virusdefender/ssl.sh

## ssl.sh
#!/bin/bash
set -ex

company="Chaitin"
subj="/C=CN/ST=Beijing/L=Beijing/O=$company Tech/OU=Service Infrastructure Department"
domain="vulndb"

# Create CA
openssl genrsa -out ca.key 2048
openssl req -new -x509 -nodes -sha256 -subj "$subj/CN=$company Root CA" -days 7500 -key ca.key -out ca.crt

# Create server certificate csr
openssl genrsa -out server.key 2048
openssl req -new -nodes -subj "$subj/CN=$domain" -key server.key -out server.csr

# CA signs server certificate
openssl x509 -req -sha256 -days 820 -extfile <(printf "subjectAltName=DNS:$domain,DNS:www.$domain\nextendedKeyUsage=serverAuth,clientAuth") -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt

cat ca.crt >> server.crt
	#!/bin/bash
	set -ex

	company="Chaitin"
	subj="/C=CN/ST=Beijing/L=Beijing/O=$company Tech/OU=Service Infrastructure Department"
	domain="vulndb"

	# Create CA
	openssl genrsa -out ca.key 2048
	openssl req -new -x509 -nodes -sha256 -subj "$subj/CN=$company Root CA" -days 7500 -key ca.key -out ca.crt

	# Create server certificate csr
	openssl genrsa -out server.key 2048
	openssl req -new -nodes -subj "$subj/CN=$domain" -key server.key -out server.csr

	# CA signs server certificate
	openssl x509 -req -sha256 -days 820 -extfile <(printf "subjectAltName=DNS:$domain,DNS:www.$domain\nextendedKeyUsage=serverAuth,clientAuth") -in server.csr -CA ca.crt -CAkey ca.key -CAcreateserial -out server.crt

	cat ca.crt >> server.crt