On Wed, Dec 17, 2003 at 09:47:40AM +0000, Mark Watts wrote: > Ok, I decided that I'd separate the keys/certs... > > I created /var/lib/nessus/CA and put the serverkey.pem and cakey.pem files > into it, changing /etc/nessus/nessus.conf to reflect this. > > On running nessus-mkcert-client, it then complains that: > > /var/lib/nessus/CA/cacert.pem: not found or not a file
Let me guess... $sharedstatedir in nessus-mkcert-client is defined as "/var/lib" too. Change it to "/etc". > Which is mighty odd, since nessus.conf is explicitly saying where that should > be: > > cert_file = /etc/nessus/CA/servercert.pem > key_file = /var/lib/nessus/CA/serverkey.pem > ca_file = /etc/nessus/CA/cacert.pem Actually, the settings are embedded in the script rather than read from the server; nessus-core/configure should take care of setting them appropriate when building from source. George -- [EMAIL PROTECTED]
pgp00000.pgp
Description: PGP signature
_______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
