RE: Total newbie Question
> Hi folks, > > I am new to openssl and I am trying to use a Thawte key with Mutt > but I keep > getting this error message: > > Verification failure > 8458:error:21075075:PKCS7 routines:PKCS7_verify:certificate verify > error:pk7_smime.c:222:Verify error:unable to get local issuer certificate > > > I have searched on Google, but the answers seem to be above my knowledge > level :) > > Is there a simple cure to this. > > Sean You need to configure Mutt to trust the certificate that signed the certificate for the key you want to use. Otherwise, OpenSSL has no way to know that the key should be trusted. DS smime.p7s Description: S/MIME cryptographic signature
Re: Total newbie Question
Hi David! On Sat, 12 Feb 2005, David Schwartz wrote: > > > Hi folks, > > > > I am new to openssl and I am trying to use a Thawte key with Mutt > > but I keep > > getting this error message: > > > > Verification failure > > 8458:error:21075075:PKCS7 routines:PKCS7_verify:certificate verify > > error:pk7_smime.c:222:Verify error:unable to get local issuer > certificate > > > > > > I have searched on Google, but the answers seem to be above my knowledge > > level :) > > > > Is there a simple cure to this. > > > > Sean > > You need to configure Mutt to trust the certificate that signed the > certificate for the key you want to use. Otherwise, OpenSSL has no way to > know that the key should be trusted. > Okay I will search for info on that, this seems to be right way Sean smime.p7s Description: S/MIME cryptographic signature
Re: Total newbie Question
Which operating system are you using?
[Unable to display image]If we have sent you this message in error, please accept
ourapologies. You can be removed from our mailing list by replying to this
emailaddress with the words 'REMOVE'This message is intended only for
the use of the person(s) ("Theintended recipient(s)") to whom it is
addressed). It may contain information,which is privileged and confidential
within the meaning of applicable law.If you are not the intended recipient,
please contact the sender as soon aspossible.The views expressed in this
communication may not necessarily be the views held by Midistrator
Technologies (UK) Ltd.CONFIDENTIALITY NOTICE: This
email and any attachments are sent in confidence, and for the exclusive use of
the addressee(s), and on the basis that the recipient will conduct appropriate
virus checks. If you receive this email in error, please telephone us upon
receipt: and delete the email: you are strictly prohibited from using, copying
or disclosing any information contained in it, save to the intended
recipient. Internet communications and e-mails are not secure and we are
not responsible for their abuse by third parties, nor for any alteration or
corruption in transmission, nor for any damage or loss caused by any virus or
other defect.
<>
Re: Total newbie Question
Hi COMPSUPPLIER! On Sun, 13 Feb 2005, [EMAIL PROTECTED] wrote: > Which operating system are you using? > > I use SuSE Linux 9.2 Sean __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: Total newbie Question
I had a similar problem and within YAST checking thru the etc/sysconfig
files you have to ensure the Letters SSL are in place you can view and example
from within your usr/share/doc/packages
I suggest you check the example pages as I am not in front of our servers
at present If needed I can collate the info and tell you tomorrow if you need
further assistance
Midistrator Technologies Limited
[Unable to display image]If we have sent you this message in error, please accept
ourapologies. You can be removed from our mailing list by replying to this
emailaddress with the words 'REMOVE'This message is intended only for
the use of the person(s) ("Theintended recipient(s)") to whom it is
addressed). It may contain information,which is privileged and confidential
within the meaning of applicable law.If you are not the intended recipient,
please contact the sender as soon aspossible.The views expressed in this
communication may not necessarily be the views held by Midistrator
Technologies (UK) Ltd.CONFIDENTIALITY NOTICE: This
email and any attachments are sent in confidence, and for the exclusive use of
the addressee(s), and on the basis that the recipient will conduct appropriate
virus checks. If you receive this email in error, please telephone us upon
receipt: and delete the email: you are strictly prohibited from using, copying
or disclosing any information contained in it, save to the intended
recipient. Internet communications and e-mails are not secure and we are
not responsible for their abuse by third parties, nor for any alteration or
corruption in transmission, nor for any damage or loss caused by any virus or
other defect.
