openvpn?
Shawn
sgill at metrocast.net
Thu Jan 20 18:11:06 PST 2005
I have been attempting to get open vpn working on my freebsd 4.11 Alpha
machine. SO Far I have done the following..
I did the make install for /usr/ports/security/openvpn/
Where is uses SSL Im trying to understand the config file for
/etc/ssl/openssl.cnf After an attempted figure change I try to generate
the keys..
I create a master certificate authority certificate/private-key
*openssl req -nodes -new -x509 -keyout shawng-ca.key -out shawng-ca.crt
-days 3650*
Then create certificate/private-key pairs for both Home and Office:
*openssl req -nodes -new -keyout office.key -out office.csr
*
Then this gives me a hard time..
*openssl ca -out office.crt -in office.csr
*
# openssl ca -out office.crt -in office.csr
--> /This screams config file to me --> /Using configuration from
/etc/ssl/openssl.cnf
Error opening CA private key ./demoCA/private/cakey.pem
63975:error:0E06D06C:configuration file routines:NCONF_get_string:no
value:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/conf/conf_lib.c:329:group=CA_default
name=unique_subject
63975:error:02001002:system library:fopen:No such file or
directory:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:276:fopen('./demoCA/private/cakey.pem','r')
63975:error:20074002:BIO routines:FILE_CTRL:system
lib:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/bss_file.c:278:
unable to load CA private key
Segmentation fault (core dumped)
Im just having troubles understanding whats what in the config file ..
More information about the freebsd-questions
mailing list