On Fri, Oct 04, 2002, Berg, Chris wrote: > Hello. > > I am attempting to generate a certificate to be used to secure imap > traffic between clients and the server. > I have followed the certificate authority's instructions and received a > certificate. > > The problem is that I generated the private key with the command: > openssl genrsa -des3 -rand [randfiles] 1024 > keyfile.priv > > but the imap server software requires the private key to be unencrypted > (I should not have used the -des3 option). > > when I attempt to decrypt the private key with the command: > openssl des3 -in keyfile.priv -out keyfile.priv.dec -d -k [passwd] > > I get the error: > > bad magic number > > presumably because the string Salted__ does not appear in the file > keyfile.priv. > I have also used the option -nosalt with no luck. The error there is: > > 15739:error:0606506D:digital envelope routines:EVP_DecryptFinal:wrong > final block length:evp_enc.c:268: > > the top three lines of the file are: > > -----BEGIN RSA PRIVATE KEY----- > Proc-Type: 4,ENCRYPTED > DEK-Info: DES-EDE3-CBC,[16digit number] > > if that makes a difference. > > I am using openssl version 0.9.6g Aug 2002 > > Can anyone help me decrypt this file? I do not want to generate a new key > since I have already paid for the certificate. >
Read the FAQ. Steve. -- Dr. Stephen Henson [EMAIL PROTECTED] OpenSSL Project http://www.openssl.org/~steve/ ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
