search for: noout

...previously This error suggests a problem with your certificate. If it used to work previously, then check it hasn't expired. openssl s_client -connect devsamba.lucas.ufes.br:636 copy-paste the certificate into a pem file, including begin/end lines openssl x509 -in mycert.pem -noout -enddate And check your root CA cert hasn't expired: openssl x509 -in /usr/local/samba/private/tls/cert.pem -noout -enddate I did the first command and I got this: openssl s_client -connect devsamba.lucas.ufes.br:636 socket: Connection refused connect:errno=111 Then I copy-paste...

...-luks.sh.in +++ b/inspector/test-virt-inspector-luks.sh @@ -35,7 +35,7 @@ if [ -s "$f" ]; then echo FEDORA | $VG virt-inspector --keys-from-stdin --format=raw -a "$f" > "actual-$b.xml" # Check the generated output validate the schema. - @XMLLINT@ --noout --relaxng "$srcdir/virt-inspector.rng" "actual-$b.xml" + $XMLLINT --noout --relaxng "$srcdir/virt-inspector.rng" "actual-$b.xml" # This 'diff' command will fail (because of -e option) if there # are any differences. diff -ur $diff_ig...

Hi, thanks for your response. Based from your advice I try to check the XML used the command "xmllint --noout /etc/icecast2/icecast.xml" . Because I got response "xmllint: command not found", I installed xmllint (sudo apt-get install libxml2-utils). After that, I check again (xmllint --noout /etc/icecast2/icecast.xml) and the result just return to the prompt (which means XML is correct ? )....

...way to convert them but > have yet to find the right knobs. -e only exports public keys. > > Currently running `make test` on OpenSSH 7.7 with LibreSSL 2.7.2. > > Any hints? What does the following say, when compiled with 2.7.2: $ openssl version $ openssl rsa -in ~/.ssh/id_rsa -noout ; echo $? $ ssh -V

Add a single shell script to hold results of configure. Pino Toscano (2): build: add an empty config.sh tests: switch to config.sh for xmllint .gitignore | 4 +--- config.sh.in | 22 +++++++++++++++++++ configure.ac | 7 +----- ...luks.sh.in => test-virt-inspector-luks.sh} | 2 +-

...ts public keys. >>> >>> Currently running `make test` on OpenSSH 7.7 with LibreSSL 2.7.2. >>> >>> Any hints? >> >> What does the following say, when compiled with 2.7.2: >> >> $ openssl version >> $ openssl rsa -in ~/.ssh/id_rsa -noout ; echo $? >> $ ssh -V > > Meanwhile I've figured out that I can prevent issues if I convert the > private key file to new format with > ssh-keygen -po -f keyfile > I had saved my old key as id_rsa-oldformat > > $ openssl version > LibreSSL 2.7.2 > $ openssl...

Hello, my name Johanes. First I'm sorry because I can't speak English well. And this is the first time I use Icecast. I have installed icecast2 use the standard Ubuntu installation (apt-get install icecast2). I also have configured # Edit /etc/icecast2/icecast.xml (only to change the passwords) and change "ENABLE=true" in /etc/default/icecast2. My question : When I tried to

s_client: Option unknown option -trace *** x509: Unknown parameter text On 5/25/20 11:49 AM, Aki Tuomi wrote: > Hi! > > Can you do > > openssl x509 text -noout </etc/letsencrypt/live/...../fullchain.pem > > and check these things: > > your server hostname isn included in SubjectAlternativeNames, and that the cert hasn't got MUST-STAPLE attribute? You can see this by looking for 1.3.6.1.5.5.7.1.24 > > Also, can you provide outpu...

...ile many applications use SubjectPublicKeyInfo encoded key. This change adds SubjectPublicKeyInfo support, to ease integration with applications. Examples: ## convert SubjectPublicKeyInfo public key to SSH public key $ openssl req -newkey rsa:2048 -nodes -pubkey -subj "/CN=test" \ -noout -keyout /dev/null | \ ssh-keygen -i -m SUBJECTINFO -f /proc/self/fd/0 ## convert X.509 certificate to SSH public key $ openssl req -newkey rsa:2048 -nodes -x509 -subj "/CN=test" \ -keyout /dev/null | openssl x509 -pubkey -noout | \ ssh-keygen -i -m SUBJECTINFO -f /proc/self/fd...

.............# return 0 } #*---------------------------------------------------------------------------*# show_certificate () { certificate="${1}" #.............................................................................# echo ${OPENSSL} x509 -in "${certificate}" -noout -dates echo ${OPENSSL} x509 -in "${certificate}" -noout -serial echo ${OPENSSL} x509 -in "${certificate}" -noout -subject echo #.............................................................................# return 0 } #*--------------------------------------------...

I would like to automatically deduce in a script if an ssh key is encrypted or not. Basically in a very particular application I want to be the BOFH and enforce that users place a passphrase on their id_rsa key. If they don't put a passphrase I want to send them back to ssh-keygen until they do. I have not been able to deduce a way to detect this yet. Any hints? Thanks Bob

I'm trying to configure TLS for Dovecot 2.3 but after setting all things up I'm not able to start Dovecot: Apr 16 20:56:02 master: Info: Dovecot v2.3.9.3 (9f41b88fa) starting up for imap, pop3, lmtp (core dumps disabled) Apr 16 20:56:25 auth: Debug: Loading modules from directory: /usr/lib/dovecot/auth Apr 16 20:56:25 auth: Debug: Module loaded:

...homas" <thomas.ruecker at tieto.com> > Cc: icecast at xiph.org > Date: Fri, 17 Aug 2012 16:35:40 +0700 > Subject: Re: [Icecast] Icecast Startup Failed > Hi, thanks for your response. > > Based from your advice I try to check the XML used the command "xmllint > --noout /etc/icecast2/icecast.xml" . Because I got response > "xmllint: command not found", I installed xmllint (sudo apt-get install > libxml2-utils). After that, I check again (xmllint --noout > /etc/icecast2/icecast.xml) and the result just return to the prompt (which > means...

....com:puppet-ndh.bfm.com: puppet-prn.bfm.com:puppet-nyc.bfm.com:puppet-smw.bfm.com:puppet-tkm.bfm.com: puppet-ewd.bfm.com:puppet-lva.bfm.com:puppet-rmc.bfm.com:puppet-rdc.bfm.com: puppet-sfo.bfm.com puppet.bfm.com 3. Confirm we have all our DNS names in the alternate DNS names: openssl x509 -text -noout -in /local/puppet/etc/ssl/certs/puppet.example.com.pem | grep DNS DNS:puppet.example.com, DNS:puppet-ca.example.com, DNS: puppet-ca2.example.com, DNS:puppet-lab.example.com, DNS: puppet-svn.example.com, DNS:puppet-del.example.com, DNS: puppet-ndh.example.com, DNS:puppet-prn.example....

.../phony-guests/{debian,fedora,ubuntu,archlinux,coreos,window if [ -s "$f" ]; then b=$(basename "$f" .xml) $VG virt-inspector --format=raw -a "$f" > "actual-$b.xml" + # Check the generated output validate the schema. + xmllint --noout --relaxng $srcdir/virt-inspector.rng "actual-$b.xml" # This 'diff' command will fail (because of -e option) if there # are any differences. diff -ur $diff_ignore "expected-$b.xml" "actual-$b.xml" -- 2.9.3

Sorry... openssl x509 -text -noout -in /etc/letsencrypt/live/...../fullchain.pem and openssl s_client -connect host:993 Aki > On 25/05/2020 18:52 hanasaki at gmail.com <hanasaki at gmail.com> wrote: > > > s_client: Option unknown option -trace > *** > x509: Unknown parameter text > > > On 5/...

Hi I have a certificate in der format, from it with this command i generate a public key: openssl x509 -inform der -in ejbcacert.cer -noout -pubkey > pub1key.pub result is this: -----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC7vbqajDw4o6gJy8UtmIbkcpnk O3Kwc4qsEnSZp/TR+fQi62F79RHWmwKOtFmwteURgLbj7D/WGuNLGOfa/2vse3G2 eHnHl5CB8ruRX9fBl/KgwCVr2JaEuUm66bBQeP5XeBotdR4cvX38uPYivCDdPjJ1 QWPdspTBKcxeFbccDwIDAQAB -----END...

...ver and ca certificates and stops nslcd that I do not use: echo "TLS_REQCERT allow">>/etc/openldap/ldap.conf cd /etc/openldap/cacerts/ && wget http://xxx.xxx.xxx.xxx/Softwares7/LDAPCERTS/ca-bundle.crt && ln -s ca-bundle.crt $(openssl x509 -hash -in ca-bundle.crt -noout).0 cd /etc/openldap/certs/ && wget http://xxx.xxx.xxx.xxx/Softwares7/LDAPCERTS/server.crt cd / systemctl disable nslcd I'm unable to see what system-config-authentication is doing more in it's setup. Thanks for your help Patrick |||| || -- ====================================...

...te that the run time to generate these keys can vary wildly, and gets worse with longer keys. Sometimes you get lucky, and you'll generate then quickly, sometimes it takes a long while (minutes). http://dovecot.org/pipermail/dovecot/2015-November/102447.html Try running openssl dhparam -noout 2048 to see how it varies for you. If what I suspect is true, you can try using shorter keys. A followup post suggest a way you can precompute the key Joseph Tam <jtam.home at gmail.com>

Here's what I needed to build and run 1.20 on Debian/unstable. Perhaps the libcap2 dependency in the packagelist should only be added if libcap has actually been used in building guestfsd...