From aeb4c56811167ea5655d1ddea18d09c7e2d1d813 Mon Sep 17 00:00:00 2001 From: "Kyle J. McKay" Date: Fri, 10 May 2013 09:19:04 -0700 Subject: [PATCH] Add a README.txt file --- README.txt | 26 ++++++++++++++++++++++++++ 1 file changed, 26 insertions(+) create mode 100644 README.txt diff --git a/README.txt b/README.txt new file mode 100644 index 0000000..291e7ed --- /dev/null +++ b/README.txt @@ -0,0 +1,26 @@ +The CACreateCert certificate utility was developed in order to +facilitate using X509 client certificates for authentication with +a web server over the https protocol when all the user has uploaded +to the server for identification is an OpenSSH RSA public key (e.g. +id_rsa.pub). + +(In other words, the user pastes an OpenSSH RSA public key into a +form on the web server and the web server responds with a client +certificate that the user can then download and use together with +the corresponding private key to authenticate to that web server.) + +However, the CACreateCert utility has grown a number of additional +options making it useful for creation of several other kinds of +X509 certificates. + +It may be helpful to first view the Example.html page to see how a +full set of certificates and keys for a complete certificate chain +may be generated (including individual user client authentication +certificates). If more detail is needed on the veritable plethora +of options available when running the CACreateCert utility, look +at the output of the CACreateCert -h command. + +This software is licensed under the GNU Affero General Public License +as published by the Free Software Foundation, either version 3 of +the License, or (at your option) any later version. See the included +file LICENSE.txt or the web site . -- 2.11.4.GIT