diff options
| -rwxr-xr-x | usr/local/www/vpn_ipsec_ca_edit_create_cert.php | 58 |
1 files changed, 29 insertions, 29 deletions
diff --git a/usr/local/www/vpn_ipsec_ca_edit_create_cert.php b/usr/local/www/vpn_ipsec_ca_edit_create_cert.php index f7145ae..d2c03d4 100755 --- a/usr/local/www/vpn_ipsec_ca_edit_create_cert.php +++ b/usr/local/www/vpn_ipsec_ca_edit_create_cert.php @@ -69,47 +69,47 @@ if ($_POST) { $fd = fopen("/etc/ssl/openssl.cnf", "w"); fwrite($fd, ""); fwrite($fd, "[ req ]\n"); - fwrite($fd, "distinguished_name=req_distinguished_name \n"); - fwrite($fd, "req_extensions = v3_req \n"); + fwrite($fd, "distinguished_name=req_distinguished_name\n"); + fwrite($fd, "req_extensions = v3_req\n"); fwrite($fd, "prompt=no\n"); fwrite($fd, "default_bits = 1024\n"); fwrite($fd, "default_keyfile = privkey.pem\n"); fwrite($fd, "distinguished_name = req_distinguished_name\n"); fwrite($fd, "attributes = req_attributes\n"); fwrite($fd, "x509_extensions = v3_ca # The extentions to add to the self signed cert\n"); - fwrite($fd, "[ req_distinguished_name ] \n"); - fwrite($fd, "C=" . $countrycode . " \n"); - fwrite($fd, "ST=" . $stateorprovince. " \n"); - fwrite($fd, "L=" . $cityname . " \n"); - fwrite($fd, "O=" . $orginizationname . " \n"); - fwrite($fd, "OU=" . $orginizationdepartment . " \n"); - fwrite($fd, "CN=" . $commonname . " \n"); - fwrite($fd, "[EMAIL PROTECTED] \n"); - fwrite($fd, "[EMAIL PROTECTED] \n"); - fwrite($fd, "[ v3_req ] \n"); - fwrite($fd, "basicConstraints = critical,CA:FALSE \n"); - fwrite($fd, "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement \n"); - fwrite($fd, "extendedKeyUsage=emailProtection,clientAuth \n"); + fwrite($fd, "[ req_distinguished_name ]\n"); + fwrite($fd, "C=" . $countrycode . "\n"); + fwrite($fd, "ST=" . $stateorprovince. "\n"); + fwrite($fd, "L=" . $cityname . "\n"); + fwrite($fd, "O=" . $orginizationname . "\n"); + fwrite($fd, "OU=" . $orginizationdepartment . "\n"); + fwrite($fd, "CN=" . $commonname . "\n"); + fwrite($fd, "[EMAIL PROTECTED]\n"); + fwrite($fd, "[EMAIL PROTECTED]\n"); + fwrite($fd, "[ v3_req ]\n"); + fwrite($fd, "basicConstraints = critical,CA:FALSE\n"); + fwrite($fd, "keyUsage = nonRepudiation, digitalSignature, keyEncipherment, dataEncipherment, keyAgreement\n"); + fwrite($fd, "extendedKeyUsage=emailProtection,clientAuth\n"); fwrite($fd, "[ ca ]\n"); fwrite($fd, "default_ca = CA_default\n"); fwrite($fd, "[ CA_default ]\n"); - fwrite($fd, "certificate = /tmp/cacert.pem \n"); - fwrite($fd, "private_key = /tmp/cakey.pem \n"); + fwrite($fd, "certificate = /tmp/cacert.pem\n"); + fwrite($fd, "private_key = /tmp/cakey.pem n"); fwrite($fd, "dir = /tmp/\n"); fwrite($fd, "certs = /tmp/certs\n"); fwrite($fd, "crl_dir = /tmp/crl\n"); - fwrite($fd, "database = /tmp/index.txt \n"); - fwrite($fd, "new_certs_dir = /tmp/newcerts \n"); - fwrite($fd, "serial = /tmp/serial \n"); - fwrite($fd, "crl = /tmp/crl.pem \n"); - fwrite($fd, "RANDFILE = /tmp/.rand \n"); - fwrite($fd, "x509_extensions = usr_cert \n"); - fwrite($fd, "name_opt = ca_default \n"); - fwrite($fd, "cert_opt = ca_default \n"); - fwrite($fd, "default_days = 365 \n"); - fwrite($fd, "default_crl_days = 30 \n"); - fwrite($fd, "default_md = md5 \n"); - fwrite($fd, "preserve = no \n"); + fwrite($fd, "database = /tmp/index.txt\n"); + fwrite($fd, "new_certs_dir = /tmp/newcerts\n"); + fwrite($fd, "serial = /tmp/serial\n"); + fwrite($fd, "crl = /tmp/crl.pem\n"); + fwrite($fd, "RANDFILE = /tmp/.rand\n"); + fwrite($fd, "x509_extensions = usr_cert\n"); + fwrite($fd, "name_opt = ca_default\n"); + fwrite($fd, "cert_opt = ca_default\n"); + fwrite($fd, "default_days = 365\n"); + fwrite($fd, "default_crl_days = 30\n"); + fwrite($fd, "default_md = md5\n"); + fwrite($fd, "preserve = no\n"); fwrite($fd, "policy = policy_match\n"); fwrite($fd, "[ policy_match ]\n"); fwrite($fd, "countryName = match\n"); |
