General :: Use A Client Certificate With Uzbl?
Simple task: I'd like to use uzbl, but I need to visit a couple of sites with client certificates. Chrome uses my local cert storage, I suppose uzbl can do that too. But how?
View 1 Replies (Posted: Jan 5 at 14:23)
Sponsored Links:
Related Forum Messages For Linux category:
Software :: Import CAcert SSL Root Certificate To Use With Xchat IRC Client?
I'm trying to use Xchat, to communicate with a server which uses CAcert root certificate(s) for its SSL connection. I have Xchat all configured, and it works fine when I connect without SSL, but I'm getting pretty miffed about how to get it to find/use whatever local certificates I'm supposed to have, assuming I actually *have* these certs installed somewhere. This seems like it should be less difficult than I'm making it out to be. I've been to CAcert's website and their Wiki, and while they have the root certificates available for download (which I did, as well as inadvertently installing them into my browser, where they probably already were anyway) the only instructions I saw in their "Linux" docs department, on how/where to use/put them, were for a couple RH based distros, and some other distro I'm not using. I checked the Xchat website and had a somewhat semi-thorough look around their user forum, but didn't find what I need there either. The openssl man page (yes, it's installed) doesn't tell me what I want, and xchat doesn't even *have* a man page. An LQ search turns up a few off-topic threads, mainly several years old and with very little in the way of replies. This ought to be easy :/ and I bet it is easy, with the right documentation in front of me. This is Slackware 13-64/-current. I've got /etc/ssl/certs folder, with nothing in it; and I have an /etc/ssl/openssl.cnf file which *appears* to be intended for using SSL on my own server (don't want that). In case it helps, here's what the server tells me when I have enabled SSL and try to connect: Code: [15:47] * * Certification info: [15:47] * Subject: [15:47] * CN=irc.twice-irc.de [15:47] * Issuer: [15:47] * O=CAcert Inc. [15:47] * OU=http: [15:47] * [15:47] * www.CAcert.org [15:47] * CN=CAcert Class 3 Root [15:47] * Public key algorithm: rsaEncryption (4096 bits) [15:47] * Sign algorithm sha1WithRSAEncryption [15:47] * Valid since Jun 13 14:38:18 2008 GMT to Jun 13 14:38:18 2010 GMT [15:47] * * Cipher info: [15:47] * Version: TLSv1/SSLv3, cipher AES256-SHA (256 bits) [15:47] * Connection failed. Error: unable to get local issuer certificate.? (20) Can someone point me to a decent link/tutorial about how to connect by IRC, (using Xchat if that matters), and have it find my SSL certs and/or where/how I get the CA root certificates in the right location for this to work?
Posted: 03-19-2010, 02:57 PM
View 9 Replies!
View Related
General :: Apt-Get Tries To Remove Packages On UZBL Install?
When I try to install uzbl, a minimalistic web browser with apt-get, apt tries to remove all xserver-xorg packages that can't possibly have any relations to the uzbl package - since it's only a web browser. [ ~/downloads ] % sudo apt-get install uzbl Reading package lists... Done Building dependency tree Reading state information... Done [code]....
Posted: January 12th, 2011
View 9 Replies!
View Related
CentOS 5 :: Install CA Certificate To Certificate Database?
I'm following a book (Mastering OpenLDAP) to install and setup OpenLDAP on CentOS, however this book is written for Debian, so some steps do not fit. Here's one, in order to setup TLS, I need CA certificate and server certificate and key. The book said in order to install the CA certificate, I should copy it to /usr/share/ca-certificates and run update-ca-certificates, obviously this doesn't work for CentOS. So I wonder what's the correct way to install CA certificate on CentOS? I suspect I can make OpenLDAP work without the installation, since in webmin configuration it only asks for the location of the certificate file, so I can stick it anywhere? Or is there a system wide certificate database I need to update?
Posted: 2008/8/21 13:32
View 2 Replies!
View Related
Ubuntu :: Amaya-Arora-Uzbl Browsers For 8.04?
I recently read a post and the comments in Linux Magazine concerning other browsers outside of firefox and chrome. Midori, Dillo, Kazehakase, and Netsurf were in the synaptic package manager so I installed them. Does anyone use the Amaya, Arora, or Uzbl browsers and what are they like?
Posted: 02-10-2010
View 2 Replies!
