On Mon, Jan 06, 2003 at 05:42:56AM +0000, Joel Ebrahimi wrote: > I added a fullcopy of the std,cnf > from the /tmp/nessus/ directory.
I didn't see anything obviously wrong with the configuration file.
Could you do the following:
o Run "hostname" and report its output.
o Run "echo $LANG" and report its output.
o As root, take the configuration file you had attached earlier and
put it into a scratch directory. Generate a private RSA key
using the command "openssl genrsa -out cakey.pem 1024". Now,
attempt to generate a certificate request by running "openssl req
-config ssl.cnf -new -x509 -days 365 -key cakey.pem -out
cacert.pem". You'll be prompted for several fields; enter them
by hand as follows:
.
.
Paris
Nessus Users United
Certification Authority for ${hostname}
${hostname}
ca@${hostname}
Note: replace "${hostname}" with your hostname. Do you get any errors?
o If the previous command worked, make a copy of the nessus-mkcert script
and add the following lines:
organizationalUnitName_min = 10
organizationalUnitName_max = 64
Do this immediately following the line that reads:
organizationalUnitName = Organizational Unit Name (eg, section)
[With nessus 1.2.7, that's line 259.] Now run the modified script
and use the defaults. There should still be errors, but there should
also be some additional ones - what are they?
> Also I have been looking over the source code where the error is occuring.
> I can actaully comment out the check thats causing the error and force
> nessus to continue but I am not sure if this will screw everything up.
It will.
George
--
[EMAIL PROTECTED]
msg03219/pgp00000.pgp
Description: PGP signature
