On Tue, Mar 25, 2003 at 12:20:20PM -0500, Bishop, Dean wrote: > i am trying to put together a very simple web front end to initiate preset > scans. i have it working on a Redhat 7.3 box and am trying to get it going > on a Redhat 8.0 box but keep getting this error in /var/log/hppd/error_log > > nessus : Invalid server certificate > > It is clear that this is a permissions problem (the scan works fine from > the command line as root) but i just cannot figure out what permission is > missing. ... > what does this error indicate?
It indicates that the server's certificate is either unknown or changed compared to your list of stored certificates (~/.nessusrc.cert) or that OpenSSL failed to validate it. [This behaviour is controlled by the setting paranoia_level in your nessusrc; see nessus-core/README_SSL for details.] To avoid this problem, either set paranoia_level to 2 or ensure your web server (or whatever id the CGI scripts run as) access to a file called .nessusrc.cert in its home directory with the server's hashed cert. George -- [EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
