-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hello,
I've got problems to use certificates to connect to my TELNET secure
server.
I'd like to be able to connect via TELNET to my host without login
neither password. I've created my own CA (running CA.sh script) and
I've made a new signed cert (CA.sh -newreq and CA.sh -sign).
On users home directory I've copied the signed cert
($HOME/newcert.pem).
On server's side I've copied cacert.pem (CA's certificate) in
/usr/local/ssl/certs and I've hashed it.
I've configured inetd.conf with:
telnetd -z certrequired -z certsok -z verify=2 (or 3, it depends)
I run to connect to my host the SSL-MZtelnet like:
telnet -z cert=$HOME/newcert.pem 0
The problem is that I've got this error message:
Error loadig /home/user/newcert.pem:641:error:0906D06C:PEM
routines:PEM_readbio :no start line:pem_lib.c:628
641:error:140CB009:SSL routines:SSL_use_RSAPrivateKey_file:missing
asn1 eos:SSL_rsa.c:330:do_ssleay_init() failed
1. How can I try to verify my user's cert in order to test that it's
well signed?
2. What Am I doing wrong?
3. Can anyone explain me how i can configure server and use client to
do a connection without supply any password?
Please I've red a lot, but I can't do it work...
Thanks for advance...
Paco
-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 5.5.3i for non-commercial use <http://www.pgpi.com>
iQA/AwUBNuzIQ5nrIbaIrtsjEQIkbACgix9AMz1kCL/QxLuCMu3LHtFqHRUAnRZJ
jowoI4IOMSfGYtV/qkz3dabJ
=FZ2A
-----END PGP SIGNATURE-----
------------------------------------------------------------
| O O O Paco Orozco (Serveis Informātics EUPBL) |
| O O O ICQ#: 14366596 |
| O O O Telf. +34 3 401 59 22; Fax +34 3 401 59 10 |
| U P C Universitat Politecnica de Catalunya |
------------------------------------------------------------
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
