Waa Maxay Foomka PEM?

by Tim Fisher

Sida loo furo, u rogo, iyo beddelo faylasha PEM

Faylka leh faylka dheeraadka ah ee PEM waa faylka Isticmaalka Shahaadada Aqoonsiga ee loo yaqaan "Privacy Enhanced Mail Certificate" oo loo isticmaalo in si gaar ah loogu gudbiyo emailka. Qofka helaya emailkan wuxuu kalsooni ku qabaa in fariinta aan wax laga bedelin inta lagu gudajiro, laguma muujin cid kale, waxaana soo diray qofkii sheeganaya inuu soo diray.

Nooca PEM ayaa ka kacday dhibaatada u soo gudbinta macluumaadka ikhtiyaari ah iyada oo loo marayo email. Nooca PEM wuxuu ku xiraa ikhtiyaar leh xariijimo 64 si loo helo asal ASCII ah.

Foomka PEM waxaa lagu beddelay tiknoolajiyad cusub oo aad u ammaan badan laakiin kontaynarka PEM weli waxaa loo isticmaalaa maanta si uu u haysto feylalaha shahaadada shahaadada, furaha dadweynaha iyo kuwa gaarka loo leeyahay, shahaadooyinka asaasiga ah, iwm.

Fiiro gaar ah: Faylasha qaar ka mid ah habka PEM waxay isticmaali karaan faylal kale oo dheeri ah, sida CER ama CRT shahaadooyin, ama KEY furayaasha dadweynaha ama kuwa gaarka loo leeyahay.

Sidee loo furaa PEM Files?

Tallaabooyinka lagu furayo faylka PEM way kala duwan yihiin iyadoo ku xiran codsiga u baahan iyo nidaamka hawlgalka ee aad isticmaalayso. Si kastaba ha noqotee, waxaad u baahan tahay inaad beddesho feylkaagaaga PEM si CER ama CRT ah si ay qaar ka mid ah barnaamijyadani u aqbalaan faylka.

Windows

Haddii aad ubaahan tahay faylka CER ama CRT ee macmiilka emailka Microsoft sida Muuqaalka, u fur internet Explorer si aad si toos ah ugu gudbiso xogta saxda ah. Macmiilka emailka si toos ah ayuu u isticmaali karaa halkaa.

Si aad u aragto feylka shahaadooyinka ee lagu soo galo kombuyuutarkaaga, iyo kuwa aad u dirto gacanta, isticmaal Isticmaalka Internet Explorer ee Isticmaalka Internet-ka> Content> Content> Certificates .

Si aad u soo rogto faylka CER ama CRT galay Windows, bilaw inaad furto maaraynta Microsoft ee ka socota wadahadalka socodka (isticmaal keykarka furaha ee Windows Key + R si aad u geliso mmc ). Ka soco, u gudbi File> Add / Remove Snap-in ... oo dooro shahaadooyinka ka soo bidixda bidix, ka dibna Add> badhanka ku yaal bartamaha daaqadda. Dooro koontada kumbuyuutarka shaashadda soo socota, ka dibna u gudub halbeegaha, xulashada kombiyuutarka deegaanka marka la waydiiyo.

Marka "Shahaadoyinka" lagu buuxiyo "Console Root," ballaar feylka iyo midig-guji midabtakoorka Ruqsadaha Rootka ee Trusted , oo dooro Dhammaan Hawlaha> Alaabada ....

MacOS

Isla fikraddaas ayaa runta u ah macaamiisha macmalka macmiilka maaddaama ay tahay mid Windows ah; isticmaal Safari si aad u hesho feylka PEM ee loo soo dhoofiyo Keychain Access.

Waxaad sidoo kale soo iibsan kartaa shahaadooyinka SSL iyada oo loo marayo Faylka> Waxyaabaha Dibedda ah ... menu ee Keychain Access. Ka dooro Nidaamka muraayadda hoosta ka dibna raac dacaayadaha ku yaal shaashadda.

Haddii siyaabahan aysan u shaqeynin si loo soo rogo feylka PEM ee macOS, waxaad isku dayi kartaa amarada soo socda:

Nabadgelyada nabadgelyada yourfile.pem -k ~ / Library / Keychains / login.keychain

Linux

Isticmaal taladan keytool si aad u aragto waxyaabaha ku jira faylka PEM ee Linux:

keytool -printcert -file yourfile.pem

Raac tallaabooyinkan haddii aad rabto inaad soo dhoofiso faylka CRT oo ku soo celiso biilka aqoonsiga shahaadaysan ee Linux-ka ah (eeg PEM si habka isdhexgalka CRT ee qaybta xigta ee hoose haddii aad leedahay faylka PEM halkii):

Ku wareeji / usr / share / shahaadooyinka caayir / .
Abuuraan fayl (), tusaale ahaan, sudo mkdir / usr / share / shahaadooyinka / shaqada / shaqada .
Fiiri feylka .CRT ee ku jira faylka cusub ee la abuuray. Haddii aad doorbidi lahayd inaad gacantaada ku samayso, waxaad u isticmaali kartaa halkan talada: sudo cp yourfile.crt /usr/share/ca-certificates/work/yourfile.crt .
Xaqiiji in ruqsadaha si sax ah loo dhigay (755 khidmadda iyo 644 faylka).
Ku bilaw Amarka Soodhawrka-taariikhda cusub .

