Displaying 20 results from an estimated 100000 matches similar to: "Mod_radius_auth for apache?"
2015 Apr 17
0
Centos 5 & tls v1.2, v1.1
The cheapest sollution is probably compiling a private openssl somewhere
on the system and then compiling apache using that private openssl
version instead of the default system-wide one.
Regards,
Dennis
On 17.04.2015 13:20, Eero Volotinen wrote:
> Yep, maybe using ssl offloading devices like (BigIP) that receives tls1.2
> and tlsv1.2 and then re-encrypts traffic with tls1.0 might be
2015 Apr 17
4
Centos 5 & tls v1.2, v1.1
Yep, maybe using ssl offloading devices like (BigIP) that receives tls1.2
and tlsv1.2 and then re-encrypts traffic with tls1.0 might be "cheapest"
solution.
--
Eero
2015-04-17 14:15 GMT+03:00 Johnny Hughes <johnny at centos.org>:
> On 04/16/2015 05:00 PM, Eero Volotinen wrote:
> > in fact: modgnutls provides easy way to get tlsv1.2 to rhel 5
> >
> > --
>
2015 Oct 15
1
selinux commands fail on low memory box
>
> How about adding some swap into system?
Not a bad idea, Eero! That worked.
[root at ops3:~] #cat /proc/swaps
Filename Type Size Used
Priority
/swapfile file 1048572 712 -1
[root at ops3:~] #semodule -i newrelic.pp
[root at ops3:~] #
Thanks!
Tim
On Thu, Oct 15, 2015 at 12:19 AM, Eero Volotinen
2016 Apr 01
2
Libreswan PEM format
I generated according to the docs . Which produced
my server.secrets as below
used the command
ipsec newhostkey --configdir /etc/ipsec.d --output
/etc/ipsec.d/www.example.com.secrets
: RSA {
# RSA 3328 bits ***.**.net Fri Apr 1 15:39:32 2016
# for signatures only, UNSAFE FOR ENCRYPTION
2015 Apr 16
2
Centos 5 & tls v1.2, v1.1
in fact: modgnutls provides easy way to get tlsv1.2 to rhel 5
--
Eero
2015-04-16 21:02 GMT+03:00 Eero Volotinen <eero.volotinen at iki.fi>:
> well. this hack solution might work:
> http://www.tuxad.de/blog/archives/2014/11/19/openssl_updatesenhancements_for_rhel__centos_5/index.html
>
> --
> Eero
>
> 2015-04-16 17:30 GMT+03:00 Leon Fauster <leonfauster at
2016 Apr 01
2
Libreswan PEM format
Just trying to follow the instructions here
https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Security_Guide/sec-Securing_Virtual_Private_Networks.html
I don't think I am doing anything special.
At the point where there is some communication going on
Getting this error
packet from *****:1024: received Vendor ID payload [Cisco-Unity]
Apr 01 17:33:44
2016 Apr 01
0
Libreswan PEM format
IPSec is very complex with certificates. try first with PSK authentication
and then with certificates
--
Eero
2016-04-01 20:21 GMT+03:00 Glenn Pierce <glennpierce at gmail.com>:
> I generated according to the docs . Which produced
> my server.secrets as below
>
> used the command
>
> ipsec newhostkey --configdir /etc/ipsec.d --output
>
2016 Mar 21
2
IPSec multiple VPN setups
Err. Sounds like security nightmare.
21.3.2016 7.47 ip. "Glenn Pierce" <glennpierce at gmail.com> kirjoitti:
> Will ask my boss :) We are hosted on memset so not so easy to update
>
> Thanks
>
> On 21 March 2016 at 17:36, Eero Volotinen <eero.volotinen at iki.fi> wrote:
> > Centos 5 is still soon end of life. Using it as ipsec gateway is ..
> >
2016 Jan 22
1
回复: How to get UEFI setting by shell?
Hi,volotinen:
as it mentioned in your web link:
"Your on the right track your module need to be signed", my question how to sign test_file_system.ko?
thanks,
w.k.
------------------ ???? ------------------
???: "eero.volotinen";<eero.volotinen at iki.fi>;
????: 2016?1?22?(???) ??3:42
???: "CentOS mailing list"<centos at
2016 Mar 21
0
IPSec multiple VPN setups
To be fair its not highly sensitive info we are dealing with.
-----Original Message-----
From: "Eero Volotinen" <eero.volotinen at iki.fi>
Sent: ?21/?03/?2016 17:51
To: "CentOS mailing list" <centos at centos.org>
Subject: Re: [CentOS] IPSec multiple VPN setups
Err. Sounds like security nightmare.
21.3.2016 7.47 ip. "Glenn Pierce" <glennpierce at
2016 Apr 01
0
Libreswan PEM format
You must define connection address and key in ipsec.secrets.
