Thanks for all the input. This is something of a SNAFU since you can''t
run
the server without a cert. I hope RH handles future issues more
aggressively.
----- Original Message -----
From: Dan Mount <dmount@desktopconnection.net>
To: <redhat-secure-server@redhat.com>
Sent: Thursday, January 13, 2000 4:43 PM
Subject: RE: Re: Creating a Test Cert.
> That''s all fine and good... RedHat should just tell everyone
that... I
> finally got a similar answer 4 days after I submitted this in their
''pay
for> support'' web based system.
>
> I know you can still gen a certificate with RedHat, but if you have a NT
> server around with certificate server on it, use that. It''s much
easier...
> You won''t break any rules that way, either... ; )
>
>
> -----Original Message-----
> From: Kurt Seifried [mailto:listuser@seifried.org]
> Sent: Thursday, January 13, 2000 3:26 PM
> To: redhat-secure-server@redhat.com
> Subject: Re: Re: Creating a Test Cert.
>
>
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> > I''m aware of the VeriSign test certificates. However I want
to
> > create my own for the time being. I know that this is possible
> > with the openssl library. I just would like to get some info on
> > setting it up.
> >
> > Thanks
>
> The LASG covers this.
> http://www.securityportal.com/lasg/
>
> Basically, RSA/Verisign/etc are starting to behave like a 30000lb
> gorilla (RSA has a %100 monopoly on the RSA algorithm, meaning they
> can pretty much dictate terms to companies like Red Hat, and they
> have marketing deals with Verisign/etc.). As I understand it (someone
> from Red hat please correct me if I am wrong) Verisign told them "no
> test certificiate, no test certificate instructions, or you don''t
get
> to play". Sucks huh. Anyways the patent runs out in September, which
> should improve things alittle bit.
>
>
> Kurt Seifried
> http://www.securityportal.com/lasg/
> http://www.securityportal.com/closet/
> http://www.cryptoarchive.net/
> http://www.seifried.org/
> http://www.seifried.org/keys/
>
>
> >
> > >
> > >From: Carole Williams <carole@redhat.com>
> > >Date: Thu, 13 Jan 2000 08:33:58 -0500 (EST)
> > >To: Erich Oliphant <ericho@vantixnet.com>
> > >CC: redhat-secure-server@redhat.com
> > >Subject: Re: Creating a Test Cert.
> > >
> > >Hi, Erich,
> > >
> > >You can get a test certificate from a Certificate Authority (CA).
> > >The manual goes step by step through the process of getting a test
> > >certificate from VeriSign (section 3.5.2 on page 30) and Thawte
> > >(section 3.5.3 on page 34), but you can get a test certificate
> > >from any CA you choose. Getting a test certificate from a CA is
> > >quick, should only take you a minute or two, and doesn''t
cost
> > >anything.
> > >
> > >Hope this helps,
> > >
> > >Carole Williams
> > >Technical Writer
> > >Red Hat, Inc.
> > >
> > >On Wed, 12 Jan 2000, Erich Oliphant wrote:
> > >
> > >> Hi,
> > >> I have installed the RH secure server. I am now trying to
> > >> create a test certificate. Sec. 3.5.1 of the install guide
says
> > >> to run "make testcert". This does not work. I
checked the
> > >> makefile and there is no "testcert" target. The
"genkey" and
> > >> "certreq" targets are there and work fine. Does
anyone know
> > >> what this target is supposed to do so that perhaps I can run
the
> > >> steps by hand???
> > >>
> > >> Thanks,
> > >> EKO
> > >>
> > >
> > >
> > >
> > >--
> > > PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST
> > > ARCHIVES! <a href="<a
> > >
href="http://www.redhat.com">http://www.redhat.com</a>">http://www
> > > .redhat.com">http://www.redhat.com</a></a>
<a href="<a
> > >
href="http://archive.redhat.com">http://archive.redhat.com</a>">ht
> > >
tp://archive.redhat.com">http://archive.redhat.com</a></a>
> > > To unsubscribe: mail
> > > redhat-secure-server-request@redhat.com with
> > > "unsubscribe" as the Subject.
> > >
> > >
> >
> >
> > --
> > PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST
> > ARCHIVES! http://www.redhat.com http://archive.redhat.com
> > To unsubscribe: mail
> > redhat-secure-server-request@redhat.com with
> > "unsubscribe" as the Subject.
> >
>
> -----BEGIN PGP SIGNATURE-----
> Version: PGPfreeware 6.5.2 for non-commercial use
<http://www.pgp.com>
>
> iQA/AwUBOH404Yb9cm7tpZo3EQKasACgu2rBzDiNrK3IDvA0VthtpGASEXwAn2Tv
> H8FyMpJucoi9KJ6IiWyKpm15
> =G5T/
> -----END PGP SIGNATURE-----
>
>
>
> --
> PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
> http://www.redhat.com http://archive.redhat.com
> To unsubscribe: mail redhat-secure-server-request@redhat.com with
> "unsubscribe" as the Subject.
>
>
> --
> PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
> http://www.redhat.com http://archive.redhat.com
> To unsubscribe: mail redhat-secure-server-request@redhat.com with
> "unsubscribe" as the Subject.
>