[Openca-Users] browsers, syslog and certificate retrieval

[Maximilian.Schmidt]

Hi,

here some questions I stumbled over the last hours ...
1. (Browser - Firefox)
When I´m using Firefox (Windows/Linux) instead of IE, I cannot retrieve 
my certificate using "Install the Certificate". Why?

2. (Certificate retrieval)
If I request a certificate for my browser using
[pub] User -> Request a certificate
        -> Request a certificate with automatic browserdetection
        or
        -> Internet Explorer Request
I´ll end up with a certificate that can be installed with that "Install 
the Certificate" link, or be downloaded as PEM,CER,CRT,DER,TXT.
If I request a certificate for my browser using
[pub] User -> Request a certificate
        -> Basic request
I´ll end up with a certificate AND a keypair that I can download. Why do 
those methods differ?
Well, when I then want to download such a keypair (pkcs12), I´ll get a 
page where I must enter the passphrase to the private key. Once I´ve 
entered it (the right one of course), I get another page saying: 
"Passphrase protected content" and "The requested content is protected 
by a passphrase. Please enter the passphrase to access the content." - 
whatever I enter here isn´t accepted and I get a "Error 700 
  General Error Permission denied. Wrong Passphrase." I´m sure that 
this was working some time before - any idea what could be wrong?

3. (Syslog)
Sometimes I get this in my stderr.log:

OpenCA::Logger::Syslog::Sys: Using syslog priority CRIT because no level 
was specified.
PKI Master Alert: Logging error
PKI Master Alert: Aborting all operations
PKI Master Alert: Error:   64510030
PKI Master Alert: Message: addMessage failed for log slot sys_syslog 
(6511070). Cannot write to syslogdevice.
PKI Master Alert: debugging messages of logging follow
OpenCA: General error trapped 6273166: Login failed. at 
/usr/share/perl5/OpenCA/UI/HTML.pm line 179.
Compilation failed in require at /etc/openca/openca_start line 64.

but in my log.xml the entry for syslog looks like this:

....
<slot>
 <name>sys_syslog</name>
 <class>*</class>
 <level>*</level>
 <logger>Syslog</logger>
 <type>Sys</type>
 <prefix>OpenCA PKI Log Message</prefix>
 <facility>local6</facility>
 <!-- socket type for Sys::Syslog -->
 <socket_type>unix</socket_type>
</slot>
....

syslog is started and listening - "logger -p local6.info Test" is giving 
the correct output in my logs ... Any ideas?

Thanks in advance,
Maximilian Schmidt


-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems?  Stop!  Download the new AJAX search engine that makes
searching your log files as easy as surfing the  web.  DOWNLOAD SPLUNK!
http://sel.as-us.falkag.net/sel?cmd=lnk&kid3432&bid#0486&dat1642
_______________________________________________
Openca-Users mailing list
Openca-Users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openca-users