[ previous ] [ next ] [ threads ]
 
 From:  "Troy Dixler" <troy at twisted dot net>
 To:  "'Stefan Frank'" <Mono dot General at RootServices dot Biz>, "'MonoWall-General List'" <m0n0wall at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall] Re: x.509 certificate and RSA key specific instructions for M0n0wall
 Date:  Mon, 20 Mar 2006 06:57:07 -0600
Stefan,

Thanks, this is exactly what I was looking for. It may be good if you
include this as well in the main instructions as I didn't see it.  Your last
line about being able to reset to http would have been great if I had seen
it prior to getting locked out. :)

-Troy


> -----Original Message-----
> From: Stefan Frank [mailto:Mono dot General at RootServices dot Biz]
> Sent: Sunday, March 19, 2006 11:30 PM
> To: troy at twisted dot net; MonoWall-General List
> Subject: [m0n0wall] Re: x.509 certificate and RSA key specific
> instructions for M0n0wall
> 
> Hello,
> 
> It is explained on http://www.m0n0.ch/wall/notes.php near
> the end of this page. Copy/paste the complete contents. I
> had to include the first and last line too.
> 
> --
> Best regards,
> Stefan Frank
> 
> Looking for Monowall Adjustment?
> http://M0n0WaLL.RootServices.Biz
> 
> 
> 
> Troy schrieb:
> > I recently built a m0n0wall server and was looking to enable the certs.
> I
> > built some self signed certificates in what I thought was the right
> format
> > (RSA private key in PEM, x.509 in PEM) but apparently not because when I
> > pasted them in, the box would no longer function and I couldn't log in
> > through the PHP front end.  I had to do a complete reset of the config
> to
> > get back in.
> >
> > Does anyone have the specific steps for how to create the certs in the
> > format that M0n0wall likes?  I also wasn't sure if I should paste in the
> > cert with the parts at the beginning like:
> >
> > -----BEGIN RSA PRIVATE KEY-----
> > Proc-Type: 4,ENCRYPTED
> > DEK-Info: DES-EDE3-CBC,0955AB8F4E5F4BC
> >
> > I think having these instructions in the m0n0wall handbook would really
> > help people due to the fact if you sign it wrong - there isn't a
> > checker/validator and you can completely lock yourself out other than
> > going in through the console.
> >
> > I don't want to go through that a second time - was hoping someone had
> the
> > specific commands to create the right cert/key and what specifically to
> > paste into the PHP windows so it works.
> >
> > Thanks,
> >
> > -Troy
> >
> 
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch