RSA private key, 512 bit long modulus
....++++++++++++
..............++++++++++++
unable to write 'random state'
e is 65537 (0x10001)
=====================================================================
============
rsakey.txt
-----BEGIN RSA PRIVATE KEY----MIIBOwIBAAJBALRx0/Udv96QPJccdVoBLWAGyHbr/DXDIRfbdh3hY73pbMKlvvYB
ZqstLXIhfyIR6henLQIxfWrNSskrRt4a+sECAwEAAQJAMQGlJjIhNQoJWqUA/iPJ
tgXBlgK7acKID1msN6tKEn6JKRbKiLNHzcpV6p6/KHgchCMURwvDGD+z575RFYFA
UQIhANm8NOhfZC1YnA2FE1g1KHE/GtD50giYNu21bjZUMl2tAiEA1CfwZ6zd99nS
LrZRrsD39K2xecKdlpCHqYBEp255y+UCIQCAVNiOOWMPAxH/Ofcb30D19m60yvnL
TQPa+Tt7VAbXhQIgZnASaDzTwITwM5XcwuBx2Ta05vHNXZHTr0g73gw9yvECIQC1
fRuWSouV7Vvn3d0eLD2j8cpZWeNggcGLV3Eo2Xwzpg==
-----END RSA PRIVATE KEY-----
=====================================================================
=============
Encryption
OpenSSL> des3 -salt -in input.txt -out encrypted.des3
enter des-ede3-cbc encryption password:
Verifying - enter des-ede3-cbc encryption password:
OpenSSL>
=====================================================================
=============
input.txt
This is the last assignment...
This work is completed at SCOE,ADTP Lab by Shivam.rkv.
=====================================================================
=============
encrypted.des3
Salted__#{S6}!9
"knp-
s0p81As?XZ.OB,'lJC!LRT:8y(ZzU'w II}^S
E
=====================================================================
============
Decryption
OpenSSL> des3 -d -salt -in encrypted.des3 -out decrypt.txt -k Shivam
=====================================================================
=============
decrypt.txt
This is the last assignment...
This work is completed at SCOE,ADTP Lab by Shivam.rkv.
=====================================================================
==============
Password
OpenSSL> passwd -crypt -salt Shivam Hus.rkv
MuJs2fEWdyTtA
=====================================================================
==============
Message Digest
OpenSSL> dgst -md5 -out digested.txt input.txt
=====================================================================
==============
digested.txt
MD5(input.txt)= fe5bdc9d2c5d26fae213dd82dced8308
=====================================================================
==============
Random
OpenSSL> rand -out xyz.txt -rand input.txt -base64 1024
=====================================================================
=============
Cipher
OpenSSL> ciphers
DHE-RSA-AES256-SHA:DHE-DSS-AES256-SHA:AES256-SHA:EDH-RSA-DES-CBC3SHA:EDH-DSS-DE
S-CBC3-SHA:DES-CBC3-SHA:DES-CBC3-MD5:DHE-RSA-AES128-SHA:DHE-DSSAES128-SHA:AES12
8-SHA:IDEA-CBC-SHA:IDEA-CBC-MD5:RC2-CBC-MD5:RC4-SHA:RC4-MD5:RC4MD5:EDH-RSA-DES-
CBC-SHA:EDH-DSS-DES-CBC-SHA:DES-CBC-SHA:DES-CBC-MD5:EXP-EDH-RSA-DESCBC-SHA:EXPEDH-DSS-DES-CBC-SHA:EXP-DES-CBC-SHA:EXP-RC2-CBC-MD5:EXP-RC2-CBCMD5:EXP-RC4-MD5:
EXP-RC4-MD5
OpenSSL>
=====================================================================
==============
Certificate generation
OpenSSL> genrsa -out new.key 2048
Loading 'screen' into random state - done
Generating RSA private key, 2048 bit long modulus
.....................+++
......................+++
unable to write 'random state'
e is 65537 (0x10001)
Request Certificate
OpenSSL> req -new -key new.key -out new.csr -config C:\Users\Shivam\Downloads\o
penssl-0.9.8g_x64(2)\openssl-0.9.8g_x64\openssl.cnf
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
----Country Name (2 letter code) [AU]:IN
State or Province Name (full name) [Some-State]:Maharashtra
