RE: Truststore or Cacerts file?

or 'present' the client cert now... Client key AND cert. See my reply 03-29 21:56. - Original Message - From: David Patricola david.patric...@jefferson.edu To: openssl-users@openssl.org Sent: Wednesday, March 30, 2011 9:32:36 AM snip: Java keytool -importcert

RE: Truststore or Cacerts file?

Do the other two stay in the same folder as root.crt, but only root.crt actually gets installed in the cacerts file? -Original Message- From: Tomas Gustavsson [mailto:to...@primekey.se] Sent: Wednesday, March 30, 2011 3:49 AM To: openssl-users@openssl.org Cc: David Patricola Subject: Re

RE: Truststore or Cacerts file?

. This would not make sense. Lou Picciano - Original Message - From: David Patricola david.patric...@jefferson.edu To: Tomas Gustavsson to...@primekey.se, openssl-users@openssl.org Sent: Wednesday, March 30, 2011 8:43:38 AM Subject: RE: Truststore or Cacerts file? Do the other two stay

RE: Truststore or Cacerts file?

appear to be installing your 'user' cert (postgresql.crt) into the CAcerts store. This would not make sense. Lou Picciano - Original Message - From: David Patricola david.patric...@jefferson.edu To: Tomas Gustavsson to...@primekey.se, openssl-users@openssl.org Sent: Wednesday, March 30

RE: Truststore or Cacerts file?

- From: David Patricola david.patric...@jefferson.edu To: openssl-users@openssl.org Sent: Wednesday, March 30, 2011 9:32:36 AM Subject: RE: Truststore or Cacerts file? Ok, I've modified my import as follows: E:\JRun4\jre\binkeytool -importcert -alias dca -file E:\Jrun4\jre\lib\security\root.crt

Truststore or Cacerts file?

they go into the default cacerts file or create a truststore? David Patricola | Senior Cold Fusion Developer | Web Applications Services | Jefferson Information Technologies Thomas Jefferson Universtiy | Philadelphia, PA | 215.503.1715 (Office)

RE: Truststore or Cacerts file?

by the same root certificate. There are a few permutations in there, to be thought about. What you would _not_ be doing is using the same key(s) and cert(s) on both server and client(s). Did not see you at PG East last week? Lou Picciano - Original Message - From: David Patricola

RE: First time attempting PostgreSQL SSL

- From: David Patricola david.patric...@jefferson.edu To: openssl-users@openssl.org Sent: Monday, January 31, 2011 4:31:08 PM Subject: FW: First time attempting PostgreSQL SSL Whoops, I forgot to include root.crt in the Postgre /data directory. Now that I fixed that, I am still getting the same

RE: First time attempting PostgreSQL SSL

[mailto:loupicci...@comcast.net] Sent: Tuesday, February 01, 2011 9:36 AM To: David Patricola Cc: openssl-users@openssl.org Subject: Re: First time attempting PostgreSQL SSL David, My server pg_hba.conf file already has the following to connect to the client: hostsslall all

RE: First time attempting PostgreSQL SSL

I found an excellent tutorial on this: http://www.howtoforge.com/postgresql-ssl-certificates I followed the instructions perfectly, and used my client computer's IP address as the CA. Here's my setup so far: On the server: - In Postgre data/ I have the server.crt and server.key files

FW: First time attempting PostgreSQL SSL

Whoops, I forgot to include root.crt in the Postgre /data directory. Now that I fixed that, I am still getting the same connection error on the client side. -Original Message- From: David Patricola [mailto:david.patric...@jefferson.edu] Sent: Monday, January 31, 2011 4:10 PM

First time attempting PostgreSQL SSL

know what to change in the PostgreSQL config but do not know if PostgreSQL implicitly knows that a certificate exists, and what the client box should have. David Patricola | Senior Cold Fusion Developer | Web Applications Services | Jefferson Information Technologies Thomas Jefferson