04-02-2013
Issue with FIPS
Hello,
I'm facing an issue after upgrading CFT (File transfer tool) from 2.5 to 2.7, on one of our test Linux boxes.
With CFT profile loaded, we can not initiate remote connections (ssh user @ server). We have the following message:
OpenSSL version mismatch. Built against 90801f, You have 908,060
Without the loaded profile, we can connect with the same command, but CFT specific commands fail.
CFTUTIL: error while loading shared libraries: libcfttools.so: can not open shared object file: No such file or directory
cftutil error code 127
Could you please suggest as to what can be done??
Additional information:
openssl version
OpenSSL 0.9.8a 11 Oct 2005
With CFT profile loaded:
openssl version
OpenSSL 0.9.8a 11 Oct 2005 (Library: OpenSSL FIPS Object Module v1.2)
Could you please tell me how to disable fips? or any other advice.
Regards,
9 More Discussions You Might Find Interesting
1. Shell Programming and Scripting
Hi,
I have a shell scripting. This will take 7 digit number in each line and add 7 digit number with next subsequent lines ( normal addition ).
Eg:
0000001
0000220
0001235
0000022
0000023
...........
.........
........
Like this i am having around 1500000 records. After adding... (23 Replies)
Discussion started by: thambi
23 Replies
2. HP-UX
Hello :),
I really am stuck with something, I am trying to boot my machine into single user mode (GCCS-M) but it acts like it does not recognize the key board. I have taken over the system as a pass down item and no one can fine the passwords. I don't want to reload it :(and I was wondering if... (1 Reply)
Discussion started by: Ham
1 Replies
3. Shell Programming and Scripting
I have the log file as this
date 18:00:00
date 18:01:02
date 18:02:00
date 19:06:00
date 18:03:00
date 18:05:00
I want to get date between 18:00:00 to 18:05:00.
I given the command as grep file name but it is not working.
Please give me reply.
Thanks & Regards,
Vijay, (3 Replies)
Discussion started by: bhas85
3 Replies
4. UNIX for Dummies Questions & Answers
In LINUX(CentOS, RedHat) is there a way to have the banner statement appear before the logon instead of after the logon? In UNIX and Windows the banner appears before a person actually logs on, what I'm seeing in LINUX is that it appears after the login(ftp, telnet, SSH).
Thanks (0 Replies)
Discussion started by: ejjones
0 Replies
5. Shell Programming and Scripting
I want to copy large amount of files aproximately more than 20,000 files from one file system to another file system, but it gives me error like:
#cd /opt/appserver/images
#cp * /opt/appserver02/public/images
Argument list is too long
Also above mention error appear again when i run:
... (1 Reply)
Discussion started by: telnor
1 Replies
6. Shell Programming and Scripting
Hello everyone, I'm in need of some assistance. I'm currently enrolled in an introductory UNIX shell programming course and, well halfway through the semester, we are receiving our first actual assignment. I've somewhat realized now that I've fallen behind, and I'm working to get caught up, but for... (1 Reply)
Discussion started by: MrMagoo22
1 Replies
7. Shell Programming and Scripting
Hi All,
I am using the below script which has awk command, but it is not returing the expected result. can some pls help me to correct the command.
The below script sample.ksh should give the result if the value of last 4 digits in the variable NM matches with the variable value DAT. The... (7 Replies)
Discussion started by: G.K.K
7 Replies
8. Shell Programming and Scripting
Hi,
when i am trying below script
assume that below values are taken in code
#!/bin/ksh
if
then
echo usage: aNlist.sh QMGR NAME MQREQ
fi
NL=`echo 'dis qmgr'|runmqsc $1|grep REPOSNL|sed 's/.*REPOSNL\(.*\).*/\1/' |cut -d'(' -f2|cut -d')' -f1`
echo 'define nl('$NL_$2')... (25 Replies)
Discussion started by: darling
25 Replies
9. UNIX for Advanced & Expert Users
I have recently enabled the process rngd, but after couple of days i see it got stopped automatically . Below is what i could find from messages file .
can someone shed light on what could be the reason and how can this can be taken care?
Apr 1 08:12:05 sap01 rngd: failed fips test
Apr 1... (3 Replies)
Discussion started by: radha254
3 Replies
LEARN ABOUT MOJAVE
engine
ENGINE(1SSL) OpenSSL ENGINE(1SSL)
NAME
openssl-engine, engine - load and query engines
SYNOPSIS
openssl engine [ engine... ] [-v] [-vv] [-vvv] [-vvv] [-vvv] [-c] [-t] [-tt] [-pre command] [-post command] [ engine... ]
DESCRIPTION
The engine command is used to query the status and capabilities of the specified engine's. Engines may be specified before and after all
other command-line flags. Only those specified are queried.
OPTIONS
-v -vv -vvv -vvvv
Provides information about each specified engine. The first flag lists all the possible run-time control commands; the second adds a
description of each command; the third adds the input flags, and the final option adds the internal input flags.
-c Lists the capabilities of each engine.
-t Tests if each specified engine is available, and displays the answer.
-tt Displays an error trace for any unavailable engine.
-pre command
-post command
Command-line configuration of engines. The -pre command is given to the engine before it is loaded and the -post command is given
after the engine is loaded. The command is of the form cmd:val where cmd is the command, and val is the value for the command. See
the example below.
EXAMPLE
To list all the commands available to a dynamic engine:
$ openssl engine -t -tt -vvvv dynamic
(dynamic) Dynamic engine loading support
[ unavailable ]
SO_PATH: Specifies the path to the new ENGINE shared library
(input flags): STRING
NO_VCHECK: Specifies to continue even if version checking fails (boolean)
(input flags): NUMERIC
ID: Specifies an ENGINE id name for loading
(input flags): STRING
LIST_ADD: Whether to add a loaded ENGINE to the internal list (0=no,1=yes,2=mandatory)
(input flags): NUMERIC
DIR_LOAD: Specifies whether to load from 'DIR_ADD' directories (0=no,1=yes,2=mandatory)
(input flags): NUMERIC
DIR_ADD: Adds a directory from which ENGINEs can be loaded
(input flags): STRING
LOAD: Load up the ENGINE specified by other settings
(input flags): NO_INPUT
To list the capabilities of the rsax engine:
$ openssl engine -c
(rsax) RSAX engine support
[RSA]
(dynamic) Dynamic engine loading support
ENVIRONMENT
OPENSSL_ENGINES
The path to the engines directory.
SEE ALSO
config(5)
COPYRIGHT
Copyright 2016-2018 The OpenSSL Project Authors. All Rights Reserved.
Licensed under the OpenSSL license (the "License"). You may not use this file except in compliance with the License. You can obtain a
copy in the file LICENSE in the source distribution or at <https://www.openssl.org/source/license.html>.
1.1.1a 2018-12-18 ENGINE(1SSL)