Thanks, this is exactly what I was looking for. It may be good if you
include this as well in the main instructions as I didn't see it. Your last
line about being able to reset to http would have been great if I had seen
it prior to getting locked out. :)
> -----Original Message-----
> From: Stefan Frank [mailto:Mono dot General at RootServices dot Biz]
> Sent: Sunday, March 19, 2006 11:30 PM
> To: troy at twisted dot net; MonoWall-General List
> Subject: [m0n0wall] Re: x.509 certificate and RSA key specific
> instructions for M0n0wall
> It is explained on http://www.m0n0.ch/wall/notes.php near
> the end of this page. Copy/paste the complete contents. I
> had to include the first and last line too.
> Best regards,
> Stefan Frank
> Looking for Monowall Adjustment?
> Troy schrieb:
> > I recently built a m0n0wall server and was looking to enable the certs.
> > built some self signed certificates in what I thought was the right
> > (RSA private key in PEM, x.509 in PEM) but apparently not because when I
> > pasted them in, the box would no longer function and I couldn't log in
> > through the PHP front end. I had to do a complete reset of the config
> > get back in.
> > Does anyone have the specific steps for how to create the certs in the
> > format that M0n0wall likes? I also wasn't sure if I should paste in the
> > cert with the parts at the beginning like:
> > -----BEGIN RSA PRIVATE KEY-----
> > Proc-Type: 4,ENCRYPTED
> > DEK-Info: DES-EDE3-CBC,0955AB8F4E5F4BC
> > I think having these instructions in the m0n0wall handbook would really
> > help people due to the fact if you sign it wrong - there isn't a
> > checker/validator and you can completely lock yourself out other than
> > going in through the console.
> > I don't want to go through that a second time - was hoping someone had
> > specific commands to create the right cert/key and what specifically to
> > paste into the PHP windows so it works.
> > Thanks,
> > -Troy
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch