openvpn?
Jason Henson
jason at ec.rr.com
Thu Jan 20 20:34:21 PST 2005
On 01/20/05 21:11:10, Shawn wrote:
> I have been attempting to get open vpn working on my freebsd 4.11
> Alpha machine. SO Far I have done the following..
>
> I did the make install for /usr/ports/security/openvpn/
>
> Where is uses SSL Im trying to understand the config file for /etc/
> ssl/openssl.cnf After an attempted figure change I try to generate
> the keys..
>
> I create a master certificate authority certificate/private-key
>
> *openssl req -nodes -new -x509 -keyout shawng-ca.key -out shawng-
> ca.crt -days 3650*
>
> Then create certificate/private-key pairs for both Home and Office:
>
> *openssl req -nodes -new -keyout office.key -out office.csr
>
> *
>
> Then this gives me a hard time..
>
> *openssl ca -out office.crt -in office.csr
>
> *
>
> # openssl ca -out office.crt -in office.csr
> --> /This screams config file to me --> /Using configuration from /
> etc/ssl/openssl.cnf
> Error opening CA private key ./demoCA/private/cakey.pem
> 63975:error:0E06D06C:configuration file routines:NCONF_get_string:no
> value:/usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/
> conf/conf_lib.c:329:group=CA_default name=unique_subject
> 63975:error:02001002:system library:fopen:No such file or directory:/
> usr/src/secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/
> bss_file.c:276:fopen('./demoCA/private/cakey.pem','r')
> 63975:error:20074002:BIO routines:FILE_CTRL:system lib:/usr/src/
> secure/lib/libcrypto/../../../crypto/openssl/crypto/bio/
> bss_file.c:278:
> unable to load CA private key
> Segmentation fault (core dumped)
>
The core dump is very bad and should not happen, I would suggest you
update your base system if there is a bug in there.
For an easy openssl walk through checkout
http://www.freebsdaddicts.com/forum/viewtopic.php?id=268
More information about the freebsd-questions
mailing list