@ecrist ecrist released this Sep 15, 2018 · 2 commits to v3.0.5 since this release

Assets 6

3.0.5 (2018-09-15)

  • Fix #17 & #58: use AES256 for CA key
  • Also, don't use read -s, use stty -echo
  • Fix broken "nopass" option
  • Add -r to read to stop errors reported by shellcheck (and to behave)
  • remove overzealous quotes around $pkcs_opts (more SC errors)
  • Support for LibreSSL (now works on latest version of MacOS)
  • EasyRSA version will be reported in certificate comments
  • Client certificates now expire in 3 year (1080 days) by default

@ecrist ecrist released this Jan 21, 2018

Assets 6

* Remove use of egrep (#154)
* Integrate with Travis-CI (#165)
* Remove "local" from variable assignment (#165)
* Other changes related to Travis-CI fixes
* Assign values to variables defined previously w/local
* Finally(?) fix the subjectAltName issues I presented earlier (really
fixes #168

@ecrist ecrist released this Aug 22, 2017 · 119 commits to master since this release

Assets 6

Minor update that includes the mktemp Windows binary.

@ecrist ecrist released this Aug 21, 2017 · 181 commits to v3.0.6 since this release

Assets 6

Add missing Windows binaries and publish release.

@ecrist ecrist released this Oct 26, 2015 · 140 commits to master since this release

Assets 6

This release addresses some packaging and documentation issues. With 3.0.0, the binaries needed to run EasyRSA on Windows were missing. Additionally, the documentation was released in a format that wasn't easily readable on that platform (markdown).

Please find updated Unix and Windows packages attached. There are NO functionality changes in this release.

@ecrist ecrist released this Sep 3, 2015 · 142 commits to master since this release

Assets 6

This is the official Easy-RSA 3.0 release. The changes between rc2 and this release are relatively minor. The notable changes are:

  • -utf8 is now the default. This shouldn't break ASCII but will now support international character strings.
  • The private keys are now encrypted with aes256 by default, replacing the former default, 3des
Sep 3, 2015

@QueuingKoala QueuingKoala released this Jul 27, 2014 · 162 commits to master since this release

Assets 6

rc2 is the second pre-release in the 3.0 series. A number of fixes have been made; see the ChangeLog for full detials.

Open issues preventing a production-ready release are noted in the KNOWN_ISSUES file.

Notable fixes since 3.0.0-rc1 include:

  • Fixed support for OpenSSL 0.9.8
  • PKCS#7 support
  • Support to change private key passphrases
  • Other assorted fixes and doc updates

@QueuingKoala QueuingKoala released this Dec 1, 2013

Assets 6

This is the first release in the 3.x series. This "rc1" release is a release candidate; provided there are no notable issues to be fixed, this release is slated to become the official 3.0.0 release. If changes are deemed necessary they will be made, possibly with further rc-releases.

The following Feature Highlights are taken from the EasyRSA-Readme document:

  • Easy-RSA is able to manage multiple PKIs, each with their own independent
    configuration, storage directory, and X.509 extension handling.
  • Multiple Subject Name (X.509 DN field) formatting options are supported. For
    VPNs, this means a cleaner commonName only setup can be used.
  • A single backend is used across all supported platforms, ensuring that no
    platform is 'left out' of the rich features. Unix-alikes (BSD, Linux, etc)
    and Windows are all supported.
  • Easy-RSA's X.509 support includes CRL, CDP, keyUsage/eKu attributes, and
    additional features. The included support can be changed or extended as an
    advanced feature.
  • Interactive and automated (batch) modes of operation
  • Flexible configuration: features can be enabled through command-line
    options, environment variables, a config file, or a combination of these.
  • Built-in defaults allow Easy-RSA to be used without first editing a config

@ecrist ecrist released this Nov 11, 2013 · 6 commits to release/2.x since this release

Assets 6

Repackage with a minor CA commit. NOTE: 2.2.1 was released as empty zip files. No use with that!

*** The 2.2.2 original windows builds have been removed as they were missing the openssl configuration files. A new 2.2.2-1 windows build has been published below. ***

This is primarily a maintenance release in preparation of a 2.x branch and the introduction of a 3.x codebase. In addition, there are now two distinct release files, one bundles for Windows and the other bundled for *nix OSes.

  • Change key size from 1024 to 2048 bits
  • code styling changes (whitespace/tabbing,heredocs)
  • minor changes to the Makefile