Local SSL reset

[markster]

I was fiddling with a self-created SSL certificate and NT SSL a number of months back, but opted back out during a whole lot of development. Now I need to reactivate the SSL. In the NT docs, it describes the self-certification process. So I run the CreateCACertificate.bat file, but I keep getting the error: can't open config file: usr/local/ssl/openssl.cnf.

How do I resolve this so that I can rerun the certificate making process?

Thanks,

Mark

[Bruce]

which NetTalk build?

[markster]

C9, NT 8.18.

Mark

[Bruce]

I'm not getting the same effect here. As far as I recall that BAT file no longer uses that set of settings anymore... Look in the BAT file to see if there's a reference to it?

cheers
Bruce

[markster]

Bruce, It turns out that it's not anything in the BAT file. The BAT file calls OpenSSL.Exe. When OpenSSL.EXE runs(either from the BAT file or if I start it up directly), it displays the following error:

WARNING: can't open file: \usr\local\ssl\openssl.cnf

Any ideas?

Thanks,

Mark

[Bruce]

I'm not getting the same effect as you - so let's try and track back a bit...

a) Google gives this advice;
http://techtalk.n3tlab.com/2012/06/openssl-windows-how-to-install-use-and.html

(that page suggests: ) Type at prompt:
set OPENSSL_CONF=c:\openssl-win32\bin\openssl.cfg  (if you don't run this line you will get the following error: WARNING: can’t open config file: /usr/local/ssl/openssl.cnf

However on my machine I checked in SET and I'm not seeing any setting of that nature. Maybe you have something set for OPENSSL_CONF ?

If I go to \clarion9\accessory\bin folder and just type
openSSL
I see the prompt
OpenSSL>

You can press Ctrl-C to quit.

Do you see the conf error if you do this?

Cheers
Bruce

[urayoan]

Bruce, for some reason this is broken a long time ago. I did use the old tools provided in C6 (shame on me) to generate the requests.



[attachment deleted by admin]

[Bruce]

interesting. I don't see the warning. I'm guessing the warning can be ignored.
I wonder what is different on your machine to my machine.

cheers
Bruce

[urayoan]

Bruce, maybe your system environment variables has the path for the config file and when the bat file starts does not give the warning.

Something like this

OPENSSL_CONF=c:\[PATH TO YOUR OPENSSL DIRECTORY]\bin\openssl.cfg

Cheers

[markster]

I believe I had multiple versions of the openssl.exe file. I installed the package to my c:\drive in the OpenSSL-Win32 folder and the exe file is in the \bin subfolder. When I deleted the redundant exe in the clarion accessory bin folder and reran the CreateCACertificate bat file, I no longer had the error. As soon as I get some time, I'll try to rerun the certificate generating process.

Mark