Ferianto siregar wrote:

Dear all,

Thank you very much for your time. All, I read from tls.html (www.openser.org http://www.openser.org) that for making good certificate, we must add rootCA to calist file by using:

cat add_cacert.pem >> calist.pem

1.When I try to run it, I got error message. It can not execute? Why?

It says :"There is no command add_cacert.pem"

Of course there is no command - it is a parameter for the "cat" command.

You have to add all CA certificates the calist.pem (or whatever file you choose with the tls_ca_list="/mycerts/certs/ca_list.pem" directive.

You can either use do it like you said, or you can open the file in a text editor and append the new CA cert to the existing CA certs.

Does that command just make new file named "calist.pem"? (There is no difference between cacert.pem)

2. I compile TLS with openssl.0.9.7a. The openssl-0.9.7.a packet, I

got when installing Redhat. But, How can I know that TLS that I have build using openssl or ssl (for security) version? or How can we run openssl or ssl?

$ ldd /usr/sbin/openser libdl.so.2 => /lib/tls/libdl.so.2 (0xb7f47000) libresolv.so.2 => /lib/tls/libresolv.so.2 (0xb7f34000) libssl.so.0.9.7 => /usr/lib/i686/cmov/libssl.so.0.9.7 (0xb7f03000) libcrypto.so.0.9.7 => /usr/lib/i686/cmov/libcrypto.so.0.9.7 (0xb7e04000) libc.so.6 => /lib/tls/libc.so.6 (0xb7ccf000) /lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0xb7f52000)

I do hope anybody can help me. Please..Thank you very much.

Regards,

Ferianto

---

Stay in the know. Pulse on the new Yahoo.com. Check it out. http://us.rd.yahoo.com/evt=42974/*http://www.yahoo.com/preview

---

---

Users mailing list Users@openser.org http://openser.org/cgi-bin/mailman/listinfo/users