Cert must be fullchain for most webservers

author Joann Mõndresku <joann@cernodile.com>

Wed, 15 May 2024 19:30:21 +0000 (22:30 +0300)

committer Joann Mõndresku <joann@cernodile.com>

Wed, 15 May 2024 19:30:21 +0000 (22:30 +0300)
author Joann Mõndresku <joann@cernodile.com>
Wed, 15 May 2024 19:30:21 +0000 (22:30 +0300)
committer Joann Mõndresku <joann@cernodile.com>
Wed, 15 May 2024 19:30:21 +0000 (22:30 +0300)
diff --git a/content/posts/reverse-engineering-a-mobile-app-protobuf-api.md b/content/posts/reverse-engineering-a-mobile-app-protobuf-api.md

index 00a28c9883d6a3aa609fe71554bd881713f5dcf6..3ef80ca478a52578102d2d443ab90bf4e09bcc4f 100644 (file)
--- a/content/posts/reverse-engineering-a-mobile-app-protobuf-api.md
+++ b/content/posts/reverse-engineering-a-mobile-app-protobuf-api.md
@@ -126,7 +126,8 @@ openssl req -x509 -new -nodes -key myCA.key -sha256 -days 1825 -out myCA.pem
  # Create a CSR and lets have the new CA sign it
  openssl genrsa -out auxbrain.key 2048
  openssl req -new -key auxbrain.key -out auxbrain.csr -nodes
-openssl x509 -req -in auxbrain.csr -CA myCA.pem -CAkey myCA.key -CAcreateserial -out auxbrain.pem -days 825 -sha256 -extfile auxbrain.ext
+openssl x509 -req -in auxbrain.csr -CA myCA.pem -CAkey myCA.key -CAcreateserial -out auxbrain.crt -days 825 -sha256 -extfile auxbrain.ext
+cat auxbrain.crt myCA.pem > auxbrain.pem
  # You now have:
  # myCA.pem - the public certificate of your root CA
  # auxbrain.key - the private key for your webserver
author	Joann Mõndresku <joann@cernodile.com>
	Wed, 15 May 2024 19:30:21 +0000 (22:30 +0300)
committer	Joann Mõndresku <joann@cernodile.com>
	Wed, 15 May 2024 19:30:21 +0000 (22:30 +0300)