From owner-freebsd-questions@FreeBSD.ORG Wed May 14 05:51:57 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7705C37B401 for ; Wed, 14 May 2003 05:51:57 -0700 (PDT) Received: from mail.cordis.lu (mail.cordis.lu [212.190.217.57]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2F17043FA3 for ; Wed, 14 May 2003 05:51:56 -0700 (PDT) (envelope-from a.carter@cordis.lu) Received: from mailsvr.intrasoft.lu (mail.intrasoft.lu [212.190.217.251]) by mail.cordis.lu (8.12.8/8.12.8) with ESMTP id h4ED6Nku016030; Wed, 14 May 2003 15:06:23 +0200 Received: by mail.intrasoft.lu with Internet Mail Service (5.5.2656.59) id ; Wed, 14 May 2003 14:47:57 +0200 Received: from 212.190.217.170 ([212.190.217.170]) by mailsvr.intrasoft.lu with SMTP (Microsoft Exchange Internet Mail Service Version 5.5.2656.59) id JS23DFSZ; Wed, 14 May 2003 14:47:51 +0200 From: CARTER Anthony To: Ivan Ivanov Organization: Intrasoft Date: Wed, 14 May 2003 14:52:46 +0200 User-Agent: KMail/1.5.1 References: <200305141158.h4EBwwf20743@lev.labs.trema.com> In-Reply-To: <200305141158.h4EBwwf20743@lev.labs.trema.com> MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200305141452.46265.a.carter@intrasoft.lu> X-Spam-Status: No, hits=-131.9 required=4.2 tests=EMAIL_ATTRIBUTION,IN_REP_TO,QUOTED_EMAIL_TEXT,REFERENCES, REPLY_WITH_QUOTES,USER_AGENT_KMAIL,USER_IN_WHITELIST version=2.53 X-Spam-Checker-Version: SpamAssassin 2.53 (1.174.2.15-2003-03-30-exp) cc: freebsd-questions@freebsd.org Subject: Re: Openssl... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 14 May 2003 12:51:57 -0000 What did you do once you made the cacert.pem (in step 2 of the link you gave me)? Step 3 uses keytool which I presume is a redhat thing... I am still lost... Anthony On Wednesday 14 May 2003 13:58, you wrote: > CA.pl should create a file ./demoCA/private/cakey.pem > this key is used by CA.pl -sign. > However if you cannot find the problem by looking at CA.pl or CA.sh > you can always use alternative solution to launch openssl > directly. > Sth like openssl ca -in clientapp.crs -out clientapp.pem -keyfile ca.key > Where keyfile is "ca.key" , in your case it would point to your ./demoCA/ > private/cakey is it gets created at all. > I used the information on this page: > http://www.churchillobjects.com/c/11201g.html to create my test > certificates and had no problem. Using CA.pl it did not work for me for > some reason (my stupidity probably) Cheers, > Ivan