certtool never asks for CA-password when signing certificates

Nikos Mavrogiannopoulos nmav at gnutls.org
Fri Aug 24 14:40:51 CEST 2012


On Fri, Aug 24, 2012 at 9:42 AM, Tom Ackermann <tomackermann at gmail.com> wrote:
> Hi all
> I have already posted this in several (ubuntu-) forums but haven't received
> any hints so far, maybe somebody on this list can shed some light on this:
> When creating a CA with a password, certtool never again asks for the
> password when signing new certificates.

Thanks for reporting that. The default key format doesn't support any
passwords. You have to use the PKCS #8 format (with the --pkcs8
parameter). I'll put a check to do it automatically if a password has
been supplied.

regards,
Nikos




More information about the Gnutls-help mailing list