Using Phpki contrib.
That is the RIGHT answer
OK, I know your version is probably a bit flawed.... the dates are wrong in the panel & other stuff.
I have done a patched version of v0.82 but not released it yet as we are testing it. It fixes a few basic issues like the dates and some formatting. The updated version is in smetest phpki-0.82-20
Please test it - Terry has and it seems OK but note I give NO guarantees that it won't break things so make a backup of your certs in /opt/phpki/phpki-store before upgrading, or better still install on a test machine. Install the original, create a few certs then upgrade.
However, it doesn't fix the current encryption level which is not high.
I have cloned the radicand repo which in itself was a copy of the 0.83 code with fixes and have updated it
https://github.com/reetp/phpkiIt is STILL a work in progress.
The big issue is upgrading. The new 0.83 version will use SHA512 which is far stronger than the SHA1 used in 0.82 which is a busted flush.
However, it means you need to generate a new CA, and then new certificates.
So to upgrade to 0.83 means we need to backup the old certs and reinstall.
I have a personal build of 0.83+ if you want to try it - let me know.
Also, if you want to test this (please!!!!) ask me for a Rocket.Chat account and you can talk to me and Terry directly as we build and test it. No coding required - just some enthusiasm....
Relevant bugs
https://bugs.contribs.org/show_bug.cgi?id=6741https://bugs.contribs.org/show_bug.cgi?id=8911 << fixed in phpki-0.82-20
https://bugs.contribs.org/show_bug.cgi?id=8685Hope you jump in and help - we really need it!
B. Rgds
John