From ee4f5568a1c1ef9fb8095679f806ecb0b3110677 Mon Sep 17 00:00:00 2001 From: Vasco Date: Wed, 22 Apr 2026 15:16:03 +0100 Subject: [PATCH] like a boss --- VM_OPENSSL_APACHE.sh | 3 ++ VM_ROAD_WARRIOR.sh | 4 +++ ca/1003.pem | 77 +++++++++++++++++++++++++++++++++++++++++++ ca/apache.crt | 73 ++++++++++++++++++++-------------------- ca/apache.crt.old | 74 +++++++++++++++++++++++++++++++++++++++++ ca/apache.csr | 29 ++++++++-------- ca/create_all_keys.sh | 2 +- ca/index.txt | 1 + ca/index.txt.old | 1 + ca/serial | 2 +- ca/serial.old | 2 +- 11 files changed, 216 insertions(+), 52 deletions(-) create mode 100644 ca/1003.pem create mode 100644 ca/apache.crt.old diff --git a/VM_OPENSSL_APACHE.sh b/VM_OPENSSL_APACHE.sh index d07b308..d0ffac1 100644 --- a/VM_OPENSSL_APACHE.sh +++ b/VM_OPENSSL_APACHE.sh @@ -10,6 +10,9 @@ if_dentro="enp0s8" ip_dentro="10.60.0.1" ifconfig $if_dentro $ip_dentro netmask 255.255.255.0 +# route de volta para comunicar com o warrior +route add -net 10.8.0.0 netmask 255.255.255.0 gw 10.60.0.3 + cp conf/openssl.cnf /etc/pki/tls/ # copiar ca para esta VM diff --git a/VM_ROAD_WARRIOR.sh b/VM_ROAD_WARRIOR.sh index e2cd96c..2492572 100644 --- a/VM_ROAD_WARRIOR.sh +++ b/VM_ROAD_WARRIOR.sh @@ -5,6 +5,10 @@ source VM_CONFIG.sh ifconfig enp0s8 193.136.212.10 netmask 255.255.255.0 route add default gw 193.136.212.1 +if ! grep -q "apache" /etc/hosts; then + echo "10.60.0.1 apache" >> /etc/hosts +fi + # --- vpn client --- # vpn_dir="/etc/openvpn/client/" cp ca/ta.key $vpn_dir diff --git a/ca/1003.pem b/ca/1003.pem new file mode 100644 index 0000000..faf0c1a --- /dev/null +++ b/ca/1003.pem @@ -0,0 +1,77 @@ +Certificate: + Data: + Version: 3 (0x2) + Serial Number: 4099 (0x1003) + Signature Algorithm: sha256WithRSAEncryption + Issuer: C=PT, ST=Coimbra, L=Coimbra, O=UC, CN=CoimbraVPN + Validity + Not Before: Apr 22 14:14:59 2026 GMT + Not After : Apr 22 14:14:59 2027 GMT + Subject: CN=apache.coimbra + Subject Public Key Info: + Public Key Algorithm: rsaEncryption + Public-Key: (2048 bit) + Modulus: + 00:d0:88:fb:32:17:9b:9d:95:15:42:a5:b3:20:0e: + 27:1a:bd:aa:10:6a:59:9c:18:40:cb:81:80:70:33: + 1a:22:34:08:6f:94:0c:97:1c:68:d4:69:59:7e:50: + 65:c1:46:2a:fd:9d:4e:96:13:47:58:da:87:86:0e: + ac:ad:ad:48:ad:d1:b1:6e:61:2b:de:04:c1:5f:cf: + 60:f5:a6:bd:3d:fd:b3:eb:a0:db:8f:9f:67:5b:91: + 76:aa:a5:87:9a:83:57:1a:84:3d:11:c2:b3:71:84: + 51:48:d3:38:8e:0e:f2:c5:96:55:b5:6e:86:4c:f0: + 22:9d:19:13:ae:23:21:ea:d5:fe:e4:1d:9c:fb:42: + 3a:84:81:43:03:2e:c5:bd:ed:0b:7e:48:50:83:e0: + 0b:15:87:bd:65:9b:0d:d0:7e:55:8d:02:e9:03:af: + fe:7d:19:28:ef:46:6b:2c:02:04:33:05:2e:73:94: + 10:ae:54:25:d2:82:55:10:22:74:7b:44:7c:c6:d3: + e5:35:5e:10:af:9e:67:49:0a:1f:fe:bb:00:60:26: + a8:ee:4b:66:2f:7d:f4:76:24:3e:73:81:e4:79:53: + 3c:30:e6:25:00:80:fb:d2:0c:fa:e7:db:01:15:52: + 4e:c4:ec:9f:95:b4:1d:a0:e7:7a:a2:59:77:c0:24: + 13:a9 + Exponent: 65537 (0x10001) + X509v3 extensions: + X509v3 Subject Alternative Name: + IP Address:10.60.0.1, DNS:apache + X509v3 Subject Key Identifier: + 13:9F:64:BF:CB:5E:2F:7D:F8:0B:26:94:DB:17:9D:F4:59:CE:79:20 + X509v3 Authority Key Identifier: + AC:CD:79:CC:80:17:AA:8D:16:CC:97:B1:E9:36:5E:00:2A:BD:5B:D5 + Signature Algorithm: sha256WithRSAEncryption + Signature Value: + 9c:7e:99:3c:10:22:23:cd:d6:c7:96:be:82:5e:e5:7f:69:16: + 5c:57:e1:68:e2:04:26:74:e9:72:ea:3b:03:5c:81:bd:21:15: + a3:e8:86:4d:93:6f:a4:d8:a1:47:de:e0:b5:a3:bb:aa:5b:24: + e9:9d:f7:9d:7d:e3:ba:38:39:af:c6:8b:36:5c:a8:3d:37:af: + 79:be:8f:bf:ba:76:a5:d5:62:8e:37:c8:2e:6d:7e:24:fc:56: + d2:91:01:9e:05:4d:26:16:52:75:3d:28:7f:20:d0:88:25:96: + 2a:d3:3a:8f:27:3d:99:46:4d:de:e2:a7:11:07:84:ff:ac:55: + 54:4a:25:1b:b3:05:47:b5:d5:db:b9:69:e5:f6:d7:28:c9:54: + 45:9c:a5:9a:86:74:37:33:7c:47:75:5a:dd:bf:50:23:be:95: + 8e:cd:2c:ba:72:cc:41:95:1f:a0:67:78:61:de:38:89:18:c4: + 0c:df:e0:be:f3:9d:3e:e7:72:9f:3c:a3:e0:06:9a:6c:28:d1: + e2:1d:d2:14:76:89:8a:d4:ca:e1:38:9c:b3:31:81:bb:ca:11: + ba:78:36:01:e5:db:bf:a0:82:36:d2:b4:65:01:60:bf:63:c2: + a8:86:54:cb:ac:59:52:31:bd:a2:cc:94:47:cc:0a:cc:d3:87: + db:7b:fa:1a +-----BEGIN CERTIFICATE----- +MIIDQzCCAiugAwIBAgICEAMwDQYJKoZIhvcNAQELBQAwUzELMAkGA1UEBhMCUFQx +EDAOBgNVBAgMB0NvaW1icmExEDAOBgNVBAcMB0NvaW1icmExCzAJBgNVBAoMAlVD +MRMwEQYDVQQDDApDb2ltYnJhVlBOMB4XDTI2MDQyMjE0MTQ1OVoXDTI3MDQyMjE0 +MTQ1OVowGTEXMBUGA1UEAwwOYXBhY2hlLmNvaW1icmEwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQDQiPsyF5udlRVCpbMgDicavaoQalmcGEDLgYBwMxoi +NAhvlAyXHGjUaVl+UGXBRir9nU6WE0dY2oeGDqytrUit0bFuYSveBMFfz2D1pr09 +/bProNuPn2dbkXaqpYeag1cahD0RwrNxhFFI0ziODvLFllW1boZM8CKdGROuIyHq +1f7kHZz7QjqEgUMDLsW97Qt+SFCD4AsVh71lmw3QflWNAukDr/59GSjvRmssAgQz +BS5zlBCuVCXSglUQInR7RHzG0+U1XhCvnmdJCh/+uwBgJqjuS2YvffR2JD5zgeR5 +Uzww5iUAgPvSDPrn2wEVUk7E7J+VtB2g53qiWXfAJBOpAgMBAAGjWzBZMBcGA1Ud +EQQQMA6HBAo8AAGCBmFwYWNoZTAdBgNVHQ4EFgQUE59kv8teL334CyaU2xed9FnO +eSAwHwYDVR0jBBgwFoAUrM15zIAXqo0WzJex6TZeACq9W9UwDQYJKoZIhvcNAQEL +BQADggEBAJx+mTwQIiPN1seWvoJe5X9pFlxX4WjiBCZ06XLqOwNcgb0hFaPohk2T +b6TYoUfe4LWju6pbJOmd951947o4Oa/GizZcqD03r3m+j7+6dqXVYo43yC5tfiT8 +VtKRAZ4FTSYWUnU9KH8g0IgllirTOo8nPZlGTd7ipxEHhP+sVVRKJRuzBUe11du5 +aeX21yjJVEWcpZqGdDczfEd1Wt2/UCO+lY7NLLpyzEGVH6BneGHeOIkYxAzf4L7z +nT7ncp88o+AGmmwo0eId0hR2iYrUyuE4nLMxgbvKEbp4NgHl27+ggjbStGUBYL9j +wqiGVMusWVIxvaLMlEfMCszTh9t7+ho= +-----END CERTIFICATE----- diff --git a/ca/apache.crt b/ca/apache.crt index 3cd495d..faf0c1a 100644 --- a/ca/apache.crt +++ b/ca/apache.crt @@ -1,13 +1,13 @@ Certificate: Data: Version: 3 (0x2) - Serial Number: 4098 (0x1002) + Serial Number: 4099 (0x1003) Signature Algorithm: sha256WithRSAEncryption Issuer: C=PT, ST=Coimbra, L=Coimbra, O=UC, CN=CoimbraVPN Validity - Not Before: Apr 22 12:33:59 2026 GMT - Not After : Apr 22 12:33:59 2027 GMT - Subject: CN=apache + Not Before: Apr 22 14:14:59 2026 GMT + Not After : Apr 22 14:14:59 2027 GMT + Subject: CN=apache.coimbra Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) @@ -32,43 +32,46 @@ Certificate: 13:a9 Exponent: 65537 (0x10001) X509v3 extensions: + X509v3 Subject Alternative Name: + IP Address:10.60.0.1, DNS:apache X509v3 Subject Key Identifier: 13:9F:64:BF:CB:5E:2F:7D:F8:0B:26:94:DB:17:9D:F4:59:CE:79:20 X509v3 Authority Key Identifier: AC:CD:79:CC:80:17:AA:8D:16:CC:97:B1:E9:36:5E:00:2A:BD:5B:D5 Signature Algorithm: sha256WithRSAEncryption Signature Value: - a4:24:8d:a2:b8:b4:da:5c:a6:e0:75:2a:e0:71:aa:03:35:e8: - b4:64:49:90:b9:f3:09:a6:c6:99:0c:64:04:5e:65:e6:09:72: - 13:11:e8:4c:29:a4:99:c5:dd:67:ff:49:fb:5f:8a:b3:cf:3a: - e5:b7:1c:a0:8a:59:ca:10:a9:dd:26:c3:3d:25:c7:82:b8:0d: - db:91:fe:45:d1:3b:ac:80:1d:11:49:85:13:9b:c2:86:fd:17: - 81:5d:e3:a4:d1:64:2d:27:0c:c9:77:08:2a:89:ed:7e:2e:ac: - d2:86:f5:d5:fd:de:a6:c4:5d:18:33:ec:78:a1:ca:cf:64:68: - cb:1a:25:1e:a3:cf:e5:28:0b:a2:f8:45:bd:b6:99:54:17:62: - 09:f0:ab:ba:d2:38:dc:bc:7b:1d:b8:f2:51:e5:d3:0c:1d:8d: - a3:3e:57:c2:0d:ef:93:5d:39:9c:ee:50:f1:e3:f8:fb:ff:94: - 88:2c:37:f7:39:47:97:2c:fc:71:27:88:21:b3:da:68:ac:f4: - c6:a0:77:00:25:37:67:ea:ee:d1:a8:44:01:f6:40:79:68:4a: - 94:24:d8:1a:d9:07:7d:73:0b:8c:b0:80:dd:b4:a9:49:3f:33: - 73:7e:4d:5a:b6:f0:51:94:46:b2:81:a3:cb:81:a2:d9:7f:dd: - 32:60:ba:8c + 9c:7e:99:3c:10:22:23:cd:d6:c7:96:be:82:5e:e5:7f:69:16: + 5c:57:e1:68:e2:04:26:74:e9:72:ea:3b:03:5c:81:bd:21:15: + a3:e8:86:4d:93:6f:a4:d8:a1:47:de:e0:b5:a3:bb:aa:5b:24: + e9:9d:f7:9d:7d:e3:ba:38:39:af:c6:8b:36:5c:a8:3d:37:af: + 79:be:8f:bf:ba:76:a5:d5:62:8e:37:c8:2e:6d:7e:24:fc:56: + d2:91:01:9e:05:4d:26:16:52:75:3d:28:7f:20:d0:88:25:96: + 2a:d3:3a:8f:27:3d:99:46:4d:de:e2:a7:11:07:84:ff:ac:55: + 54:4a:25:1b:b3:05:47:b5:d5:db:b9:69:e5:f6:d7:28:c9:54: + 45:9c:a5:9a:86:74:37:33:7c:47:75:5a:dd:bf:50:23:be:95: + 8e:cd:2c:ba:72:cc:41:95:1f:a0:67:78:61:de:38:89:18:c4: + 0c:df:e0:be:f3:9d:3e:e7:72:9f:3c:a3:e0:06:9a:6c:28:d1: + e2:1d:d2:14:76:89:8a:d4:ca:e1:38:9c:b3:31:81:bb:ca:11: + ba:78:36:01:e5:db:bf:a0:82:36:d2:b4:65:01:60:bf:63:c2: + a8:86:54:cb:ac:59:52:31:bd:a2:cc:94:47:cc:0a:cc:d3:87: + db:7b:fa:1a -----BEGIN CERTIFICATE----- -MIIDIjCCAgqgAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwUzELMAkGA1UEBhMCUFQx +MIIDQzCCAiugAwIBAgICEAMwDQYJKoZIhvcNAQELBQAwUzELMAkGA1UEBhMCUFQx EDAOBgNVBAgMB0NvaW1icmExEDAOBgNVBAcMB0NvaW1icmExCzAJBgNVBAoMAlVD -MRMwEQYDVQQDDApDb2ltYnJhVlBOMB4XDTI2MDQyMjEyMzM1OVoXDTI3MDQyMjEy -MzM1OVowETEPMA0GA1UEAwwGYXBhY2hlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A -MIIBCgKCAQEA0Ij7MhebnZUVQqWzIA4nGr2qEGpZnBhAy4GAcDMaIjQIb5QMlxxo -1GlZflBlwUYq/Z1OlhNHWNqHhg6sra1IrdGxbmEr3gTBX89g9aa9Pf2z66Dbj59n -W5F2qqWHmoNXGoQ9EcKzcYRRSNM4jg7yxZZVtW6GTPAinRkTriMh6tX+5B2c+0I6 -hIFDAy7Fve0LfkhQg+ALFYe9ZZsN0H5VjQLpA6/+fRko70ZrLAIEMwUuc5QQrlQl -0oJVECJ0e0R8xtPlNV4Qr55nSQof/rsAYCao7ktmL330diQ+c4HkeVM8MOYlAID7 -0gz659sBFVJOxOyflbQdoOd6oll3wCQTqQIDAQABo0IwQDAdBgNVHQ4EFgQUE59k -v8teL334CyaU2xed9FnOeSAwHwYDVR0jBBgwFoAUrM15zIAXqo0WzJex6TZeACq9 -W9UwDQYJKoZIhvcNAQELBQADggEBAKQkjaK4tNpcpuB1KuBxqgM16LRkSZC58wmm -xpkMZAReZeYJchMR6EwppJnF3Wf/SftfirPPOuW3HKCKWcoQqd0mwz0lx4K4DduR -/kXRO6yAHRFJhRObwob9F4Fd46TRZC0nDMl3CCqJ7X4urNKG9dX93qbEXRgz7Hih -ys9kaMsaJR6jz+UoC6L4Rb22mVQXYgnwq7rSONy8ex248lHl0wwdjaM+V8IN75Nd -OZzuUPHj+Pv/lIgsN/c5R5cs/HEniCGz2mis9MagdwAlN2fq7tGoRAH2QHloSpQk -2BrZB31zC4ywgN20qUk/M3N+TVq28FGURrKBo8uBotl/3TJguow= +MRMwEQYDVQQDDApDb2ltYnJhVlBOMB4XDTI2MDQyMjE0MTQ1OVoXDTI3MDQyMjE0 +MTQ1OVowGTEXMBUGA1UEAwwOYXBhY2hlLmNvaW1icmEwggEiMA0GCSqGSIb3DQEB +AQUAA4IBDwAwggEKAoIBAQDQiPsyF5udlRVCpbMgDicavaoQalmcGEDLgYBwMxoi +NAhvlAyXHGjUaVl+UGXBRir9nU6WE0dY2oeGDqytrUit0bFuYSveBMFfz2D1pr09 +/bProNuPn2dbkXaqpYeag1cahD0RwrNxhFFI0ziODvLFllW1boZM8CKdGROuIyHq +1f7kHZz7QjqEgUMDLsW97Qt+SFCD4AsVh71lmw3QflWNAukDr/59GSjvRmssAgQz +BS5zlBCuVCXSglUQInR7RHzG0+U1XhCvnmdJCh/+uwBgJqjuS2YvffR2JD5zgeR5 +Uzww5iUAgPvSDPrn2wEVUk7E7J+VtB2g53qiWXfAJBOpAgMBAAGjWzBZMBcGA1Ud +EQQQMA6HBAo8AAGCBmFwYWNoZTAdBgNVHQ4EFgQUE59kv8teL334CyaU2xed9FnO +eSAwHwYDVR0jBBgwFoAUrM15zIAXqo0WzJex6TZeACq9W9UwDQYJKoZIhvcNAQEL +BQADggEBAJx+mTwQIiPN1seWvoJe5X9pFlxX4WjiBCZ06XLqOwNcgb0hFaPohk2T +b6TYoUfe4LWju6pbJOmd951947o4Oa/GizZcqD03r3m+j7+6dqXVYo43yC5tfiT8 +VtKRAZ4FTSYWUnU9KH8g0IgllirTOo8nPZlGTd7ipxEHhP+sVVRKJRuzBUe11du5 +aeX21yjJVEWcpZqGdDczfEd1Wt2/UCO+lY7NLLpyzEGVH6BneGHeOIkYxAzf4L7z +nT7ncp88o+AGmmwo0eId0hR2iYrUyuE4nLMxgbvKEbp4NgHl27+ggjbStGUBYL9j +wqiGVMusWVIxvaLMlEfMCszTh9t7+ho= -----END CERTIFICATE----- diff --git a/ca/apache.crt.old b/ca/apache.crt.old new file mode 100644 index 0000000..3cd495d --- /dev/null +++ b/ca/apache.crt.old @@ -0,0 +1,74 @@ +Certificate: + Data: + Version: 3 (0x2) + Serial Number: 4098 (0x1002) + Signature Algorithm: sha256WithRSAEncryption + Issuer: C=PT, ST=Coimbra, L=Coimbra, O=UC, CN=CoimbraVPN + Validity + Not Before: Apr 22 12:33:59 2026 GMT + Not After : Apr 22 12:33:59 2027 GMT + Subject: CN=apache + Subject Public Key Info: + Public Key Algorithm: rsaEncryption + Public-Key: (2048 bit) + Modulus: + 00:d0:88:fb:32:17:9b:9d:95:15:42:a5:b3:20:0e: + 27:1a:bd:aa:10:6a:59:9c:18:40:cb:81:80:70:33: + 