{
    "mode": "man",
    "parameter": "make-ssl-cert",
    "section": "8",
    "url": "https://www.chedong.com/phpMan.php/man/make-ssl-cert/8/json",
    "generated": "2026-06-02T23:27:00Z",
    "synopsis": "make-ssl-cert [OPTION]... template output-certificate\nmake-ssl-cert [OPTION]... generate-default-snakeoil",
    "sections": {
        "NAME": {
            "content": "make-ssl-cert - Debconf wrapper for openssl\n",
            "subsections": []
        },
        "SYNOPSIS": {
            "content": "make-ssl-cert [OPTION]... template output-certificate\nmake-ssl-cert [OPTION]... generate-default-snakeoil\n",
            "subsections": []
        },
        "DESCRIPTION": {
            "content": "make-ssl-cert  is a simple debconf to openssl wrapper to create self-signed certificates.  It\nrequires a source template (Ex: /usr/share/ssl-cert/ssleay.cnf) and it  will  place  the  new\ngenerated certificate in the specified output file.\nInvoked   with   \"generate-default-snakeoil\",   it   will  generate  /etc/ssl/certs/ssl-cert-\nsnakeoil.pem and /etc/ssl/private/ssl-cert-snakeoil.key.\n",
            "subsections": []
        },
        "OPTIONS": {
            "content": "A summary of options are included below.\n",
            "subsections": [
                {
                    "name": "--force-overwrite",
                    "content": "Always create a new certificate, even if the file already exists.  For backwards  com‐\npatibility with 1.0.x, this option can be given as last argument, too.\n",
                    "long": "--force-overwrite"
                },
                {
                    "name": "--no-overwrite",
                    "content": "Never  overwrite  an  existing  file,  even if the old certificate's key length is too\nsmall or if it uses an obsoltete signature algorithm.\n\n--expiration-days N\nMake the new certificate expire in N days.  Default is 3650.\n",
                    "long": "--no-overwrite"
                }
            ]
        },
        "SEE ALSO": {
            "content": "openssl(1)\n",
            "subsections": []
        },
        "AUTHOR": {
            "content": "The program author is Thom May <thom@debian.org>, manual page was written for completeness by\nFabio  M.  Di Nitto <fabbione@fabbione.net>, for the Debian GNU/Linux system (but may be used\nby others).\n\n\n\nmake-ssl-cert(8)",
            "subsections": []
        }
    },
    "summary": "make-ssl-cert - Debconf wrapper for openssl",
    "flags": [
        {
            "flag": "",
            "long": "--force-overwrite",
            "arg": null,
            "description": "Always create a new certificate, even if the file already exists. For backwards com‐ patibility with 1.0.x, this option can be given as last argument, too."
        },
        {
            "flag": "",
            "long": "--no-overwrite",
            "arg": null,
            "description": "Never overwrite an existing file, even if the old certificate's key length is too small or if it uses an obsoltete signature algorithm. --expiration-days N Make the new certificate expire in N days. Default is 3650."
        }
    ],
    "examples": [],
    "see_also": [
        {
            "name": "openssl",
            "section": "1",
            "url": "https://www.chedong.com/phpMan.php/man/openssl/1/json"
        }
    ]
}