I switched back from cacert to startssl certificate. but that doesn't changed anything. fedone starts well, but couldn't federate with the wavesandbox.
so i started to validate every installation step. checked openfire settings and so on. i recognized a small difference in your installation guide: http://wavingtheshiny.collaborynth.com.au/books/fedone-book/install-and-setup-openfire can you check your openfire security settings ? Ralf's blog post reads: " /In /Server Settings > Security Settings > Server Connection Security /select /Custom/ and make sure that /Available /is active for /Server Dialback/ and /Optional /is selected for /TLS method/. Also check /Accept self-signed certificates./ Hit /Save Settings/. Note: The radio button might jump back to /Optional/. Don't worry. This is ok./" In my openfire security settings "TLS method" was set to "Not available". since i switched to "optional" and restarted openfire I can talk to the wavesandbox back and forth. -- Ingo Am 05.11.09 22:49, schrieb James Purser: > On Thu, 2009-11-05 at 08:03 -0800, Tad Glines wrote: > >> I used there commands to try and verify that the cert and key are matched: >> echo "This is a test file"> test.txt >> openssl rsautl -encrypt -certin -inkey wave_cert.cert -in test.txt -out >> test.enc >> openssl rsautl -decrypt -inkey wave_cert.key -in test.enc -out test.dec >> >> Ths encrypt operation succeeds. >> The decrypt operation fails with this error: >> RSA operation error >> 4408:error:0406506C:rsa routines:RSA_EAY_PRIVATE_DECRYPT:data greater >> than mod len:.\crypto\rsa\rsa_eay.c:506: >> >> I used the same commands to verify my key pair and they tested ok. >> >> My conclusion is that your cert doesn't match your private key. >> > Hi Tad, > > Yeah I figured my key/cert was bad, so I've generated a new key/cert > pair which validates both using your method and the method suggested on > the Google Certificates page. > > Now I seem to be getting into a cert submission/request loop with the > sandbox and am still unable to talk to other servers. > > Sigh, I'm thinking that barn raising might be about my skillset right > now. > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Wave Protocol" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/wave-protocol?hl=en -~----------~----~----~----~------~----~------~--~---
