Forum: The Gate BBS

Reusing Let's Encrypt Certificate and Key

From Amessyroom@1:103/705 to All on Sunday, August 04, 2024 14:14:25

I have certificates working with synchronet, but
was wondering if there is away to export the
generated cert and key to PEM format;
so other tools on same server could use them.

ctrl/ss.cert
ctrl/letsencrypt.key

---
� Synchronet � Too Lazy BBS - toolazy.synchro.net:2323
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

From echicken@1:103/705 to Amessyroom on Sunday, August 04, 2024 16:43:52

Re: Reusing Let's Encrypt Certificate and Key
By: Amessyroom to All on Sun Aug 04 2024 14:14:25

I have certificates working with synchronet, but was wondering if there is away to export the generated cert and key to PEM format;
so other tools on same server could use them.

ctrl/ss.cert
ctrl/letsencrypt.key

I think the only existing method is to export pkcs12:

jsexec certtool.js --export-pkcs12 /path/to/exported.p12

You would then need to use some other tool to go to PEM:

openssl pkcs12 -in /path/to/exported.p12 -out my.crt.pem -clcerts -nokeys openssl pkcs12 -in /path/to/exported.p12 -out my.key.pem -nocerts -nodes

It's possible that the whole thing could be done in JS but I'd really need to dig through the crypto stuff to say and it's not my strong suit.

You can also go the other way and manage your cert(s) outside of Synchronet. When I do this, I use nginx as a reverse proxy in front of my BBS (and other web servers), and whatever the usual Let's Encrypt tools are (certbot? can't remember).

echicken
electronic chicken bbs - bbs.electronicchicken.com
---
� Synchronet � electronic chicken bbs - bbs.electronicchicken.com
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

From Amessyroom@1:103/705 to echicken on Sunday, August 04, 2024 23:20:37

Re: Reusing Let's Encrypt Certificate and Key
By: Amessyroom to All on Sun Aug 04 2024 14:14:25

I think the only existing method is to export pkcs12:

jsexec certtool.js --export-pkcs12 /path/to/exported.p12

You would then need to use some other tool to go to PEM:

openssl pkcs12 -in /path/to/exported.p12 -out my.crt.pem -clcerts -nokeys openssl pkcs12 -in /path/to/exported.p12 -out my.key.pem -nocerts -nodes

This worked. Thanks.

---
￭ Synchronet ￭ Too Lazy BBS - toolazy.synchro.net:2323
* Origin: Vertrauen - [vert/cvs/bbs].synchro.net (1:103/705)

Who's Online
Recent Visitors
- Dr. What
  Friday, January 23, 2026 06:49:27
  from Rockford, MI via Telnet
- Jas Hud
  Friday, January 23, 2026 06:06:12
  from Los Angeles, CA via Telnet
- Jas Hud
  Friday, January 23, 2026 04:27:02
  from Los Angeles, CA via Telnet
- Jas Hud
  Friday, January 23, 2026 04:26:44
  from Los Angeles, CA via Telnet
- Jas Hud
  Friday, January 23, 2026 04:17:05
  from Los Angeles, CA via Telnet

System Info

Sysop:	Gate Keeper
Location:	Shelby, NC
Users:	820
Nodes:	20 (0 / 20)
Uptime:	177:36:30
Calls:	13,718
Calls today:	5
Files:	5,294
D/L today:	3 files (104K bytes)
Messages:	621,890