On Sat, Apr 21, 2007 at 06:17:04AM -0400, Pete Morris wrote: > On Sat, Apr 21, 2007 at 06:28:22PM +0900, Richard Gananathan wrote:
> > I started a thread on the bbs, > http://bbs.archlinux.org/viewtopic.php?id=32049 but have gotten no > responses, so I'm also interested in a solution. Here's my page which tells you how to generate the certs--however, it doesn't go through the whole procedure, since, as I said, I didn't take it that far. http://www.scottro.net/qnd/qnd-gmail.html In a nutshell, generate your key and self signed cert openssl genrsa -out privekey.pem 2048 openssl req -new -x509 -key privkey.pem -out cacert.pem -days 1095 I found I had to put the lines tls_cert_file /usr/home/scottro/cacert.pem tls_trust_file /usr/home/scottro/cacert.pem tls_key_file /usr/home/scottro/privekey.pem Then, the error I got was that it was unable to check the server's certficate which is when I googled a bit more, found out I'd probably have to download the VeriSign stuff and said the heck with it. If I left out the trust file, I'd get an error--these are complete paths but on a FreeBSD, not an Arch box, so for Arch users you would leave out the /usr part. -- Scott Robbins PGP keyID EB3467D6 ( 1B48 077D 66F6 9DB0 FDC2 A409 FA54 EB34 67D6 ) gpg --keyserver pgp.mit.edu --recv-keys EB3467D6 Anya: You know, you can laugh, but I have witnessed a millennium of treachery and oppression from the males of the species, and I have nothing but contempt for the whole libidinous lot of them. Xander: Then why are you talking to me? Anya: I don't have a date for the prom. _______________________________________________ arch mailing list [email protected] http://archlinux.org/mailman/listinfo/arch
