-- Leo's gemini proxy
-- Connecting to bbs.geminispace.org:1965...
-- Connected
-- Sending request
-- Meta line: 20 text/gemini; charset=utf-8
What is the recommended method of certificate generation with GmCapsule? I tried out agate first, and that automatically generates self-signed certificates for a specified domain. These can be converted from der to pem format and will work with GmCapsule. Of course just generating a self-signed certificate isn't too hard, but I'm curious what everyone else is doing.
2023-06-23 · 11 months ago
I'm doing it with a little bash script that calls the `openssl` CLI and sets the various alternative names and wildcards. This lets me also reuse the private key if there is need to update the certificate.
I added an issue about this to the tracker:
There is the gemcert CLI tool by solderpunk, which can easily generate server and client certificates:
Thank you both! That script works great and it will be very convenient to have GmCapsule generate its own certificates in the future.
-- Response ended
-- Page fetched on Sun May 19 18:56:04 2024