Am 20.05.2012 16:38, schrieb Andres Riancho:
> Achim, Taras,
...
>> openssl uses CA from directory ssl/certs, which depends on the system
>> you started openssl (most likely /etc/ssl/certs on *ix)
>> you may try
>> openssl ca
>> to get an idea
>>
>> Note that you OS may do house keeping for these CAs, hence some may
>> miss or some are there even if revoked.
>
> Without knowing much about what "openssl ca" does, I run it and got errors:
>
> dz0@dz0-laptop:~$ openssl ca
> Using configuration from /usr/lib/ssl/openssl.cnf
> Error opening CA private key ./demoCA/private/cakey.pem
> 3769:error:02001002:system library:fopen:No such file or
> directory:bss_file.c:356:fopen('./demoCA/private/cakey.pem','r')
> 3769:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:358:
> unable to load CA private key
> unable to write 'random state'
> dz0@dz0-laptop:~$
>
> Looks like my default ubuntu configuration did not like that command.
> Based on our discussion thread I was expecting it to return a list of
> all trusted CA's, shouldn't it do that Achim?
Andrés,
my "openssl ca" was just to give you what you got: the hints about its
configuration ;-) all the errors are ok.
ls /usr/lib/ssl/certs is what you need, but that depends on the
system you use (on Linux it's a symlink to /etc/ssl/cert)
Achim
------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and
threat landscape has changed and how IT managers can respond. Discussions
will include endpoint security, mobile security and the latest in malware
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
W3af-develop mailing list
W3af-develop@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/w3af-develop