View Related
General :: Apache With SSL Does Not Load 2nd Certificate
I am running Apache 2.2.13 with SSL and SNI enabled. This is what the virtual host portions looks like: <VirtualHost *:443> ServerAdmin support@itherd.com DocumentRoot /srv/www/apps/login.itherd.com/ ServerName login.itherd.com ErrorLog /var/log/apache2/login.itherd.com-error_log SSLEngine on SSLCertificateFile /etc/apache2/ssl.crt/login.itherd.com.crt SSLCertificateKeyFile /etc/apache2/ssl.key/login.itherd.com.key <Directory "srv/www/apps/login.itherd.com/"> AllowOverride None Options ExecCGI AddHandler cgi-script cgi pl Order allow,deny Allow from all </Directory> </VirtualHost> <VirtualHost *:443> ServerAdmin support@clubherd.com DocumentRoot /srv/www/apps/app.clubherd.com/ ServerName app.clubherd.com ErrorLog /var/log/apache2/club.clubherd.com-error_log SSLEngine on SSLCertificateFile /etc/apache2/ssl.crt/app.clubherd.com.crt SSLCertificateKeyFile /etc/apache2/ssl.key/app.clubherd.com.key <Directory "srv/www/apps/app.clubherd.com/"> AllowOverride None Options ExecCGI AddHandler cgi-script cgi pl Order allow,deny Allow from all </Directory> </VirtualHost> When I start Apache it ask me for the pass phrase for the second host (both hosts have one). When I browse to first host it have recognized the loaded its certificate. When I go to the second server I get am untrusted message because it is using the first certificate. I have found and followed the directions of several web posts: [URLs]
Posted: 06-17-2010, 06:51 PM
View 1 Replies!
View Related
General :: When Try Https Get Certificate Error?
I am using the curl version 7.21.0. When I try the curl command from command like, things works fine for the http sites. But when I try https I get certificate error. I have source compiled curl with latest OpenSSL. I have also tried downloading the latest certificate bundle. With the same version of curl, same version of openssl with same certificate file I can get it work on the linux. But in the QNX OS I get this error. ./curl --cacert /mnt/temp/curl-ca-bundle.crt -v https://www.paypal.com * About to connect() to proxy 172.16.2.17 port 8080 (#0) * Trying 172.16.2.17... connected [code]...
Posted: 07-13-2010, 11:26 PM
View 1 Replies!
View Related
General :: Could Not Verify This Certificate For Unknown Reason
I am testing about using SSL Certificate in apache web server using Ubantu 10.04.2 (64 bit edition). And I insert SSLcertificate and private.key file into "default-ssl" file in "sites-available" folder. But when I call the website, SSL certificate show "Could not verify this certificate for unknown reason". Configuration in "default-ssl" is shown below SSLCertificateFile /etc/apache2/ssl/mysite_com.cer SSLCertificateKeyFile /etc/apache2/ssl/privatekey.key SSLCACertificateFile /etc/apache2/ssl/SCAONE.cer SSLCACertificateFile /etc/apache2/ssl/ROOTCA.cer
Posted: 07-07-2011, 02:03 AM
View 6 Replies!
View Related
General :: Add Permanent SSL Certificate Exception In Chrome?
I have a problem with a website that has an SSL certificate which doesn't correspond to the website domain. Chrome gives me a warning for this website (and rightly so), which I have to ignore manually. Every time I restart Chrome, I need to ignore the certificate issue again. I've tried adding the certificate as a trusted one with certutil, using C,, and P,, trustargs, but it doesn't work. I can't find a set of trustargs that will tell it to ignore which domain is using the certificate. Is there a way to tell Chrome (or certutil) to trust this certificate whatever domain uses it?
Posted: Feb 3 10 at 10:03
View 4 Replies!
View Related
General :: Open SSL Installed - Certificate Generation Fails
I have a problem related with certificate generation. I had successfully installed openssl. After that I do these. [root@localhost openssl-1.0.0a]# cd /usr/local/ssl/misc [root@localhost misc]# ./CA.sh -newca CA certificate filename (or enter to create) Making CA certificate ... Generating a 1024 bit RSA private key .........++++++ ..........++++++ writing new private key to './demoCA/private/./cakey.pem' Enter PEM pass phrase: Verifying - Enter PEM pass phrase: You are about to be asked to enter information that will be incorporated into your certificate request. What you are about to enter is what is called a Distinguished Name or a DN. There are quite a few fields but you can leave some blank. For some fields there will be a default value, If you enter '.', the field will be left blank. Country Name (2 letter code) [GB]:IN State or Province Name (full name) [Berkshire]:KERALA Locality Name (eg, city) [Newbury]:KOCHI Organization Name (eg, company) [My Company Ltd]:squad Organizational Unit Name (eg, section) []:SUPPORT Common Name (eg, your name or your server's hostname) []:localhost Email Address []:jk.r@squadinfotech.com Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []:mahhghh An optional company name []:mca Using configuration from /etc/pki/tls/openssl.cnf Enter pass phrase for ./demoCA/private/./cakey.pem: I am unable to access the ../../CA/newcerts directory ../../CA/newcerts: No such file or directory Distro:Centos 5.3 kernel 2.6.18
Posted: 06-25-2010, 05:31 AM
View 1 Replies!
