> -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On > Behalf Of Juan Andres Campanini > Sent: 29 December 2004 16:45 > To: [email protected] > Subject: RE: Errors in the initialization of EAP/PEAP with > freeradius (URGENT HELPPP!!) > > yep...I know...and it's clear that the error is related with > the certificates, but I can't get rid of it. I'v tried > different versions of opeenssl, different versions of > freeradius, different procedures, but nothing... > No one had the same error?
ok, as I showed bad ettique last time by re-posting the whole message + top posting, I'll try to be good this time :P You said you tried different versions of openSSL.. are you sure.. I have numerous problems when I update openSSL .. by default when you link against it, the linker first looks in /lib (which on many distros, have a libcrypto and or libssl there...) then /usr/lib (usual place for openssl) and then finally /usr/local/lib... it's very very easy to configure/build against conflicting installs of openSSL.. a good example of this is Apache and or PHP.. both are kind of weak (ironically) when it comes to using openSSL in a specified location (can set -with-ssl= but it still prefers default if it exists) ... so if you are trying with 'other versions of openssl' ensure that... /usr/lib/libcrypto* /usr/lib/libssl* /usr/include/openssl* /lib/libcrypto* /lib/libssl* all point to 'the right version' ... if you've rebuilt freeradius you can use ldd to check which ssl library freeradius has built against, and then check to see if that library is in fact the correct one.. there is a tool in the contrib directory of openssh (note openssh not openssl!) called findssl.sh ... which is very good for checking ssl sanity.. hope this helps a little :P - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