Firefox iyo Thunderbird

Haddii feylka PEM uu u baahan yahay in laga keeno macaamiisha emailka Mozilla sida Thunderbird, waxaa laga yaabaa inaad marka hore soo dhoofiso Foomka PEM ee ka baxsan Firefox. Furo menu Firefox dooro doorasho . U tag Hore> Shahaadooyinka> Shahaadooyinka Aqoonsiga> Shahaadooyinkaaga iyo xulo midka aad u baahan tahay inaad dhoofiso, ka dibna dooro Taageero ....

Kadibna, Thunderbird, furo menu iyo guji ama kudhow Fursadaha . Hagaajinta Hore> Shahaadooyinka> Maamulida Shahaadooyinka> Shahaadooyinkaaga> Alaabta .... Laga soo bilaabo "Faylka Faylka:" qaybta daaqada dibadda , dooro shahaadada Shahaadada oo laga soo dejiyo hoosta, ka dibna raadso oo fur feylka PEM.

Si aad u soo rogto feylka PEM ee Firefox, adoo raacaya tallaabooyin aad doonaysid inaad soo dhoofiso hal, laakiin dooran karto Alaabta ... halkii Booska ....

Java KeyStore

U fiirso nambarka xajinta wareejinta ee ku saabsan soo rogista feylka PEM ee Java KeyStore (JKS) haddii aad u baahan tahay inaad sidaas samayso. Xul kale oo laga yaabo inay shaqeyn karto waa in la isticmaalo qalabkan furaha.

Sida loo Beddelayo Foomka PEM

Si ka duwan qaabab badan oo faylasha ah oo loo rogi karo qalab wax lagu beddelayo ama shabakad , waxaad u baahan tahay inaad geliso amarrooyin gaar ah oo ka dhan ah barnaamij gaar ah si aad ugu beddesho habka qaabka PEM qaabab kale oo badan.

Ku beddel PEM si PPK leh PuTTYGen. Dooro Load ka mid ah dhinaca midig ee barnaamijka, dhig nooca faylka inuu noqdo faylal (*. *), Ka dibna raadi oo fur feylkaaga PEM. Xulo keyda gaarka ah si aad u sameysato faylka PPK.

Iyada oo OpenSSL (hesho version Windows ah halkan), waxaad u rogi kartaa Foomka PEM si PFX iyada oo raacaya amarka soo socda:

openssl pkcs12 -inkey yourfile.pem -in yourfile.cert -xport -out yourfile.pfx

Haddii aad haysato faylka PEM oo u baahan in loo beddelo CRT, sida kiiska Ubuntu, u adeegso amarka OpenSSL:

openssl x509 -in yourfile.pem -shiiri PEM-aad yourfile.crt

OpenSSL sidoo kale waxay taageertaa isbedelka .PEM ilaa .1212 (PKCS # 12, ama Istaandarada Aqoonsiga Dadweynaha ee Heerka # 12), laakiin ku darso faylka ".TXT" dhammaadka faylka kahor intaadan amar qaadin:

openssl pkcs12 -export -inkey yourfile.pem.txt -in yourfile.pem.txt -out yourfile.p12

Fiiri xiriirka Stack Overflow ee ku saabsan isticmaalka faylka PEM oo leh Java KeyStore haddii aad rabto inaad u rogto faylka JKS, ama casharadan ka timid Oracle si loo soo rogo feylka kuxirta Java truststore.

Macluumaad Dheeraad ah oo ku saabsan PEM

Macluumaadka ku xirnaanshaha xogta ee Nidaamka Shahaadada Aqoonsiga ee Waxtarka Gaarka ah wuxuu u adeegsadaa RSA-MD2 iyo farriimaha farriimaha RSA- MD5 si loo barbardhigo fariin ka hor iyo ka dib markii loo diro, si loo hubiyo in aan lagu xadin jidka.

