Creating certification authority : $cd /etc/newcerts$openssl genrsa 2048 > ca-key.pem$openssl req -new -x509 -nodes -days 1000 -key ca-key.pem > ca-cert.pem NOTE: Last command will ask for details of certificate provider. So, provide short namesCreating certificate for server using above CA certificate :$openssl req -newkey rsa:2048 -days 1000 -nodes -keyout server-key.pem > server-req.pem $openssl x509 -req -in server-req.pem -days 1000 -CA ca-cert.pem -CAkey ca-key.pem -set_serial 01 > server-cert.pemNOTE: First command...
Saturday, 31 December 2011
How to locally generate CA certificate and server - client certificate using CA on linux ?
Posted on 22:55 by Unknown
Friday, 30 December 2011
How to install mysql and configure SSL with it?
Posted on 04:11 by Unknown
* How to install mysql and configure SSL with it?* Received following error while I locally try to connect to mysql server over SSL.[root@]# mysql --ssl-cert=/var/lib/mysql/openssl-md5/ca-cert.pem --ssl-key=/var/lib/mysql/openssl-md5/client-key.pem --ssl-cert=/var/lib/mysql/openssl-md5/client-cert.pem -u root -p -v -v -vEnter password:ERROR 2026 (HY000): SSL connection errorMy used environment * Red Hat Enterprise Linux 5.7Required packages :* perl-DBD-MySQL-3.0007-2.el5perl-DBI-1.52-2.el5mysql-server-5.0.77-4.el5_6.6mysql-5.0.77-4.el5_6.6mysql-5.0.77-4.el5_6.6Resolution1....
Monday, 26 December 2011
How to generate UDP packets and capture them?
Posted on 08:54 by Unknown
Guys,I had a chance to generate UDP packets and send them to another host. This was needed for testing a specific problem that I had faced. The problem is that I had to see huge Recv-Q at "netstat -apln|grep -i 'syslog' prior to RHEL 5.4. Now question is why does it show such huge value? But why do we see this at first place? No, we didn't see it at first place. Actually one monitoring software was complaining that there were lot of failure d UDP packets in "netstat -s" output and it also complained that number of such packets were also huge in...
Subscribe to:
Posts (Atom)