|
|
Sponsored Content
Top Forums
UNIX for Advanced & Expert Users
openssl help
Post 30906 by Brett on Tuesday 29th of October 2002 11:49:43 AM
10-29-2002
Regen keys
Hi there
I think you may need to regenerate your SSH keys - in my version I do :
/usr/local/bin/ssh-keygen -t rsa1 -f /usr/local/etc/ssh_host_key -N ""
/usr/local/bin/ssh-keygen -t dsa -f /usr/local/etc/ssh_host_dsa_key -N ""
/usr/local/bin/ssh-keygen -t rsa -f /usr/local/etc/ssh_host_rsa_key -N ""
This will ask if you want to overwrite your keys - say yes, then restart sshd. Should resolve your new ssl installation. If this doesn't work then get back to me.....
./B
I think you may need to regenerate your SSH keys - in my version I do :
/usr/local/bin/ssh-keygen -t rsa1 -f /usr/local/etc/ssh_host_key -N ""
/usr/local/bin/ssh-keygen -t dsa -f /usr/local/etc/ssh_host_dsa_key -N ""
/usr/local/bin/ssh-keygen -t rsa -f /usr/local/etc/ssh_host_rsa_key -N ""
This will ask if you want to overwrite your keys - say yes, then restart sshd. Should resolve your new ssl installation. If this doesn't work then get back to me.....
./B
|
|
8 More Discussions You Might Find Interesting
1. Solaris
ERROR OpenSSL version mismatch. Built against 908070, you have 9080bf^M
2009.11.20 15:23:25 ERROR Connection closed^M
i am new in solaris,i not have great know in this operative system
Help me how i can fixed this, in the machine has installed Solaris
Machine hardware: ... (1 Reply)
Discussion started by: saurio
1 Replies
2. UNIX for Advanced & Expert Users
All,
I am new to openssl and I have not been able to figure out exactly how to use it. What I need to do is to create a shell script which FTPS's (SFTP is not allowed on my project) a file to a mainframe. The mainframe will not initiate a session with my server.
Question. Are the packages... (7 Replies)
Discussion started by: MichaelInDC
7 Replies
3. Solaris
Hi Peeps,
Having trouble compiling openssl 0.9.8r on Solaris 10 x86. The make test fails when running the shatests (segmentation faults). There is a PROBLEM file that references a file called values.c. Anyone know whereabouts in the source tree you put this file as the file doesn't tell you... (2 Replies)
Discussion started by: callmebob
2 Replies
4. AIX
Gurus,
As per audit recommendation i have installed openssl.base 0.9.8.803 and upgraded openssl from 9.7l to 9.8 as prerequisits. But post these installation ssh fails with below error message.
exec(): 0509-036 Cannot load program ssh because of the following errors:
0509-150 ... (3 Replies)
Discussion started by: newaix
3 Replies
5. Shell Programming and Scripting
I am running a openssl command like this:
openssl s_client -showcerts -connect $fqdn:$portand the result is some ridiculous amount of stuff but i only want to cut out part of the certificate chain. How do i do that? (2 Replies)
Discussion started by: shade917
2 Replies
6. Solaris
Hello
I'm relatively new to technologies like Apache & ssl but have some years
experience with Unix. My question concerns the version of OpenSSL which is
genuinely being used on our server & how is that set.
The server is running Solaris 10. I'll show output from various commands:
... (1 Reply)
Discussion started by: CHoggarth
1 Replies
7. Shell Programming and Scripting
Hi,
I am using openssl as below for encryption of a string ( foo) and I have to pass the password twice for the same.
echo 'foo' | openssl aes-256-cbc -a -salt
enter aes-256-cbc encryption password:
Verifying - enter aes-256-cbc encryption password:... (2 Replies)
Discussion started by: 46019
2 Replies
8. Cybersecurity
I just started playing around with Unix's OpenSSL utility. I can't seem to get the hang of it, and the man page isn't helping much. I wanted to experiment with file encryption, so I created a dummy text file with one line of text and tried to encrypt it using DES. I used the following command:
... (2 Replies)
Discussion started by: Ultrix
2 Replies
LEARN ABOUT CENTOS
lcp_crtpollist
LCP_CRTPOLLIST(8) User Manuals LCP_CRTPOLLIST(8) NAME
lcp_crtpollist - create an Intel(R) TXT policy list SYNOPSIS
lcp_crtpollist COMMAND [OPTION] DESCRIPTION
lcp_crtpollist is used to create an Intel(R) TXT policy list. OPTIONS
--create Create an TXT policy list. The following options are available: --out file policy list file [--ver version] version [file]... policy element files --sigh Sign an TXT policy list. --pub key-file PEM file of public key --out file policy list file [--priv key-file] PEM file of private key [--rev rev-ctr] revocation counter value [--nosig] don't add SigBlock --addsig --sig file file containing signature (big-endian) --out file policy list file --show file policy list file --help Print out the help message. --verbose Enable verbose output; can be specified with any command. EXAMPLES
Create policy list: Assuming there have been two element file mle.elt and pconf.elt generated by lcp_crtpolelt(8) The following example can create an unsigned policy list: lcp_crtpollist --create --out list-unsig.lst mle.elt pconf.elt Sign policy list: Unsigned policy list can be signed by the command lcp_crtpollist(8) or openssl(1). The openssl(1) signing is supported for cases where the signing environment is separate from the policy creation environment and the software allowed to run there is strictly controlled and already supports openssl(1). The following example uses openssl(1) to sign the list: 1 openssl rsa -pubout -in privkey.pem -out pubkey.pem 2 cp list-unsig.lst list-sig.lst 3 lcp_crtpollist --sigh --pub pubkey.pem --nosig --out list-sig.lst 4 openssl genrsa -out privkey.pem 2048 5 openssl dgst -sha1 -sign privkey.pem -out list.sig list-sig.lst 6 lcp_crtpollist --addsig --sig list.sig --out list-sig.lst lcp_crtpollist can also be used to sigh a policy list. The following example are intended to be mutually exclusive with the preceding exam- ple. 1 openssl genrsa -out privkey.pem 2048 2 openssl rsa -pubout -in privkey.pem -out pubkey.pem 3 cp list-unsig.lst list-sig.lst 4 lcp_crtpollist --sign --pub pubkey.pem --priv privkey.pem --out list-sig.lst SEE ALSO
lcp_crtpol2(8), lcp_crtpolelt(8), lcp_crtpollist(8), openssl(1). tboot 2011-12-31 LCP_CRTPOLLIST(8)