Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
playing around wit pk12util on an p12 cert I exported from openssl, below is the output of a listing:
Code:
Certificate(has private key):
Data:
Version: 1 (0x0)
Serial Number: 1048577 (0x100001)
Signature Algorithm: PKCS #1 MD5 With RSA Encryption
Issuer: "CN=Joel Davis,C=US,ST=NC,L="Cary, NC",E=jodavis@gmail.com,OU
=GSS,O=Red Hat"
Validity:
Not Before: Thu Mar 17 18:45:11 2011
Not After : Fri Mar 16 18:45:11 2012
Subject: "CN=jodavis@redhat.com,OU=GSS,O=Red Hat,ST=NC,C=US"
Subject Public Key Info:
Public Key Algorithm: PKCS #1 RSA Encryption
RSA Public Key:
Modulus:
e3:54:68:f3:09:82:f8:ae:d9:22:aa:e4:ca:63:0c:75:
8b:f7:e2:66:32:6b:f5:ec:bc:d8:73:27:64:b4:47:1e:
a8:d2:8d:80:00:3c:b9:03:51:04:d1:fa:17:78:d1:d8:
5c:29:8a:29:b9:67:32:b0:7d:6a:32:43:80:7e:21:bf:
5c:40:4d:d7:81:d7:ce:73:de:41:5b:61:df:58:0c:38:
aa:29:c9:7a:31:4a:9e:8e:c3:ed:28:40:1d:2b:99:d4:
f6:18:c2:73:58:24:bc:2c:3e:23:9d:4a:12:b1:7f:df:
94:e6:d9:2e:8b:02:fc:25:41:02:41:fb:5a:df:10:51
Exponent: 65537 (0x10001)
Signature Algorithm: PKCS #1 MD5 With RSA Encryption
Signature:
5b:b2:59:a4:0b:7b:61:a4:34:24:99:b4:5d:86:70:ad:
ef:70:6b:18:7e:bd:a3:8b:65:b8:99:0b:5f:88:70:b0:
f1:c0:7b:57:66:98:95:af:da:13:f9:24:87:b3:35:94:
78:1a:74:d1:1a:7c:4d:c2:e2:96:06:8a:fb:ca:ec:8d:
c7:ab:ef:a0:16:55:c4:63:30:25:07:d7:d8:bb:89:39:
07:1f:4d:c2:61:25:24:fc:ca:24:92:16:ae:03:c3:fe:
39:e0:f5:32:d6:cd:5c:10:f7:e4:93:bc:24:45:51:b3:
47:6e:a4:38:9a:96:a8:30:1c:41:1a:92:84:00:3d:77
Fingerprint (MD5):
95:F4:E9:07:55:D7:0A:F9:9D:79:66:CA:B3:56:22:C4
Fingerprint (SHA1):
B0:8B:E1:AB:41:96:86:C3:BE:1C:FD:8D:E2:21:24:47:AC:5F:EE:68
Friendly Name: OpenSSL Nick
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
00:b1:13:f5:95:70:62:9e:99
Signature Algorithm: PKCS #1 MD5 With RSA Encryption
Issuer: "CN=Joel Davis,C=US,ST=NC,L="Cary, NC",E=jodavis@gmail.com,OU
=GSS,O=Red Hat"
Validity:
Not Before: Thu Mar 17 18:37:49 2011
Not After : Sun Jul 29 18:37:49 2012
Subject: "CN=Joel Davis,C=US,ST=NC,L="Cary, NC",E=jodavis@gmail.com,O
U=GSS,O=Red Hat"
Subject Public Key Info:
Public Key Algorithm: PKCS #1 RSA Encryption
RSA Public Key:
Modulus:
cb:99:61:c2:28:83:ae:30:34:39:78:de:dc:e8:d9:12:
34:63:4e:6a:b1:66:35:af:ff:f5:12:e8:8b:50:17:f4:
ab:77:65:41:b3:05:0b:1b:e3:ae:34:36:37:fb:4b:82:
a2:c7:5c:fb:c9:0c:ae:27:90:8a:57:24:2d:ac:f5:15:
94:13:87:45:2f:59:f3:0e:d9:4b:4c:19:86:17:0a:0e:
e1:f7:64:2a:19:7b:5d:ec:2e:97:76:a0:92:0d:2e:40:
a7:70:e7:0e:3c:4b:21:60:85:07:a5:59:f5:21:d1:2f:
96:4e:c2:b3:c0:64:1e:0f:c7:96:90:ae:4f:59:fa:4d
Exponent: 65537 (0x10001)
Signed Extensions:
Name: Certificate Basic Constraints
Data: Is a CA with no maximum path length.
Name: Certificate Subject Key ID
Data:
94:6d:dd:3c:3d:dc:35:b8:94:4c:f9:8d:d4:18:7b:e1:
6c:e3:bf:c4
Name: Certificate Authority Key Identifier
Key ID:
94:6d:dd:3c:3d:dc:35:b8:94:4c:f9:8d:d4:18:7b:e1:
6c:e3:bf:c4
Issuer:
Directory Name: "CN=Joel Davis,C=US,ST=NC,L="Cary, NC",E=joda
vis@gmail.com,OU=GSS,O=Red Hat"
Serial Number:
00:b1:13:f5:95:70:62:9e:99
Signature Algorithm: PKCS #1 MD5 With RSA Encryption
Signature:
82:5c:cf:32:26:a2:43:79:6e:a1:7a:d1:0b:1a:a2:e7:
ec:be:06:8c:66:7e:a8:9d:b1:52:a6:e7:0a:95:db:a8:
c1:47:32:b2:20:46:27:d9:ea:ed:54:fd:fa:ef:41:55:
a1:fa:25:22:77:2f:8e:cb:9a:dd:24:9c:0d:62:70:68:
cc:ed:50:25:20:fc:5c:8a:76:20:95:14:67:1d:57:f1:
8f:8d:4b:02:17:9a:32:12:ac:f4:0b:db:8f:19:61:92:
3b:18:95:b1:f0:27:da:cf:5d:b6:20:f5:db:2b:48:bc:
ac:6d:d4:00:87:d4:f7:02:d4:bb:36:eb:16:8e:d5:a3
Fingerprint (MD5):
4E:8D:87:54:5C:13:9F:84:0A:F9:94:05:9A:14:67:E6
Fingerprint (SHA1):
98:B1:50:97:C4:B4:FA:17:02:DB:D3:97:D3:D8:A9:73:F4:B4:DE:7D
Key(shrouded):
Friendly Name: OpenSSL Nick
Encryption algorithm: PKCS #12 V2 PBE With SHA-1 And 3KEY Triple DES-CBC
Parameters:
Salt:
52:4e:ca:f0:ed:e4:9b:6d
Iteration Count: 2048 (0x800)
I could be missing it but I'm not seeing where the private key is listed. Am I missing it or does it not get outputted? (this is a fake p12 so there aren't any security concerns here.)
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.