Hello, > > server167# openssl base64 -d -in mrtablecloth-vi.com.crt | openssl x509 > -inform der > mrtablecloth-vi.com.crt.pem > > Clean, no complaints :) > However... > > server167# /usr/local/sbin/lighttpd -f > /usr/ports/www/lighttpd/doc/lighttpd.conf > 2006-11-14 14:56:44: (network.c.377) SSL: Private key does not match the > certificate public key, reason: error:0906D06C:PEM > routines:PEM_read_bio:no start line > /etc/ssl/certs/mrtablecloth-vi.com.crt.pem Because mrtablecloth-vi.com.crt.pem contains only certificate. When you use ">" file is overwritten.
Use something like: $ openssl base64 -d -in private.key_BAK | openssl rsa -inform der > mrtablecloth-vi.com.crt $ openssl base64 -d -in mrtablecloth-vi.com.crt | openssl x509 -inform der >> mrtablecloth-vi.com.crt.pem And then use this file as argument to ssl.pemfile directive. But ssl.ca-file directive should contain file with (probably) Verisign temporary CA certificate (not certificates above). Best regards, -- Marek Marcola <[EMAIL PROTECTED]> ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
