I have done this, according to http://www.tc.umn.edu/~brams006/selfsign.html, part 1B (generating your own CA):
a) create a CA authority (ca.key and ca.crt)
b) make a certificate request (server.csr)
c) sign the certificate request (server.crt and server.key) with the new CA authority
d) change the server key so it does not ask for a passphrase.
Afterwards, the server.crt and server.key files are included in /usr/share/fred-client/ssl directory, and the fred-client configuration file is modified like this:
ssl_cert = %(dir)s/server.crt
ssl_key = %(dir)s/server.key
Now, if I try to run fred-client this is the result:
ERROR: socket.sslerror: [Errno 1] _ssl.c:480: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (200.107.82.18:700)
Certificate not signed by verified certificate authority
What should I do for fred-client to identify these certificates as valid?.
Thanks in advance.
Note: the new fred-client is perfectly compatible with FRED 2.2.
--
Mario Guerra <mguerra(a)nic.cr>
.
Is there a recommended new gTLD list recommended to be inserted into the FRED registry
TLD database table?
We at the .mw registry are now receiving regular requests for new gTLDs to be included into
the FRED registry especially for DNS servers for nssets. The latest of these is .ruhr.
We would hence like to find out if there is a list of new gTLDs that we can insert in the FRED
registry data base to take care of these requests instead of having to do this on request when
a registrar fails to include a DNS server into an nsset.
How are the other FRED registry platform users handling this ?
Regards,
Paulos
======================
Dr Paulos B Nyirenda
NIC.MW & .mw ccTLD
http://www.registrar.mw
---
This email has been checked for viruses by AVG.
http://www.avg.com
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
Hi Doc,
We usually pull a latest list of TLD from IANA
http://data.iana.org/TLD/tlds-alpha-by-domain.txt
You can write a script to compare what you have in registry with the
list above. Take the new ones and insert them in enum_tlds
./simon
On 3/12/18 2:00 PM, fred-users-request(a)lists.nic.cz wrote:
> Send fred-users mailing list submissions to
> fred-users(a)lists.nic.cz
>
> To subscribe or unsubscribe via the World Wide Web, visit
> https://lists.nic.cz/cgi-bin/mailman/listinfo/fred-users
> or, via email, send a message with subject or body 'help' to
> fred-users-request(a)lists.nic.cz
>
> You can reach the person managing the list at
> fred-users-owner(a)lists.nic.cz
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of fred-users digest..."
>
>
> Today's Topics:
>
> 1. gTLD list to be inserted into FRED registry - .ruhr
> (Dr P Nyirenda)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Mon, 12 Mar 2018 09:33:56 +0200
> From: "Dr P Nyirenda" <paulos(a)sdnp.org.mw>
> To: fred-users(a)lists.nic.cz
> Subject: gTLD list to be inserted into FRED registry - .ruhr
> Message-ID: <5AA62D64.14050.26A3C073(a)paulos.sdnp.org.mw>
> Content-Type: text/plain; charset=US-ASCII
>
> .
>
> Is there a recommended new gTLD list recommended to be inserted into the FRED registry
> TLD database table?
>
> We at the .mw registry are now receiving regular requests for new gTLDs to be included into
> the FRED registry especially for DNS servers for nssets. The latest of these is .ruhr.
>
> We would hence like to find out if there is a list of new gTLDs that we can insert in the FRED
> registry data base to take care of these requests instead of having to do this on request when
> a registrar fails to include a DNS server into an nsset.
>
> How are the other FRED registry platform users handling this ?
>
> Regards,
>
> Paulos
> ======================
> Dr Paulos B Nyirenda
> NIC.MW & .mw ccTLD
> http://www.registrar.mw
>
>
> ---
> This email has been checked for viruses by AVG.
> http://www.avg.com
>
>
