Right but the puppet SSL directory is almost certainly not where your ssl library defaults to looking for the ca cert hashes.
-=Eric On Feb 12, 2013, at 4:20 PM, Alex Harvey <[email protected]> wrote: > > > On Wednesday, February 13, 2013 10:27:58 AM UTC+11, Daniel Pittman wrote: >> >> `openssl c_rehash` should do the trick. > > As I say I don't seem to have that - > > # openssl c_rehash > openssl:Error: 'c_rehash' is an invalid command. > ... > > From googling e.g. > http://www.monkey.org/openbsd/archive/misc/0106/msg00829.html > > it appears to be an automatic way of doing the workaround documented in > http://projects.puppetlabs.com/issues/9084 > > Okay, I found a copy of the script on another box - > > # ./c_rehash /var/lib/puppet/ssl/certs > Doing /var/lib/puppet/ssl/certs > ca.pem => 014d6fa7.0 > myhost.pem => cba4454a.0 > mymaster.mydomain.com.pem => 217efc16.0 > > And there is no apparent change to the behaviour after doing this. > -- > You received this message because you are subscribed to the Google Groups > "Puppet Developers" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at http://groups.google.com/group/puppet-dev?hl=en. > For more options, visit https://groups.google.com/groups/opt_out. > > -- You received this message because you are subscribed to the Google Groups "Puppet Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/puppet-dev?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
