Displaying 20 results from an estimated 10000 matches similar to: "Ignorant question on SSL certs"
2015 Mar 03
5
Ignorant question on SSL certs
Jason Pyeron wrote:
>> I'm getting endless complaints about my dovecot cert,
>
> Exact message please?
The certificate does not apply to the given host
The certificate is not signed by any trusted certificate authority
>> Do I really have to use a separate cert and key for dovecot?
>> Can I not use the "standard" cert in /etc/pki/tls/certs (and key)
2015 Mar 03
1
Ignorant question on SSL certs
Greg Bailey wrote:
>> I'm really just asking if I cannot just use what I take to be
>> the standard openssl certificate and key in /etc/pki/tls/
>> Do I really have to create up a special cert for dovecot?
> There's not really a "standard" SSL certificate. Perhaps you're
> referring to a "default" certificate used by the webserver?
No. I
2015 Mar 03
2
Ignorant question on SSL certs
Jason Pyeron wrote:
>> I'm really just asking if I cannot just use what I take to be
>> the standard openssl certificate and key in /etc/pki/tls/
>> Do I really have to create up a special cert for dovecot?
>
> It depends on what you mean by special and was it done properly the first
> time.
The cert and key in /etc/pki/tls seem to work perfectly well.
My
2015 Mar 03
0
Ignorant question on SSL certs
> -----Original Message-----
> From: Timothy Murphy
> Sent: Tuesday, March 03, 2015 10:13
>
> Jason Pyeron wrote:
>
> >> I'm getting endless complaints about my dovecot cert,
> >
> > Exact message please?
>
> The certificate does not apply to the given host
So lets deal with this first.
What is the hostname?
What is the subject of the
2015 Mar 03
0
Ignorant question on SSL certs
> -----Original Message-----
> From: Timothy Murphy
> Sent: Tuesday, March 03, 2015 9:55
>
> I'm getting endless complaints about my dovecot cert,
Exact message please?
> /etc/pki/dovecot/certs/dovecot.pem
> which I created years ago following the dovecot instructions.
>
> Do I really have to use a separate cert and key for dovecot?
> Can I not use the
2014 Dec 04
3
DoD approval of Centos Was RE: Firefox fails to authenticate .mil sites with New DoDCAC
> -----Original Message-----
> From: Jason Ricles
> Sent: Thursday, December 04, 2014 11:23
> To: CentOS mailing list
> Subject: Re: [CentOS] Firefox fails to authenticate .mil
> sites with New DoDCAC
>
> I thought DoD used RHEL and not Centos, or did Centos did approved
> DADEMS recently?
DADMS is a Navy system, but yes Centos is approved for use by DISA. You would
2010 Dec 09
4
5.5 x86_64 live cd
In the bang head and repeat mode here.
The live usb partition is /dev/sda1
Reboot / power on
It auto mounts the /dev/sda2 as ext4 on /mnt/disc/sda2
$ umount /mnt/disc/sda2
$ mkdir /root/foo
$ mke2fs /dev/sda2
$ mount /dev/sda2 /root/foo
Kernel panic
Snip from the kernel panic:
??????
list_del+0xb/0x71
cache_alloc_refill+0xf1/0x186
ext2_fill_super+0x0/0xa37
....
system_call+0x7e/0x83
--
2010 Feb 16
4
Apache bandwidth limiting?
Can this be done with stock centos 4? Or can this even be done with the extras
repo?
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
- -
- Jason Pyeron PD Inc. http://www.pdinc.us -
- Principal Consultant 10 West 24th Street #100 -
- +1 (443) 269-1555 x333 Baltimore,
2014 Dec 04
1
DoD approval of Centos Was RE: Firefox fails to authenticate .mil sites with New DoDCAC
> -----Original Message-----
> From: Jason Ricles
> Sent: Thursday, December 04, 2014 11:42
>
> Gotcha, I also work with DoD for Navy systems and was surprised by
> that. So you mean if we don't want to pay RHEL licensing fees, we can
> use Centos? Since we are paying about $100 per RHEL license.
But you will still need a (self?) support plan to be STIG compliant.
>
2015 Mar 03
0
Ignorant question on SSL certs
On 03/03/2015 08:12 AM, Timothy Murphy wrote:
> Jason Pyeron wrote:
>
>>> I'm getting endless complaints about my dovecot cert,
>> Exact message please?
> The certificate does not apply to the given host
> The certificate is not signed by any trusted certificate authority
>
>>> Do I really have to use a separate cert and key for dovecot?
>>> Can
2010 Aug 01
2
/bin/su wont work inside a chroot?