Locality Name (eg, city) []:Pune
Organization Name (eg, company) [Internet Widgits Pty Ltd]:SCOE
Organizational Unit Name (eg, section) []:It
Common Name (eg, YOUR name) []:Shivam
Email Address []:Shivam.rkv@gmail.com
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:Shivam
An optional company name []:abc
OpenSSL> x509 -req -days 3650 -in new.csr -signkey new.key -out new.crt
OpenSSL>
OpenSSL> x509 -req -days 3650 -in new.csr -signkey new.key -out new.crt
Loading 'screen' into random state - done
Signature ok
subject=/C=IN/ST=Maharashtra/L=Pune/O=SCOE/OU=It/CN=Shivam/emailAddress=shivam
.rkv@gmail.com
Getting Private key
unable to write 'random state'
PKCS12
OpenSSL> pkcs12 -keypbe PBE-SHA1-3DES -certpbe PBE-SHA1-3DES -export -in new.crt
-inkey new.key -out newpkcs12.pfx -name "Shivam"
Loading 'screen' into random state - done
Enter Export Password:
Verifying - Enter Export Password:
unable to write 'random state'
PKCS12
OpenSSL> pkcs12 -in newpkcs12.pfx -out newpem.pem
Enter Import Password:
MAC verified OK
Enter PEM pass phrase:
Verifying - Enter PEM pass phrase:
VERIFY
OpenSSL> verify newpem.pem
newpem.pem:
/C=IN/ST=Maharashtra/L=Pune/O=SCOE/OU=It/CN=Shivam/emailAddress=shivam.rkv@gma
il.com
error 18 at 0 depth lookup:self signed certificate
OK
Testing certificate
OpenSSL> s_server -cert newpem.pem -www
Enter pass phrase for newpem.pem:
Loading 'screen' into random state - done
Using default temp DH parameters
Using default temp ECDH parameters
ACCEPT
Certificate
0a:7a:97:dc:3a:fd:6d:15:9f:2e:fd:84:40:c3:58:
98:1e:81:c1:30:66:15:5d:6e:10:c7:c8:0a:f2:4f:
41:80:85:7e:f7:46:2d:b6:f9:dc:0f:e8:9b:2d:1c:
e0:f5
Exponent: 65537 (0x10001)
Signature Algorithm: sha1WithRSAEncryption
6f:b4:0c:9d:f4:fe:c0:50:4a:ed:9f:33:e9:05:7b:fe:dc:5a:
c9:d7:b2:3c:76:d3:a5:de:98:a1:be:0f:99:f2:bf:b9:8a:3c:
4d:d3:1e:77:d5:62:05:42:b1:06:25:05:d5:c7:c5:49:ff:58:
2a:e4:36:52:17:07:d4:83:29:ed:d7:b2:7d:f7:e3:62:89:ac:
53:6c:92:8b:3d:47:d3:5b:30:5a:3e:15:0d:de:a6:94:a4:4a:
00:cc:ee:af:45:25:d6:f4:ea:6c:90:a2:6c:2a:30:80:84:2b:
e6:4c:e0:cc:78:ab:c9:9c:2a:75:b4:bd:a7:7d:e0:82:bb:2d:
7c:73:dc:f2:fa:a0:d9:55:2f:85:ca:2c:dc:d1:ab:67:f1:31:
d9:ee:3f:fe:3c:21:1b:76:b6:e4:d0:5f:67:ec:26:c2:12:22:
e9:15:92:32:e6:fd:79:08:32:98:39:ab:cc:f2:69:44:78:18:
c3:09:1a:f4:44:99:e0:68:d7:f7:8e:78:3f:53:b7:60:e6:65:
69:c4:4d:aa:e2:92:bb:39:98:81:bf:90:2d:2a:bb:87:2a:00:
2b:85:63:8a:f6:11:d1:7e:44:38:17:c7:79:8e:dd:12:37:83:
b3:c6:d0:73:c8:1f:e1:c9:44:a3:99:b4:9e:20:11:c2:fc:69:
23:95:26:43
-----BEGIN CERTIFICATE----MIIDijCCAnICCQCWeWxarEfwqjANBgkqhkiG9w0BAQUFADCBhjELMAkGA1UEBhMC
SU4xFDASBgNVBAgTC01haGFyYXNodHJhMQ0wCwYDVQQHEwRQdW5lMQ0wCwYD
VQQK
EwRTQ09FMQswCQYDVQQLEwJJdDEQMA4GA1UEAxMHTXVzdGFmYTEkMCIGCSqG
SIb3
DQEJARYVbXVzdGh1c2FpbmlAZ21haWwuY29tMB4XDTExMTAwOTIwMDgzNVoXDTIx
MTAwNjIwMDgzNVowgYYxCzAJBgNVBAYTAklOMRQwEgYDVQQIEwtNYWhhcmFzaH
Ry
YTENMAsGA1UEBxMEUHVuZTENMAsGA1UEChMEU0NPRTELMAkGA1UECxMCSXQ
xEDAO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==
-----END CERTIFICATE-----
OpenSSL>
Certificate details
OpenSSL> x509 -noout -in newpem.pem -issuer
issuer= /C=IN/ST=Maharashtra/L=Pune/O=SCOE/OU=It/CN=Shivam/emailAddress=shivam
.rkv@gmail.com
OpenSSL> x509 -noout -in newpem.pem -subject
subject= /C=IN/ST=Maharashtra/L=Pune/O=SCOE/OU=It/CN=Shivam/emailAddress=shivam
.rkv@gmail.com
OpenSSL> x509 -noout -in newpem.pem -dates
notBefore=Oct 9 20:08:35 2011 GMT
notAfter=Oct 6 20:08:35 2021 GMT
Shivam
Shivam
Shivam.rkv@gmail.com
Shivam