1a:22:34:08:6f:94:0c:97:1c:68:d4:69:59:7e:50: + 65:c1:46:2a:fd:9d:4e:96:13:47:58:da:87:86:0e: + ac:ad:ad:48:ad:d1:b1:6e:61:2b:de:04:c1:5f:cf: + 60:f5:a6:bd:3d:fd:b3:eb:a0:db:8f:9f:67:5b:91: + 76:aa:a5:87:9a:83:57:1a:84:3d:11:c2:b3:71:84: + 51:48:d3:38:8e:0e:f2:c5:96:55:b5:6e:86:4c:f0: + 22:9d:19:13:ae:23:21:ea:d5:fe:e4:1d:9c:fb:42: + 3a:84:81:43:03:2e:c5:bd:ed:0b:7e:48:50:83:e0: + 0b:15:87:bd:65:9b:0d:d0:7e:55:8d:02:e9:03:af: + fe:7d:19:28:ef:46:6b:2c:02:04:33:05:2e:73:94: + 10:ae:54:25:d2:82:55:10:22:74:7b:44:7c:c6:d3: + e5:35:5e:10:af:9e:67:49:0a:1f:fe:bb:00:60:26: + a8:ee:4b:66:2f:7d:f4:76:24:3e:73:81:e4:79:53: + 3c:30:e6:25:00:80:fb:d2:0c:fa:e7:db:01:15:52: + 4e:c4:ec:9f:95:b4:1d:a0:e7:7a:a2:59:77:c0:24: + 13:a9 + Exponent: 65537 (0x10001) + X509v3 extensions: + X509v3 Subject Key Identifier: + 13:9F:64:BF:CB:5E:2F:7D:F8:0B:26:94:DB:17:9D:F4:59:CE:79:20 + X509v3 Authority Key Identifier: + AC:CD:79:CC:80:17:AA:8D:16:CC:97:B1:E9:36:5E:00:2A:BD:5B:D5 + Signature Algorithm: sha256WithRSAEncryption + Signature Value: + a4:24:8d:a2:b8:b4:da:5c:a6:e0:75:2a:e0:71:aa:03:35:e8: + b4:64:49:90:b9:f3:09:a6:c6:99:0c:64:04:5e:65:e6:09:72: + 13:11:e8:4c:29:a4:99:c5:dd:67:ff:49:fb:5f:8a:b3:cf:3a: + e5:b7:1c:a0:8a:59:ca:10:a9:dd:26:c3:3d:25:c7:82:b8:0d: + db:91:fe:45:d1:3b:ac:80:1d:11:49:85:13:9b:c2:86:fd:17: + 81:5d:e3:a4:d1:64:2d:27:0c:c9:77:08:2a:89:ed:7e:2e:ac: + d2:86:f5:d5:fd:de:a6:c4:5d:18:33:ec:78:a1:ca:cf:64:68: + cb:1a:25:1e:a3:cf:e5:28:0b:a2:f8:45:bd:b6:99:54:17:62: + 09:f0:ab:ba:d2:38:dc:bc:7b:1d:b8:f2:51:e5:d3:0c:1d:8d: + a3:3e:57:c2:0d:ef:93:5d:39:9c:ee:50:f1:e3:f8:fb:ff:94: + 88:2c:37:f7:39:47:97:2c:fc:71:27:88:21:b3:da:68:ac:f4: + c6:a0:77:00:25:37:67:ea:ee:d1:a8:44:01:f6:40:79:68:4a: + 94:24:d8:1a:d9:07:7d:73:0b:8c:b0:80:dd:b4:a9:49:3f:33: + 73:7e:4d:5a:b6:f0:51:94:46:b2:81:a3:cb:81:a2:d9:7f:dd: + 32:60:ba:8c +-----BEGIN CERTIFICATE----- +MIIDIjCCAgqgAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwUzELMAkGA1UEBhMCUFQx +EDAOBgNVBAgMB0NvaW1icmExEDAOBgNVBAcMB0NvaW1icmExCzAJBgNVBAoMAlVD +MRMwEQYDVQQDDApDb2ltYnJhVlBOMB4XDTI2MDQyMjEyMzM1OVoXDTI3MDQyMjEy +MzM1OVowETEPMA0GA1UEAwwGYXBhY2hlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A +MIIBCgKCAQEA0Ij7MhebnZUVQqWzIA4nGr2qEGpZnBhAy4GAcDMaIjQIb5QMlxxo +1GlZflBlwUYq/Z1OlhNHWNqHhg6sra1IrdGxbmEr3gTBX89g9aa9Pf2z66Dbj59n +W5F2qqWHmoNXGoQ9EcKzcYRRSNM4jg7yxZZVtW6GTPAinRkTriMh6tX+5B2c+0I6 +hIFDAy7Fve0LfkhQg+ALFYe9ZZsN0H5VjQLpA6/+fRko70ZrLAIEMwUuc5QQrlQl +0oJVECJ0e0R8xtPlNV4Qr55nSQof/rsAYCao7ktmL330diQ+c4HkeVM8MOYlAID7 +0gz659sBFVJOxOyflbQdoOd6oll3wCQTqQIDAQABo0IwQDAdBgNVHQ4EFgQUE59k +v8teL334CyaU2xed9FnOeSAwHwYDVR0jBBgwFoAUrM15zIAXqo0WzJex6TZeACq9 +W9UwDQYJKoZIhvcNAQELBQADggEBAKQkjaK4tNpcpuB1KuBxqgM16LRkSZC58wmm +xpkMZAReZeYJchMR6EwppJnF3Wf/SftfirPPOuW3HKCKWcoQqd0mwz0lx4K4DduR +/kXRO6yAHRFJhRObwob9F4Fd46TRZC0nDMl3CCqJ7X4urNKG9dX93qbEXRgz7Hih +ys9kaMsaJR6jz+UoC6L4Rb22mVQXYgnwq7rSONy8ex248lHl0wwdjaM+V8IN75Nd +OZzuUPHj+Pv/lIgsN/c5R5cs/HEniCGz2mis9MagdwAlN2fq7tGoRAH2QHloSpQk +2BrZB31zC4ywgN20qUk/M3N+TVq28FGURrKBo8uBotl/3TJguow= +-----END CERTIFICATE----- diff --git a/ca/apache.csr b/ca/apache.csr index 864fe71..2d2af6e 100644 --- a/ca/apache.csr +++ b/ca/apache.csr @@ -1,16 +1,17 @@ -----BEGIN CERTIFICATE REQUEST----- -MIIClDCCAXwCAQAwTzELMAkGA1UEBhMCUFQxEDAOBgNVBAgMB0NvaW1icmExEDAO -BgNVBAcMB0NvaW1icmExCzAJBgNVBAoMAlVDMQ8wDQYDVQQDDAZhcGFjaGUwggEi -MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQiPsyF5udlRVCpbMgDicavaoQ -almcGEDLgYBwMxoiNAhvlAyXHGjUaVl+UGXBRir9nU6WE0dY2oeGDqytrUit0bFu -YSveBMFfz2D1pr09/bProNuPn2dbkXaqpYeag1cahD0RwrNxhFFI0ziODvLFllW1 -boZM8CKdGROuIyHq1f7kHZz7QjqEgUMDLsW97Qt+SFCD4AsVh71lmw3QflWNAukD -r/59GSjvRmssAgQzBS5zlBCuVCXSglUQInR7RHzG0+U1XhCvnmdJCh/+uwBgJqju -S2YvffR2JD5zgeR5Uzww5iUAgPvSDPrn2wEVUk7E7J+VtB2g53qiWXfAJBOpAgMB -AAGgADANBgkqhkiG9w0BAQsFAAOCAQEAjX3rMyjohO57YDivd5f6WfkoWdF4ckUZ -5VVkLmqhbyZxrf7Fyo+7K5EYwYGwZUY/ddhVrhFLjkRnrtXBfoj2xvia64WWZtLV -iVWzemfUKPrDLqH/uFCNnKMgOj2fjT1wGKfQr16Xwn9/cSAlGwFvMMd5t5OOR83c -K1zJLkSReRjO4xbPNQp+jyok7bjP2eXAcIBs+oEYIgLzOPGDjEbxiA2ZB2vi7+Ai -fToV5E9saVfxOoi+wxbfIS7q4TV/fOCcPAxOil1EzCnPdvylJycePhcgZH1lQec3 -Wm4s3OGw+W3FZlG8vkmWUQw23yiD/VOtkXEObreLmLMvep6BSFPdzg== +MIICxjCCAa4CAQAwVzELMAkGA1UEBhMCUFQxEDAOBgNVBAgMB0NvaW1icmExEDAO +BgNVBAcMB0NvaW1icmExCzAJBgNVBAoMAlVDMRcwFQYDVQQDDA5hcGFjaGUuY29p +bWJyYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANCI+zIXm52VFUKl +syAOJxq9qhBqWZwYQMuBgHAzGiI0CG+UDJccaNRpWX5QZcFGKv2dTpYTR1jah4YO +rK2tSK3RsW5hK94EwV/PYPWmvT39s+ug24+fZ1uRdqqlh5qDVxqEPRHCs3GEUUjT +OI4O8sWWVbVuhkzwIp0ZE64jIerV/uQdnPtCOoSBQwMuxb3tC35IUIPgCxWHvWWb +DdB+VY0C6QOv/n0ZKO9GaywCBDMFLnOUEK5UJdKCVRAidHtEfMbT5TVeEK+eZ0kK +H/67AGAmqO5LZi999HYkPnOB5HlTPDDmJQCA+9IM+ufbARVSTsTsn5W0HaDneqJZ +d8AkE6kCAwEAAaAqMCgGCSqGSIb3DQEJDjEbMBkwFwYDVR0RBBAwDocECjwAAYIG +YXBhY2hlMA0GCSqGSIb3DQEBCwUAA4IBAQBzs+QEnIvT5ArumDP7/7TeEcOeTmfh +GkLMHKn2+lRH055KE+sv2k2l+PW4zrPLdEWw82CW7zy4ilpXjzywGIXZY0dCAWWH +wc/mRqbE6b4gdatU+LEqkcUiiCKkAh+stG1QOYB4yhISR0N/KWC4GIBsNIen8jjO ++qQunBa/wb7XRvHWCl4ihLMSA4PjijkxPOAjnGe6swPCo8gl39477bdAYL2Qrrr2 +FxkZRZMZG1cSX2lV8DhBV4/AZAzZMGFHc4GOzcyzPNJ3PWFotv+jNQ1DxbTFmOYI +m6A0coUdCw87lYuWlH8J3s0CUUb7Swd1dKrTjk7UDOTG1VK7q7xYaMkJ -----END CERTIFICATE REQUEST----- diff --git a/ca/create_all_keys.sh b/ca/create_all_keys.sh index 23d0d5f..1bb23f3 100755 --- a/ca/create_all_keys.sh +++ b/ca/create_all_keys.sh @@ -3,7 +3,7 @@ cert_ca="/C=PT/ST=Coimbra/L=Coimbra/O=UC/CN=CoimbraVPN" cert_vpn="/C=PT/ST=Coimbra/L=Coimbra/O=UC/CN=gateway" cert_user="/C=PT/ST=Coimbra/L=Coimbra/O=UC/CN=warrior" -cert_apache="/C=PT/ST=Coimbra/L=Coimbra/O=UC/CN=apache" +cert_apache="/C=PT/ST=Coimbra/L=Coimbra/O=UC/CN=apache.coimbra" [[ -e "serial" ]] || echo 1000 > serial [[ -e "index.txt" ]] || touch index.txt diff --git a/ca/index.txt b/ca/index.txt index bb60ef5..7f2bd89 100644 --- a/ca/index.txt +++ b/ca/index.txt @@ -1,3 +1,4 @@ V 270422105026Z 1000 unknown /CN=gateway V 270422105026Z 1001 unknown /CN=warrior V 270422123359Z 1002 unknown /CN=apache +V 270422141459Z 1003 unknown /CN=apache.coimbra diff --git a/ca/index.txt.old b/ca/index.txt.old index ff7b210..bb60ef5 100644 --- a/ca/index.txt.old +++ b/ca/index.txt.old @@ -1,2 +1,3 @@ V 270422105026Z 1000 unknown /CN=gateway V 270422105026Z 1001 unknown /CN=warrior +V 270422123359Z 1002 unknown /CN=apache diff --git a/ca/serial b/ca/serial index baccd03..59c1122 100644 --- a/ca/serial +++ b/ca/serial @@ -1 +1 @@ -1003 +1004 diff --git a/ca/serial.old b/ca/serial.old index 7d802a3..baccd03 100644 --- a/ca/serial.old +++ b/ca/serial.old @@ -1 +1 @@ -1002 +1003