[cvsnt] Re: :sserver: on Linux
Tony Hoyle
tmh at nodomain.org
Thu Mar 25 23:14:35 GMT 2004
torsten at tiscali.dk wrote:
> Tony Hoyle wrote:
>
>
>>>Torsten Martinsen wrote:
>>>
>>>
>>>>You're probably missing the certificates from the setup. You also
>>>>need the ca.pem certificate file on the client of course.
>>>
>>>
>>>Any pointers to doc as how to do this?
>>>
>>
>>ca.pem is installed by the installer unless you told it not to. The setup
>
> is
>
>>standard openssl public/private key files... on Windows of course there's
>>the control panel to do that. On Linux it's just generic system admin
>>stuff, you generate a selfsign certificate using ca.pl, then point the
>>config file to it.
>>See http://www.mkssoftware.com/docs/man1/openssl_CA.pl.1.asp
>
>
> I generated a certificate using 'CA.pl -newcert' and copied the newreq.pem
> file to /etc/cvsnt.
That'll create an encrypted certificate, which won't work.
You need to do:
CA.pl -newreq-nodes
CA.pl -sign
Then paste the private key from newreq.pem into newcert.pem, and use that.
Tony
More information about the cvsnt
mailing list