On centos 4 (i386 chroot on an x86_64) it just prompts me for a password.
Any suggesstion on where to start looking?
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
- -
- Jason Pyeron PD Inc. http://www.pdinc.us -
- Principal Consultant 10 West 24th Street #100 -
- +1 (443)
2011 May 14
2
Apache in chroot reporting every client is 16.0.0.0
Not sure where to start on this. I went to examine a log file today and noticed
a password protected internal file was being accessed from 16.0.0.0. Upon
further review every log entry has the same IP. Accessing apache from localhost
also reports 16.0.0.0.
Google is not being my friend right now, any advice?
Kernel: 2.6.9-89.0.29.Elsmp
In the chroot:
httpd-suexec-2.0.52-41.ent.7.centos4
2014 Oct 24
1
What is a client certificate?
A very ignorant question, sans doute.
I get my certificates from cacert.org, to whom I am very grateful.
I follow what I take to be the official procedure,
first creating <server>.key and <server>.csr on my server
and then getting <server>.crt by going to Server Certificate=>New
at the cacert site.
I then place the key certficate *.key in /etc/pki/tls/private/
and what I
2009 May 21
1
[OT] Oracle->MySQL ODBC via SSL using: stock MySQL, mysql-connect or-odbc-3.51.27-0, Oracle XE
I know this is very off topic, but getting MySQL and unix ODBC to play nice
via SSL on Centos has been a battle.
I finally have it working via isql but when I connect via Oracle I get an
error.
If I use the mysql odbc connector directly:
ORA-28500: connection from ORACLE to a non-Oracle system returned this
message:
[Generic Connectivity Using ODBC][MySQL][ODBC 3.51 Driver]SSL connection
error
2014 Apr 30
1
3TB non-system disk reports wrong size on Centos 6 x86_64
root at five-72 ~
# dd if=/dev/zero of=/dev/sdb bs=1M count=1000
1000+0 records in
1000+0 records out
1048576000 bytes (1.0 GB) copied, 8.67101 s, 121 MB/s
root at five-72 ~
# parted /dev/sdb
GNU Parted 2.1
Using /dev/sdb
Welcome to GNU Parted! Type 'help' to view a list of commands.
(parted) mklabel gpt
(parted) print
Model: ATA ST3000DM001-1CH1 (scsi) -->
2014 Dec 04
2
DoD approval of Centos Was RE: Firefox fails to authenticate .mil sites with New DoDCAC
On Thu, 2014-12-04 at 11:41 -0500, Jason Ricles wrote:
> Gotcha, I also work with DoD for Navy systems and was surprised by
> that. So you mean if we don't want to pay RHEL licensing fees, we can
> use Centos? Since we are paying about $100 per RHEL license.
I would recommend RHEL for critical systems or those that must be
certified for a particular purpose, such as CA servers.
2009 Apr 02
17
[OT] Godaddy hell...
Can I get some recommendations:
We are looking for a hosting provider (other than godaddy) with
1: SLA
2: SSH access
3: subversion/rsync or the ability to install binaries / compile source.
Would like them to include http/https and email.
Any suggestions?
-Jason
--
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
-
2014 Dec 03
5
Firefox fails to authenticate .mil sites with New DoD CAC
Can anyone help with getting the new DoD CACs (Smart Card) to work in
CentOS 6.6? I don't use it for console logins, only for email and .mil
web sites.
I recently had to get a new DoD CAC (Smart Card) when one of the
buildings I work in upgraded their security system. My old CAC was
working fine prior to this for signing and encrypting email and for
authenticating to various DoD (.mil) sites
2016 Sep 22
3
VPAT for centos 7 - section 508 compliance statement
Can my jpyeron user be blessed to update the WIKI, so a CentOS 6 and CentOS 7 VPAT can be posted?
Recommending under FAQ or AdditionalResources
-Jason
> -----Original Message-----
> From: Jason Pyeron [mailto:jpyeron at pdinc.us]
> Sent: Friday, October 30, 2015 14:08
> To: 'centos-devel at centos.org'
> Subject: VPAT for centos 7 - section 508 compliance statement
>
2015 Jan 15
2
leap second and Centos
> -----Original Message-----
> From: Akemi Yagi
> Sent: Thursday, January 15, 2015 12:05
>
> On Thu, Jan 15, 2015 at 8:43 AM, G Galitz <geoff at galitz.org> wrote:
> >
> > Hi.
> >
> > We have another leap second coming. Have past bugs with
> Centos and leap
> > seconds (specifically high CPU spikes) been resolved?
> Should we be worried?