blob: 358459f27ce51b9f1b3f8b26a8f4a5456ea4bf01 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
|
#!/bin/sh
# These defaults were extracted from Barrier source file:
# src/gui/src/SslCertificate.cpp
#
# A private key and certificate is generated in the profile
# directory (~/.barrier/SSL/Barrier.pem). Then a fingerprint
# is generated that can be used to verify the client is
# connecting to the correct server
# (~/.barrier/SSL/Fingerprints/Local.txt)
umask 177
CERTDIR="$HOME/.barrier/SSL"
if hash openssl 2>/dev/null; then
mkdir -p "$CERTDIR/" && openssl req -x509 -nodes -days 365 -subj '/CN=Barrier' -newkey rsa:4096 -keyout "$CERTDIR/Barrier.pem" -out "$CERTDIR/Barrier.pem" && mkdir -p "$CERTDIR/Fingerprints/" && openssl x509 -fingerprint -sha1 -noout -in "$CERTDIR/Barrier.pem" | cut -d= -f2 > "$CERTDIR/Fingerprints/Local.txt"
echo "Server Fingerprint:"
cat "$CERTDIR/Fingerprints/Local.txt"
else
echo "openssl not found in path"
fi
|