View Related
General :: Started To Prepare RHCSA Certificate From RedHat?
I started to prepare myself to RHCSA certificate from RedHat. In order to get this cert I have to pass exam EX200.THe best way to prepare would be to take part in courses RH124 and RH135 but I don't have cash for this and that's why I decided to prepare by myself.I downloaded ebook and have some experience in linux administration :McGraw.Hill.RHCE.Red.Hat.Certified.Engineer.Linux.Study.Guide.Exam.RH302.5th.Edition.Jun.2007Do you think that's enough to pass this EX200 exam ?Maybe someone have torrents to RH124 and RH135 courses ?
Posted: 04-18-2011, 06:20 AM
View 8 Replies!
View Related
General :: CRL File Error : PEM Routines:PEM_read_bio:no Start Line:pem_lib - Unable To Configure X.509 Storage For Certificate
I am configuring my Apache Server to enable checking CA Revocation List, and my Configuration lists as following : Code: SSLCARevocationFile /etc/httpd/confi.d/ssl.crt/CRL1.crl But the server can not start, and the log says: Code: Unable to configure X.509 Storage for certificate If I try this command to view content of my CRL file : Code: openssl crl -text -in CRL1.crl -noout the console shows : Code: error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib:647:Expecting: X509 CRL I think there is something wrong with my CRL file, such as the file format.Is there any requirement to the CRL file? What can I do to enable this CRL file checking?
Posted: 09-10-2010, 12:46 AM
View 2 Replies!
View Related
Fedora :: How To Add A Certificate?
I am trying to run Citrix XenDesktop on F13.I installed the .rpm package from their website and when I access my school's server, firefox acts like everything is ok but then I get a certificate error. A box pops up that says You have not chosen to trust "AddTrust External CA Root", the issuer of the server's security certificate (SSL error 61).' and I am not sure how to handle this.
Posted: 14th June 2011, 09:03 PM
View 2 Replies!
View Related
Networking :: Connecting Debian Client To Voyager Client Via Crossover Cable?
trying to create a "local network" by directly connecting an IBM Thinkpad with Debian Linux installed on it to an Alix computer running Voyager Linux. I'm following a "how to" I found to create a music server, hence the requirement. My issue is I can't get a static IP address to be configured on the Debian machine.I've trawled the net and have found the instructions about editing the /etc/network/interfaces and have tried to do this. First I tried to get DHCP working so I could connect the Debian machine to the net and this proved successful. I edited the interfaces file to look as follows: # The loopback network interface auto lo iface lo inet loopback auto eth0 iface eth0 inet dhcp Then I tried adding a static IP address to the machine. As this is a network purely between two machines I made up the IP addres and used 192.168.0.1 and used a NetMask calculator to give me a NetMask of 255.255.255.254 (I told the calculator there would be 2 machines on the network). I then edited the interfaces file as follows: # The loopback network interface auto lo iface lo inet loopback [code].... I re-booted the machine (ifdown eth0 followed by ifup eth0 keeps saying that eth0 hasn't been configured - a problem there that I don't understand), but during boot up time it failed to assign the Static IP address to eth0 and made me go into SU mode. To fix it I simply replaced the interface file with the static IP inputs with the file that had the DHCP entries (I'd made a copy of the DHCP file), and re-started the machine. Everthing came up fine. So the first question is how do I get a static IP address to be assigned to eth0 such that whenever I shut down and restart the machine the static IP address is always loaded? The second question is around creating the network via the cross over cable. From what I've found via Google, all I should have to do is create a static IP address on the Debian machine and a static IP address on the Voyager machine. Once they're connected by the cross over cable they should see each other. Is that correct, or do I have to do anything else?
Posted: 01-06-2011, 09:26 AM
View 2 Replies!
View Related
|
TRACKER
