Charles on Wed 13/11 15:17 -0600: > I got redhat 8.0 now. Unfortunately for the new redhat the openssl > is still version 0.9.6b.
yes I found that disappointing too, but well, it *is* still in beta... > I had to upgrade it to the newest openssl. I > tried both openca-0.8.1 and openca-0.9.0(the file is > openca-0.9.0-2.tar.gz) but both failed to install. I think the latest is 0.9.1RC7...I'm a new user so I don't know too much about the changes since then but this stuff is obviously not yet at release quality, you should probably be current... > What should I do to get the RA(or ext as is called in the > openca-0.9.0) installed correctly? personally I made a copy of my build environment under a subdirectory of the filesystem, removed all openssl and openldap libraries from it, chrooted to that directory, then rebuilt openssl to produce a static library and statically linked openssl binary only. I then used this environment to link a new Apache2, OpenLDAP, and OpenCA build. This way I was able to install them in the real root of the filesystem and not have library conflicts since they were statically linked to the 0.9.7-beta3 library from the chroot environment. Then I renamed the new openssl binary so it would not name-collide with the old one, and configured the various *.conf files to use it instead. It's a real shame to have to do all that but I found it necessary. I think the new openssl has the same soname version so I don't think there is any way for the shared libraries to co-exist, but I might be wrong. Probably 0.9.7 will be released soon, they have been developing it for a while. Probably RH8.1 will link their binaries to this instead so we won't have to worry about it at that point. There's a lot of needed changes in 0.9.7 especially with automatic CSR checking and the ASN code which really should be present in openssl-using applications anyways, IMO. ------------------------------------------------------- This sf.net email is sponsored by: Are you worried about your web server security? Click here for a FREE Thawte Apache SSL Guide and answer your Apache SSL security needs: http://www.gothawte.com/rd523.html _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
