On Fri, Aug 22, 2003, Nick Gray wrote: > Prior to version 0.96 I didn't have a problem with OpenSSL at all. Today > I built a new system and tried to use it with the following results. > > root:/usr/local/openssl# cd misc > root:/usr/local/openssl/misc# ls > CA.pl CA.sh c_hash c_info c_issuer c_name der_chop > root:/usr/local/openssl/misc# ./CA.pl -newca > CA certificate filename (or enter to create) > > > Making CA certificate ... > root:/usr/local/openssl/misc# ls > CA.pl CA.sh c_hash c_info c_issuer c_name demoCA der_chop > root:/usr/local/openssl/misc# cd demoCA > root:/usr/local/openssl/misc/demoCA# ls > certs crl index.txt newcerts private serial > root:/usr/local/openssl/misc/demoCA# ls * > index.txt serial > > > > certs: > > crl: > > newcerts: > > private: > root:/usr/local/openssl/misc/demoCA# > > Problem is, it didn't actually do anything. It created the DemoCA as > shown above, but there is nothing really in it. This is a LFS system > with nothing except the basics. > > What in the world am I overlooking here??? In the past I have shown > people how this works. Now it doesn't seem to work the way I remember. >
Try deleting the demoCA tree and doing CA.pl -newca again. Also check openssl.cnf is somewhere usable or OPENSSL_CONF points to it or the req command will give an error when creating the CA certificate. Steve. -- Dr Stephen N. Henson. Core developer of the OpenSSL project: http://www.openssl.org/ Freelance consultant see: http://www.drh-consultancy.demon.co.uk/ Email: [EMAIL PROTECTED], PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
