Buffalo Dickens schrieb:
Dear Ted, yes, I found that too. It just looks for *.pem files. I just used the c_rehash from the source code package of openssl-0.9.8e. Isit feasible for me to just rename file.crt to file.pem?
openssl usually does not rely on filenames or extensions, with only a few exceptions (I guess you already found most of them). So you can just rename your *.crt-files to *.pem.
Note beside: Some people use the extension "*.crt" for DER encoded data (a binary file format) and "*.pem" for PEM encoded data (an ASCII file format). To change the encoding it would be necessary to use the "openssl x509" tool. But since your files work with "openssl verify" as you described, they obviously are already PEM encoded.
OK, then it may help to understand how openssl handles certificates, expecially if CoSign uses openssl (I don't know that software). Something that just jumps to my mind: maybe that software expects DER encoded certificates?Or is there an appropriate and graceful method for this transformation? Oh, I just want to deploy a software called CoSign for my websites. But I kept coming across problems with certificates.
Ted ;) -- PGP Public Key Information Download complete Key from http://www.convey.de/ted/tedkey_convey.asc Key fingerprint = 31B0 E029 BCF9 6605 DAC1 B2E1 0CC8 70F4 7AFB 8D26
smime.p7s
Description: S/MIME Cryptographic Signature
