or 'present' the
client cert now...
Client key AND cert. See my reply 03-29 21:56.
- Original Message -
From: David Patricola david.patric...@jefferson.edu
To: openssl-users@openssl.org
Sent: Wednesday, March 30, 2011 9:32:36 AM
snip: Java keytool -importcert
Do the other two stay in the same folder as root.crt, but only root.crt
actually gets installed in the cacerts file?
-Original Message-
From: Tomas Gustavsson [mailto:to...@primekey.se]
Sent: Wednesday, March 30, 2011 3:49 AM
To: openssl-users@openssl.org
Cc: David Patricola
Subject: Re
. This would not make sense.
Lou Picciano
- Original Message -
From: David Patricola david.patric...@jefferson.edu
To: Tomas Gustavsson to...@primekey.se, openssl-users@openssl.org
Sent: Wednesday, March 30, 2011 8:43:38 AM
Subject: RE: Truststore or Cacerts file?
Do the other two stay
appear to be installing your 'user' cert (postgresql.crt) into the
CAcerts store. This would not make sense.
Lou Picciano
- Original Message -
From: David Patricola david.patric...@jefferson.edu
To: Tomas Gustavsson to...@primekey.se, openssl-users@openssl.org
Sent: Wednesday, March 30
-
From: David Patricola david.patric...@jefferson.edu
To: openssl-users@openssl.org
Sent: Wednesday, March 30, 2011 9:32:36 AM
Subject: RE: Truststore or Cacerts file?
Ok, I've modified my import as follows: E:\JRun4\jre\binkeytool -importcert
-alias dca -file E:\Jrun4\jre\lib\security\root.crt
they go into the default cacerts file or create a
truststore?
David Patricola | Senior Cold Fusion Developer | Web Applications Services
| Jefferson Information Technologies
Thomas Jefferson Universtiy | Philadelphia, PA | 215.503.1715 (Office)
by the same root certificate. There are a few
permutations in there, to be thought about.
What you would _not_ be doing is using the same key(s) and cert(s) on both
server and client(s).
Did not see you at PG East last week?
Lou Picciano
- Original Message -
From: David Patricola
-
From: David Patricola david.patric...@jefferson.edu
To: openssl-users@openssl.org
Sent: Monday, January 31, 2011 4:31:08 PM
Subject: FW: First time attempting PostgreSQL SSL
Whoops, I forgot to include root.crt in the Postgre /data directory. Now
that I fixed that, I am still getting the same
[mailto:loupicci...@comcast.net]
Sent: Tuesday, February 01, 2011 9:36 AM
To: David Patricola
Cc: openssl-users@openssl.org
Subject: Re: First time attempting PostgreSQL SSL
David,
My server pg_hba.conf file already has the following to connect to the
client:
hostsslall all
I found an excellent tutorial on this:
http://www.howtoforge.com/postgresql-ssl-certificates
I followed the instructions perfectly, and used my client computer's IP
address as the CA. Here's my setup so far:
On the server:
- In Postgre data/ I have the server.crt and server.key files
Whoops, I forgot to include root.crt in the Postgre /data directory. Now
that I fixed that, I am still getting the same connection error on the
client side.
-Original Message-
From: David Patricola [mailto:david.patric...@jefferson.edu]
Sent: Monday, January 31, 2011 4:10 PM
know what to change in the PostgreSQL config but do not know if
PostgreSQL implicitly knows that a certificate exists, and what the client
box should have.
David Patricola | Senior Cold Fusion Developer | Web Applications Services
| Jefferson Information Technologies
Thomas Jefferson
12 matches
Mail list logo