Hello Thank List and you Jan Yes the morell.pem is a certificate ok. Excuse, the error message in log is confuses The problem was permission in directory, I change permission and all is ok Best regards Morell
----- Original Message ----- From: "Jan Meijer" jan.meijer@surfnet.nl To: "Humberto Morell" morell@segurmatica.com Cc: stunnel-users@mirt.net Sent: Tuesday, March 01, 2005 3:58 AM Subject: Re: [stunnel-users] verify = 3 error with certificate client
On Fri, 25 Feb 2005, Humberto Morell wrote:
stunnel.log in Server ################## 2005.02.25 07:55:07 LOG5[2501:1076546480]: VERIFY OK: depth=1,
/C=CU/ST=Ciudad Habana/L=Centro Habana/O=Segurmatica/OU=Agencia de Certificacion/CN=Segurmatica/emailAddress=ca@segurmatica.cu
2005.02.25 07:55:07 LOG4[2501:1076546480]: VERIFY ERROR ONLY MY: no cert
for /C=CU/ST=Ciudad Habana/L=Centro Habana/O=Ministerio Informatica y Comunicaciones/OU=Segurmatica/CN=Humberto Morell/emailAddress=morell@seg.inf.cu
2005.02.25 07:55:07 LOG7[2501:1076546480]: SSL alert (write): fatal:
certificate unknown
#############
What the message tells you is there is no certificate for the mentioned DN (/C=CU...) in /etc/stunnel/certdb/. So the question to be answered is: is one of these:
lrwxrwxrwx 1 root root 24 Feb 25 11:00 2307a3fe.0 ->
/etc/stunnel/stunnel.pem
lrwxrwxrwx 1 root root 30 Feb 25 11:01 3f5b7ca8.0 ->
/etc/stunnel/acsegurmatica.crt
lrwxrwxrwx 1 root root 23 Feb 25 11:03 3fb3183e.0 ->
/etc/stunnel/morell.pem
lrwxrwxrwx 1 root root 28 Feb 25 11:06 d14abd18.0 ->
/etc/stunnel/certstunnel.pem
#################
the same as this one?
cert = d:\morell.pem
Jan