Thanks a lot, Gus. I just want to underline the fact that it would be great if someone can make SSL support available by ./configure for Redhat systems.
I tried to use a test certificate from OpenSSL (Snake Oil ) (I haven't bought one for the moment). I put the certificate and the RSA private key in the 'ssl-certkey-file'. Now, if I try to send a SMS with https://localhost:13013/cgi-bin/sendsms?user=xxx&pass=xxx&to=xxx&text=test, the browser is undefinitely trying to open the page and in the logs, I only have : 2001-09-27 20:53:22 [2] DEBUG: HTTP: Creating HTTPClient for `myclientIP. 2001-09-27 20:53:22 [1] DEBUG: HTTP: Destroying HTTPClient area 0x812cf78. 2001-09-27 20:53:22 [1] DEBUG: HTTP: Destroying HTTPClient for `myclientIP. 2001-09-27 20:53:22 [2] DEBUG: HTTP: Creating HTTPClient for `myclientIP. BTW, I tested https URL for sms-services and it works ! Any idea about that problem ? Thanks in advance for your help. Gildas. > -----Message d'origine----- > De : [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]De la part de Gus > Envoy� : lundi 17 septembre 2001 11:03 > � : Devel@Kannel > Objet : RE: SSL isn't detected with --enable-ssl (last CVS version) on > Redhat 6.2 > > > On Fri, 14 Sep 2001, Gildas PERROT wrote: > > > Thanks a lot Gus for your help about that. I was wondering if > there could be > > a better way to make openssl working with Redhat automatically without > > having to modify Makefile after each new ./configure : > > Well, everyone is using 0.9.6 becase there is a flaw in the random number > generator of previous releases, but being a beta, symbols will/may be > moving around in the library so it's unwise to make and rely on a dynamic > library. > > You'd honestly be easier just adding the LIBS and CLFAGS bits in yourself, > IMO. > > > Furthermore, could someone answer to those questions : > > > > - with --enable-ssl, can Kannel be used as a HTTPs client (for > example for > > sms-services) ? > > Yes, it does that. > > > > - I found the 'ssl-certkey-file' variable. This variable is the > path to a > > file. At the doc I found that this file must to contain a PEM > encoded ssl > > certificate and a private key, but this is the only information > there is at > > doc. > > It's a fairly standard procedure, you'd do the same thing if you were > getting a certificate for a web server. I would imageine you'll be wanting > to use OpenSSL to generate your csr/cert + key though, rather than be > getting a commercial one at this stage. > > Have a read though http://www.linuxdoc.org/HOWTO/SSL-RedHat-HOWTO-3.html > for more info. > > > > I need to know which type of certificate I can use > > X.509, thats what virtually everyone uses. > > > > which format of private key I have to use and how to match them into > > the same file. > > You can use any type of privkey that OpenSSL supports, but most people go > for 1024 bit RSA keys. The 'in the same file' is as easy as putting both > blocks of text in the same file with vi(1) or similar. > > Regards, > _Gus > > > > > -- > - [EMAIL PROTECTED] - > = Zygo Communications, London UK = > -= 82 AA 4D 7F D8 45 58 05 6D 1B 1A 72 1E DB 31 B5 =- > Gunboat Diplomat > > >
