thanks all. i ended up just dumping the server and rebuilding. time constraints; sorry.
thanks again, dean -----Original Message----- From: George Theall [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 26, 2003 10:20 AM To: Bishop, Dean Cc: '[EMAIL PROTECTED]' Subject: Re: error: invalid server certificate. On Tue, Mar 25, 2003 at 12:20:20PM -0500, Bishop, Dean wrote: > i am trying to put together a very simple web front end to initiate preset > scans. i have it working on a Redhat 7.3 box and am trying to get it going > on a Redhat 8.0 box but keep getting this error in /var/log/hppd/error_log > > nessus : Invalid server certificate > > It is clear that this is a permissions problem (the scan works fine from > the command line as root) but i just cannot figure out what permission is > missing. ... > what does this error indicate? It indicates that the server's certificate is either unknown or changed compared to your list of stored certificates (~/.nessusrc.cert) or that OpenSSL failed to validate it. [This behaviour is controlled by the setting paranoia_level in your nessusrc; see nessus-core/README_SSL for details.] To avoid this problem, either set paranoia_level to 2 or ensure your web server (or whatever id the CGI scripts run as) access to a file called .nessusrc.cert in its home directory with the server's hashed cert. George -- [EMAIL PROTECTED]
