It can't find the .pem file. You've got it in the wrong place (i.e. not where ssl is looking for it).
There's some stuff in docs/FAQ - check in the source. You can also find a fairly recent copy at http://www.ntopsupport.com in the documentation section. -----Burton -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Romulus Hossu Sent: Wednesday, March 05, 2003 12:26 PM To: [EMAIL PROTECTED] Subject: [Ntop] HTTPS or SSL problem...Need help! (additional info.) Hello! I already post a message on this list, but unfortunately I forgot to specify we words about my platform, so I post the message again. Sorry for that... The ntop is v2.1.3-0 on linux RH 7.3, kernel 2.4.18-3 I want to use the ntop on the https port 3001, but after starting from console, the program return a SSL error (see the output attached on the bottom of this message) and not working on the specified port. The ntop was started with the following command: ntop -w 0 -W 3001 -P /usr/share/ntop/ -u ntop -E The ntop-cert.pem key was generated with: openssl req -new -key privkey.pem -out ntop-cert.pem What am I doing wrong? The output of the program: Wait please: ntop is coming up... 05/Mar/2003 19:45:16 Initializing IP services... 05/Mar/2003 19:45:16 Initializing SSL... 05/Mar/2003 19:45:16 SSL(ssl_init-use_cert)ERROR [Thread 25652]: error:0200100E:system library:fopen:Bad address at bss_file.c(245) fopen('','r') 05/Mar/2003 19:45:16 SSL(ssl_init-use_cert)ERROR [Thread 25652]: error:20074002:BIO routines:FILE_CTRL:system lib at bss_file.c(247) 05/Mar/2003 19:45:16 SSL(ssl_init-use_cert)ERROR [Thread 25652]: error:0906D06C:PEM routines:PEM_read_bio:no start line at pem_lib.c(662) 05/Mar/2003 19:45:16 SSL(ssl_init-use_cert)ERROR [Thread 25652]: error:140AD009:SSL routines:SSL_CTX_use_certificate_file:missing asn1 eos at ssl_rsa.c(534) 05/Mar/2003 19:45:16 Initializing GDBM... 05/Mar/2003 19:45:16 Initializing network devices... 05/Mar/2003 19:45:16 ntop v.2.1.3 SourceForge rpm MT (SSL) [i686-pc-linux-gnu] (09/20/02 02:05:03 PM build) 05/Mar/2003 19:45:16 Listening on [eth0] 05/Mar/2003 19:45:16 Copyright 1998-2002 by Luca Deri <[EMAIL PROTECTED]> 05/Mar/2003 19:45:16 Get the freshest ntop from http://www.ntop.org/ 05/Mar/2003 19:45:16 Initializing... 05/Mar/2003 19:45:16 Truncated network size to 1024 hosts (real netmask 255.255.255.0) 05/Mar/2003 19:45:16 Loading plugins (if any)... 05/Mar/2003 19:45:16 Searching plugins in /usr/lib/ntop/plugins 05/Mar/2003 19:45:16 Welcome to LastSeenWatchPlugin. (C) 1999 by Andrea Marangoni. 05/Mar/2003 19:45:16 Welcome to icmpWatchPlugin. (C) 1999 by Luca Deri. 05/Mar/2003 19:45:16 Welcome to NetFlow. (C) 2002 by Luca Deri. 05/Mar/2003 19:45:16 Welcome to nfsWatchPlugin. (C) 1999 by Luca Deri. 05/Mar/2003 19:45:16 Welcome to PDAPlugin. (C) 2001-2002 by L.Deri and W.Brock 05/Mar/2003 19:45:16 Welcome to sFlowPlugin. (C) 2002 by Luca Deri. 05/Mar/2003 19:45:16 Resetting traffic statistics... 05/Mar/2003 19:45:16 Started thread (1026) for lsof support. 05/Mar/2003 19:45:16 Started thread (2051) for network packet analyser. 05/Mar/2003 19:45:16 Wait please: reading lsof information... 05/Mar/2003 19:45:16 Started thread (3076) for idle hosts detection. 05/Mar/2003 19:45:16 Started thread (4101) for DNS address resolution. 05/Mar/2003 19:45:16 Started thread (5126) for address purge. 05/Mar/2003 19:45:16 Initializing plugins (if any)... 05/Mar/2003 19:45:16 NetFlow export disabled 05/Mar/2003 19:45:16 Waiting for HTTP connections on port 3000... 05/Mar/2003 19:45:16 Started thread (6151) for web server. 05/Mar/2003 19:45:16 Sniffying... 05/Mar/2003 19:45:16 Started thread (7176) for network packet sniffing on eth0. 05/Mar/2003 19:45:16 readLsofInfo completed (0 sec). 05/Mar/2003 19:45:17 ntop caught signal 2 05/Mar/2003 19:45:17 Cleaning up... 05/Mar/2003 19:45:17 Waiting until threads terminate... 05/Mar/2003 19:45:17 Terminating Web connections... 05/Mar/2003 19:45:20 Freeing hash host instances... (1 device(s) to save) 05/Mar/2003 19:45:20 4 instances freed 05/Mar/2003 19:45:20 Unloading plugins (if any)... 05/Mar/2003 19:45:20 Thanks for using PDAWatch... 05/Mar/2003 19:45:20 Done. 05/Mar/2003 19:45:20 Thanks for using ntop NetFlow 05/Mar/2003 19:45:20 Done. 05/Mar/2003 19:45:20 Thanks for using icmpWatch... 05/Mar/2003 19:45:20 Done. 05/Mar/2003 19:45:20 Cisco NetFlow exporter terminated. 05/Mar/2003 19:45:20 Freeing device eth0 (idx=0)... 05/Mar/2003 19:45:20 4 packets received by filter on eth0 05/Mar/2003 19:45:20 0 packets dropped by kernel 05/Mar/2003 19:45:20 0 packets dropped by ntop Thanks for your help.... See ya! _______________________________________________ Ntop mailing list [EMAIL PROTECTED] http://listgateway.unipi.it/mailman/listinfo/ntop _______________________________________________ Ntop mailing list [EMAIL PROTECTED] http://listgateway.unipi.it/mailman/listinfo/ntop