--
Eero
2016-04-01 19:38 GMT+03:00 Glenn Pierce <glennpierce at gmail.com>:
> Just trying to follow the instructions here
>
> https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Security_Guide/sec-Securing_Virtual_Private_Networks.html
>
> I don't think I am doing anything special.
2016 Apr 01
5
Libreswan PEM format
Sorry but I have looked for over two days. Trying every command I could find.
There is obviously a misunderstanding somewhere.
After generating a key pair with
ipsec newhostkey --configdir /etc/ipsec.d --output /etc/ipsec.d/my.secrets
I exported to a file with
ipsec showhostkey --ipseckey > file
The man pages says
ipsec showhostkey outputs in ipsec.conf(5) format,
Ie
***.server.net.
2016 Mar 21
1
IPSec multiple VPN setups
Glenn Pierce wrote:
> Yes reinstall. I get you have to purchase a new instance for a time to
> move over.
I'd figure that they just move you to an instance that's already running a
newer version of the o/s, giving you time to test for breakage. I really
don't see them charging, except, possibly, for running in parallel during
testing.
mark
>
> -----Original
2015 Apr 16
2
Centos 5 & tls v1.2, v1.1
Am 16.04.2015 um 11:46 schrieb Leon Fauster <leonfauster at googlemail.com>:
> Am 16.04.2015 um 11:43 schrieb Eero Volotinen <eero.volotinen at iki.fi>:
>> Is there any nice way to get tlsv1.2 support to centos 5?
>> upgrading os to 6 is not option available.
>
>
> Unfortunately not.
https://bugzilla.redhat.com/show_bug.cgi?id=1066914
--
LF
2016 Apr 01
2
Libreswan PEM format
I have tried
openssl rsa -in bicester_left.pub -outform pem > bicester_left.pem
I get
unable to load Private Key
140372295030648:error:0906D06C:PEM routines:PEM_read_bio:no start
line:pem_lib.c:701:Expecting: ANY PRIVATE KEY
On 1 April 2016 at 13:59, Eero Volotinen <eero.volotinen at iki.fi> wrote:
> You can do any kind of format conversions with openssl commandline client.
>
2015 Jun 08
1
could not insert 'fuse' error on CentOS 7.1
This looka good: https://github.com/juliogonzalez/s3fs-fuse-rpm
Eero
7.6.2015 4.23 ip. "Tim Dunphy" <bluethundr at gmail.com> kirjoitti:
> >
> > Centos 7 base repo contains fuse, use it. it works. handcompiling
> packages
> > to centos is *really* stupid, without proper knowledge..
>
>
> Thanks, you're right. The Centos 7 package works.
>
>
2016 Mar 21
4
IPSec multiple VPN setups
err. upgrades?
You mean reinstall? As upgrading between major releases are not supported
in any way on centos / rhel and clones..
--
Eero
2016-03-21 20:33 GMT+02:00 <m.roth at 5-cent.us>:
> Glenn Pierce wrote:
> > I asked about upgrading once and got no reply. Does anyone have
> experience
> > of having a hosted centos upgraded on a virtual server. Would you usually
2015 Apr 17
0
Centos 5 & tls v1.2, v1.1
On 04/16/2015 05:00 PM, Eero Volotinen wrote:
> in fact: modgnutls provides easy way to get tlsv1.2 to rhel 5
>
> --
> Eero
>
If you do that, then you are at the mercy of Mr. Bergmann to provide
updates for all security issues for openssl. Has he updated his RPMs
since 2014-11-19 23:57:58? Does his patch work on the latest
RHEL/CentOS EL5 openssl-0.9.8 package?
The answer right
2016 Jul 14
1
CentOS7 firewalld ploblem
Ok.
try following:
firewall-cmd --add-port=110/tcp --permanent
firewall-cmd --reload
Eero
2016-07-14 12:22 GMT+03:00 ???? <tadao at creative-japan.org>:
> I cannot add pop3 with following error.
> # firewall-cmd --permanent --zone=external --add-service=pop3
> Error: INVALID_SERVICE: pop3
>
> And cannot access to 143 too.
> telnet 153.153.xxx.xxx 143
> Trying
2015 Nov 21
3
Urgent Help
My boot folder has only rescue vm. How to get actual vm?
Shiva Prasad Nath
92981134
On Sun, Nov 22, 2015 at 12:43 AM, Eero Volotinen <eero.volotinen at iki.fi>
wrote:
> Using rescue mode or some other rescuecd..
>
> Eero
> 21.11.2015 6.41 ip. "Siva Prasad Nath" <shivaprasadnath21 at gmail.com>
> kirjoitti:
>
> > Hi,
> > From yesterday my