04-17-2012
In order to validate the certificate chain, it must get to the signers site. The server does not require full internet access, but it MUST be able to access the signer IP and Port. Contact the certificate provider to verify the address and port that is used and setup your firewall for all servers using the certificate.
Domenic
This User Gave Thanks to domenictroilo For This Post:
9 More Discussions You Might Find Interesting
1. AIX
I'm currently investigating the secure ftp connection from AIX using shell script - It looks openssl is already install and don't know command to be used to connect the secure ftp server.
1. Do I need to install certificate on AIX ?.
2. If any one already design the script to connect secure... (0 Replies)
Discussion started by: dharanir
0 Replies
2. AIX
Hi,
a friend of mine passed there 223 last year and they gave me there testkiller document which was 65 questions, i am looking at doing my 223 exam and i have gone to testkiller recently and noticed there is an updated version which is now 383 questions.
I did the ibm pre-exam and all the... (1 Reply)
Discussion started by: rorted
1 Replies
3. UNIX for Dummies Questions & Answers
I wrote a very simple script to calculate the DB connection from an appserver and check the total netstat connection to a particular DB exceed 25 then it will send mail
netstat -a 2> /dev/null | awk '/.*ESTAB/{print $5}' | cut -d. -f1 | uniq -c | awk '{if ($1 > 25)print $2," exceed ",$1;}'
... (1 Reply)
Discussion started by: senthil.ak
1 Replies
4. AIX
I have created a .bff package for an app to tbe installed on AIX servers across regions. I am pretty new to the AIX mode of packaging using mkinstallp but I have been able to get the same done. I installed the same on the server in which i created the package and the application was deployed... (9 Replies)
Discussion started by: jobbyjoseph
9 Replies
5. Shell Programming and Scripting
Hi
I'm trying to create a connection with DB from shell script using the following string
sqlplus <user>@<db_instance>/<password>
in which I'm successful.
However, after connecting to DB it is giving me a sql prompt as follows
=====================
Connected to:
Oracle Database 10g... (2 Replies)
Discussion started by: sainisumit1
2 Replies
6. Emergency UNIX and Linux Support
Hi,
I'm trying to get a self-signed cert created on AIX 6.1, and it's not cooperating. I run the following command: gsk7cmd -cert -create -db /bin/A_CACertsOnly.kdb -pw blahblah -label testing -dn cn=machinename -expire 1000 -ca true...and get this response:
The function is not supported for... (3 Replies)
Discussion started by: tekster2
3 Replies
7. UNIX for Dummies Questions & Answers
Hi,
I'm trying to access to FTP SERVER over SSL with this script unix :
(credentials are correct)
#!/usr/bin/ksh
USER="test"
PASSWORD="pwdtest"
IP="**.***.*.***"
ftp -s $IP 990 << EOF >>log_ftp
user $USER $PASSWORD
bin
passive
EOF
but seems that credentials are not passed... (2 Replies)
Discussion started by: nash83
2 Replies
8. Shell Programming and Scripting
I have a requirement for which I had to connect to a server using FTPS. I have been provided with these,
connection method: FTPS
Server Name
Port for explicit and implicit
Login user
I would like to know the FTPS command/script in order to connect to there server and get a file.
... (5 Replies)
Discussion started by: r@v!7*7@
5 Replies
9. UNIX for Advanced & Expert Users
Hi,
I am working on an application which runs on an Informatica Red-Hat 5.10 Linux Server.
The application involves several Informatica ETL workflows which generate 100s of Text files with lot of data. Many of the files will each be up to 5 GB in size.
Currently the Informatica server itself... (7 Replies)
Discussion started by: waavman
7 Replies
LEARN ABOUT MOJAVE
ssh-keysign
SSH-KEYSIGN(8) BSD System Manager's Manual SSH-KEYSIGN(8)
NAME
ssh-keysign -- ssh helper program for host-based authentication
SYNOPSIS
ssh-keysign
DESCRIPTION
ssh-keysign is used by ssh(1) to access the local host keys and generate the digital signature required during host-based authentication.
ssh-keysign is disabled by default and can only be enabled in the global client configuration file /etc/ssh/ssh_config by setting
EnableSSHKeysign to ``yes''.
ssh-keysign is not intended to be invoked by the user, but from ssh(1). See ssh(1) and sshd(8) for more information about host-based authen-
tication.
FILES
/etc/ssh/ssh_config
Controls whether ssh-keysign is enabled.
/etc/ssh/ssh_host_dsa_key
/etc/ssh/ssh_host_ecdsa_key
/etc/ssh/ssh_host_ed25519_key
/etc/ssh/ssh_host_rsa_key
These files contain the private parts of the host keys used to generate the digital signature. They should be owned by root, read-
able only by root, and not accessible to others. Since they are readable only by root, ssh-keysign must be set-uid root if host-
based authentication is used.
/etc/ssh/ssh_host_dsa_key-cert.pub
/etc/ssh/ssh_host_ecdsa_key-cert.pub
/etc/ssh/ssh_host_ed25519_key-cert.pub
/etc/ssh/ssh_host_rsa_key-cert.pub
If these files exist they are assumed to contain public certificate information corresponding with the private keys above.
SEE ALSO
ssh(1), ssh-keygen(1), ssh_config(5), sshd(8)
HISTORY
ssh-keysign first appeared in OpenBSD 3.2.
AUTHORS
Markus Friedl <markus@openbsd.org>
BSD
February 17, 2016 BSD