Forum: The Gate BBS

Reusing Let's Encrypt Certificate and Key

From Amessyroom@1:103/705 to All on Sunday, August 04, 2024 14:14:25

I have certificates working with synchronet, but
was wondering if there is away to export the
generated cert and key to PEM format;
so other tools on same server could use them.

ctrl/ss.cert
ctrl/letsencrypt.key

---
� Synchronet � Too Lazy BBS - toolazy.synchro.net:2323
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

From echicken@1:103/705 to Amessyroom on Sunday, August 04, 2024 16:43:52

Re: Reusing Let's Encrypt Certificate and Key
By: Amessyroom to All on Sun Aug 04 2024 14:14:25

I have certificates working with synchronet, but was wondering if there is away to export the generated cert and key to PEM format;
so other tools on same server could use them.

ctrl/ss.cert
ctrl/letsencrypt.key

I think the only existing method is to export pkcs12:

jsexec certtool.js --export-pkcs12 /path/to/exported.p12

You would then need to use some other tool to go to PEM:

openssl pkcs12 -in /path/to/exported.p12 -out my.crt.pem -clcerts -nokeys openssl pkcs12 -in /path/to/exported.p12 -out my.key.pem -nocerts -nodes

It's possible that the whole thing could be done in JS but I'd really need to dig through the crypto stuff to say and it's not my strong suit.

You can also go the other way and manage your cert(s) outside of Synchronet. When I do this, I use nginx as a reverse proxy in front of my BBS (and other web servers), and whatever the usual Let's Encrypt tools are (certbot? can't remember).

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

From Amessyroom@1:103/705 to echicken on Sunday, August 04, 2024 23:20:37

Re: Reusing Let's Encrypt Certificate and Key
By: Amessyroom to All on Sun Aug 04 2024 14:14:25

I think the only existing method is to export pkcs12:

jsexec certtool.js --export-pkcs12 /path/to/exported.p12

You would then need to use some other tool to go to PEM:

openssl pkcs12 -in /path/to/exported.p12 -out my.crt.pem -clcerts -nokeys openssl pkcs12 -in /path/to/exported.p12 -out my.key.pem -nocerts -nodes

This worked. Thanks.

---
￭ Synchronet ￭ Too Lazy BBS - toolazy.synchro.net:2323
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Who's Online
Recent Visitors
- John F Kennedy
  Saturday, March 14, 2026 10:35:50
  from Quebec, Canada via Telnet
- Dell Man
  Saturday, March 14, 2026 10:01:19
  from Los Angeles, CA via Telnet
- Boxoskulz
  Saturday, March 14, 2026 09:35:06
  from Glendale, AZ via Telnet
- Greg Meckel
  Saturday, March 14, 2026 08:22:30
  from Anchorage, AK via Telnet
- Dr. What
  Saturday, March 14, 2026 07:59:05
  from Rockford, MI via Telnet

System Info

Sysop:	Gate Keeper
Location:	Shelby, NC
Users:	831
Nodes:	20 (0 / 20)
Uptime:	203:40:58
Calls:	14,143
Calls today:	5
Files:	5,294
D/L today:	81 files (34,312K bytes)
Messages:	635,147