Stupid me: Ididn't checkout the logs [2008-01-04 19:46:13 [ERROR]] Error while processing connection: SSL initialization error: Can't load RSA private key ~A
what does it mean ?
On Jan 4, 2008 7:41 PM, Andrea Chiumenti kiuma72@gmail.com wrote:
into /home/kiuma/pem I've executed:
openssl genrsa -out CA.key 1024 openssl req -new -key CA.key -x509 -days 1095 -out CA.crt
Country Name (2 letter code) [AU]:IT State or Province Name (full name) [Some-State]:Milano Locality Name (eg, city) []:Monza Organization Name (eg, company) [Internet Widgits Pty Ltd]:wingstech.priv Organizational Unit Name (eg, section) []:kasa.wingstech.priv Common Name (eg, YOUR name) []:Chiumenti Andrea Email Address []:my@e.mail
the in slime repl:
(defparameter *x* (hunchentoot:start-server :port 4443 :ssl-certificate-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file #P"/home/kiuma/pem/CA.crt"))
The server stays mute :((
On Jan 4, 2008 7:27 PM, Brian brian@liberatinginsight.com wrote:
I also just noticed that you didn't provide the private key file input to your start server function. Try something like:
(hunchentoot::start-server :port 443 ;:ssl-privatekey-password <passwordto key file if version of lisp supports this> :ssl-certificate-file *ssl-certificate-path* :ssl-privatekey-file *ssl-private-key-path*)
You will need both the certificate and private key files to start a secure server. The howto listed below provides the directions, make sure you use the instructions on a self-signed certificate when producing the
certificate file.
Brian wrote:
I always use the How To's found on the OpenSSL website which you can find here
http://www.openssl.org/docs/HOWTO/
Andrea Chiumenti wrote:
Hello, I'm trying to figure out how to run Hunchentoot with SSL but I'm getting lost. I'm using it under a gentoo linux installation. I think the problem is with my ssl certificete file.
to create it I use `openssl genrsa -out File.pem 1024` but since (defparameter *x* (hunchentoot:start-server :port 4443 :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the server.
Does anybody know how to create a test certificate file with openssl or another tool ?
Thanks in advance, kiuma
tbnl-devel site list tbnl-devel@common-lisp.net http://common-lisp.net/mailman/listinfo/tbnl-devel
tbnl-devel site list tbnl-devel@common-lisp.net http://common-lisp.net/mailman/listinfo/tbnl-devel
tbnl-devel site list tbnl-devel@common-lisp.net http://common-lisp.net/mailman/listinfo/tbnl-devel