openssl req
-x509 -nodes -days 365
-newkey rsa:1024
-keyout mycert.pem
-out mycert.pem
openssl rsa -in mycert.pem -pubout > mypubkey.pem
openssl x509 -text -in cert.pem
openssl dgst -sha1 /etc/passwd
openssl dgst -sha1
-sign mycert.pem
-out passwd.sha1
/etc/passwd
openssl dgst -sha1
-verify mypubkey.pem
-signature passwd.sha1
/etc/passwd
openssl enc -aes-256-cbc -salt
-in /etc/passwd
-out passwd.enc
openssl enc -base64
-in passwd.enc
-out passwd.enc.ascii
openssl enc -d -aes-256-cbc -a -in passwd.enc.ascii
openssl smime -encrypt -des3
-in /etc/passwd
mycert.pem > mymessage.mime
openssl smime -sign
-signer mycert.pem
-in mymessage.mime > mymessage.mime.signed
openssl smime -verify
-CAfile mycert.pem
-in mymessage.mime.signed
openssl smime -decrypt
-in mymessage.mime
-inkey mycert.pem
openssl smime -verify
-CAfile mycert.pem
-in mymessage.mime.signed |
openssl smime -decrypt
-inkey mycert.pem