Hi Julio, On Thu, Sep 11, 2008 at 11:11:00AM -0300, Julio Cesar Gazquez wrote: > > Are those accessible by the user running openxpkid? Are they the > > ones referenced in token.xml? > > Well, they didn't :-( Permissions under /etc/openxpki were root:root and > below > certain level they didn't include "others". I just chowned the whole branch > to the openxpki user, and it "almost" worked. > > Now, it gives I18N_OPENXPKI_CRYPTO_CLI_EXECUTE_CHILD_ERROR. > > I managed to pick the command, and I found it didn't provide either a > different openssl.cnf or -key and -cert parameters, so openssl ends looking > for a wrong CA key and certificate.
I believe this is done via the OPENSSL_CONFIG environment variable, so this may be correct. Can you upload your stderr.log somewhere so that I can have a look at it? Cheers, Alex -- Dipl.-Math. Alexander Klink | IT-Security Engineer | [EMAIL PROTECTED] mobile: +49 (0)178 2121703 | Cynops GmbH | http://www.cynops.de ----------------------------+----------------------+--------------------- HRB 7833, Amtsgericht | USt-Id: DE 213094986 | Geschäftsführer: Bad Homburg v. d. Höhe | | Martin Bartosch
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
_______________________________________________ OpenXPKI-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openxpki-users