<>
Re: Total newbie Question
Hi COMPSUPPLIER! On Sun, 13 Feb 2005, [EMAIL PROTECTED] wrote: > I had a similar problem and within YAST checking thru the etc/sysconfig > files you have to ensure the Letters SSL are in place you can view and > example > from within your usr/share/doc/packages > > I suggest you check the example pages as I am not in front of our servers at > present If needed I can collate the info and tell you tomorrow if you need > further assistance > Umm just did a search in /etc/sysconfig and the only mention is to Postfix which I removed in favour of exim. Sean smime.p7s Description: S/MIME cryptographic signature
Re: Total newbie Question
Can I email you tomorrow
I had the same problem your experiencing Until I put in the letters SSL i
got the same error on SuSe 9 pro
I managed then to set up our site here http://www.mtlgroup.co.uk/shop1/index.php
Also where have you put your private.key, myserver.key you CA.txt the
yourdomain.csr
regards
Midistrator Technologies Limited
[Unable to display image]If we have sent you this message in error, please accept
ourapologies. You can be removed from our mailing list by replying to this
emailaddress with the words 'REMOVE'This message is intended only for
the use of the person(s) ("Theintended recipient(s)") to whom it is
addressed). It may contain information,which is privileged and confidential
within the meaning of applicable law.If you are not the intended recipient,
please contact the sender as soon aspossible.The views expressed in this
communication may not necessarily be the views held by Midistrator
Technologies (UK) Ltd.CONFIDENTIALITY NOTICE: This
email and any attachments are sent in confidence, and for the exclusive use of
the addressee(s), and on the basis that the recipient will conduct appropriate
virus checks. If you receive this email in error, please telephone us upon
receipt: and delete the email: you are strictly prohibited from using, copying
or disclosing any information contained in it, save to the intended
recipient. Internet communications and e-mails are not secure and we are
not responsible for their abuse by third parties, nor for any alteration or
corruption in transmission, nor for any damage or loss caused by any virus or
other defect.
<>
Re: Total newbie Question
Hi COMPSUPPLIER! On Sun, 13 Feb 2005, [EMAIL PROTECTED] wrote: > Can I email you tomorrow > I had the same problem your experiencing Until I put in the letters SSL i > got the same error on SuSe 9 pro > I managed then to set up our site here > _http://www.mtlgroup.co.uk/shop1/index.php_ > (http://www.mtlgroup.co.uk/shop1/index.php) > Also where have you put your private.key, myserver.key you CA.txt the > yourdomain.csr > > I imported the key from Opera, well exported it, them inported it. I have not used a self made key, would that be the problem, just a thawte key. I have just downloaded their root keys Sean __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: Total newbie Question
you need a private.key and a myserver.key and you will have a server.csr
and yourdomain.csr
you will also need your THAWTE CA.txt which is signed version of
yourdomain.csr,but this needs to match with your private.key which in turn is
linked to yourserver.key
you would need links in your VHost SSL
to point to locations within the SuSe system
What Apache are you running?
Are your Httpd files in Etc/Apache2
or usr/local/apache2
Regards
Midistrator Technologies Limited
[Unable to display image]If we have sent you this message in error, please accept
ourapologies. You can be removed from our mailing list by replying to this
emailaddress with the words 'REMOVE'This message is intended only for
the use of the person(s) ("Theintended recipient(s)") to whom it is
addressed). It may contain information,which is privileged and confidential
within the meaning of applicable law.If you are not the intended recipient,
please contact the sender as soon aspossible.The views expressed in this
communication may not necessarily be the views held by Midistrator
Technologies (UK) Ltd.CONFIDENTIALITY NOTICE: This
email and any attachments are sent in confidence, and for the exclusive use of
the addressee(s), and on the basis that the recipient will conduct appropriate
virus checks. If you receive this email in error, please telephone us upon
receipt: and delete the email: you are strictly prohibited from using, copying
or disclosing any information contained in it, save to the intended
recipient. Internet communications and e-mails are not secure and we are
not responsible for their abuse by third parties, nor for any alteration or
corruption in transmission, nor for any damage or loss caused by any virus or
other defect.
<>
Re: Total newbie Question
Hi COMPSUPPLIER! On Sun, 13 Feb 2005, [EMAIL PROTECTED] wrote: > you need a private.key and a myserver.key and you will have a server.csr and > yourdomain.csr > > you will also need your THAWTE CA.txt which is signed version of > yourdomain.csr,but this needs to match with your private.key which in turn is > linked to > yourserver.key > > you would need links in your VHost SSL > to point to locations within the SuSe system > > What Apache are you running? > > Are your Httpd files in Etc/Apache2 > or usr/local/apache2 > I am currently only using it for email purposes and maybe then will play a bit more Sean __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
Re: Total newbie Question
Hi OpenSSL! On Sun, 13 Feb 2005, Sean Rima wrote: > Hi COMPSUPPLIER! > > On Sun, 13 Feb 2005, [EMAIL PROTECTED] wrote: > > > you need a private.key and a myserver.key and you will have a server.csr > > and > > yourdomain.csr > > > > you will also need your THAWTE CA.txt which is signed version of > > yourdomain.csr,but this needs to match with your private.key which in turn > > is linked to > > yourserver.key > > > > you would need links in your VHost SSL > > to point to locations within the SuSe system > > > > What Apache are you running? > > > > Are your Httpd files in Etc/Apache2 > > or usr/local/apache2 > > > > I am currently only using it for email purposes and maybe then will play a > bit more > Just sorted the problem, I exported the Thawte Personal Email key from Opera and imported it and it works :) Sean smime.p7s Description: S/MIME cryptographic signature