Bilawga feylka PEM waa madax ka akhriya ----- BEGIN [calaamad] ----- , dhammaadka xogta waa mid isku mid ah sidan oo kale: ----- DHAMMAAN [calaamad] - ----. Qeybta "[label]" waxay qeexaysaa farriinta, sidaas darteed waxaa laga yaabaa inay akhriso PRIVATE KEYTAN, CODSIGA SHAHAADO, ama CERT .

Tusaale ahaan waa tusaale:

----- BILAABIN KEY GAARKA ----- MIICdgIBADANBgkqhkiG9w0BAQEFAASCAmAwggJcAgEAAoGBAMLgD0kAKDb5cFyP jbwNfR5CtewdXC + kMXAWD8DLxiTTvhMW7qVnlwOm36mZlszHKvsRf05lT4pegiFM 9z2j1OlaN + ci / X7NU22TNN6crYSiN77FjYJP464j876ndSxyD + rzys386T + 1r1aZ aggEdkj1TsSsv1zWIYKlPIjlvhuxAgMBAAECgYA0aH + T2Vf3WOPv8KdkcJg6gCRe yJKXOWgWRcicx / CUzOEsTxmFIDPLxqAWA3k7v0B + 3vjGw5Y9lycV / 5XqXNoQI14j y09iNsumds13u5AKkGdTJnZhQ7UKdoVHfuP44ZdOv / rJ5 / VD6F4zWywpe90pcbK + AWDVtusgGQBSieEl1QJBAOyVrUG5l2yoUBtd2zr / kiGm / DYyXlIthQO / A3 / LngDW 5 / ydGxVsT7lAVOgCsoT + 0L4efTh90PjzW8LPQrPBWVMCQQDS3h / FtYYd5lfz + FNL 9CEe1F1w9l8P749uNUD0g317zv1tatIqVCsQWHfVHNdVvfQ + vSFw38OORO00Xqs9 1GJrAkBkoXXEkxCZoy4PteheO / 8IWWLGGr6L7di6MzFl1lIqwT6D8L9oaV2vynFT DnKop0pa09Unhjyw57KMNmSE2SUJAkEArloTEzpgRmCq4IK2 / NpCeGdHS5uqRlbh 1VIa / xGps7EWQl5Mn8swQDel / YP3WGHTjfx7pgSegQfkyaRtGpZ9OQJAa9Vumj8m JAAtI0Bnga8hgQx7BhTQY4CadDxyiRGOGYhwUzYVCqkb2sbVRH9HnwUaJT7cWBY3 RnJdHOMXWem7 / w == ----- END KEY GAARKA -----

Mid ka mid ah feylka PEM wuxuu ku jiri karaa shahaadooyin badan, taas oo ah "END" iyo "BEGIN" qaybta deriska ah.

Wargelintaadu weli ma furan tahay?

Hal sabab oo feylkaaga uusan u furan siyaabaha lagu sifeeyey kor ku xusan waa in aadan dhab ahaantii wax ka qaban feylka PEM. Waxaa laga yaabaa inaad haysatid feyl oo keliya oo isticmaala faylka la midka ah ee faylka loo qoray. Marka ay taasi dhacdo, ma jiraan wax lagama maarmaanka u ah labada fayl oo la xidhiidha ama ay la shaqeeyaan barnaamijyo isku mid ah.

Tusaale ahaan, PEF waxay u egtahay mid aad u xun sida PEM, laakiin waxay noqoneysaa mid ka mid ah qaabka feylka Pentax Raw Image ama qaabka loo yaqaan "Embosser Formable". Raac jumladdan si aad u aragto sida loo furo ama loo rogo faylasha PEF, haddii taasi waa waxa aad dhab ahaantii haysato.

Haddii aad la macaamilayso faylka KEY, ogsoonow in dhammaan feylka ku dhammaada .KEY ku yaal qaabka lagu sharraxay boggan. Waxay noqon karaan halkan faylasha Macaamiisha Key Lacageed loo isticmaalo marka la diiwaangelinayo barnaamijyada barnaamijyada sida LightWave, ama faylasha Keynote ee ay sameeyeen Apple Keynote.

Haddii aad hubto inaad haysatid faylka PEM laakiin aad dhib kuhesho furitaanka ama isticmaalayso, ka eeg aragti Caawinaad dheeraad ah ee macluumaadka ku saabsan aniga oo la xiriiraya shabakadaha bulshada ama email ahaan, dhajinta kulliyada taageerada tiknoolajiyada, iyo in ka badan. Ogow nooca dhibaatooyinka aad haysato oo aan arko wixii aan ku caawin lahaa.

Sidee loo furaa PEM Files?

Sida loo Beddelayo Foomka PEM

Macluumaad Dheeraad ah oo ku saabsan PEM

Wargelintaadu weli ma furan tahay?

Alike posts

See Newest

Sapid posts