I have done this, according to http://www.tc.umn.edu/~brams006/selfsign.html, part 1B (generating your own CA):
a) create a CA authority (ca.key and ca.crt)
b) make a certificate request (server.csr)
c) sign the certificate request (server.crt and server.key) with the new CA authority
d) change the server key so it does not ask for a passphrase.
Afterwards, the server.crt and server.key files are included in /usr/share/fred-client/ssl directory, and the fred-client configuration file is modified like this:
ssl_cert = %(dir)s/server.crt
ssl_key = %(dir)s/server.key
Now, if I try to run fred-client this is the result:
ERROR: socket.sslerror: [Errno 1] _ssl.c:480: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (200.107.82.18:700)
Certificate not signed by verified certificate authority
What should I do for fred-client to identify these certificates as valid?.
Thanks in advance.
Note: the new fred-client is perfectly compatible with FRED 2.2.
--
Mario Guerra <mguerra(a)nic.cr>
Help,
One of our staff has changed the status of a domain "Set inZone Status" to keep the domain
"administratively kept in the zone" on our FRED registry for .mw
Daphne is hence showing "serverInzoneManual - The domain is administratively kept in
zone"
Is there any way to toggle the state of the domain back to its normal status?
Can it be done in the database or by sql command?
Paulos
==============================
Dr Paulos Nyirenda
Malawi SDNP Coodinator
----------------------------------------------------------
---
This email has been checked for viruses by AVG.
http://www.avg.com
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
As you can see here below, in a few weeks we will be running our 2nd workshop for
registrars and I am looking for ideas on how to grow our community of registrars. The few
registrars that we have so far are having a tough time developing a registrar platform for EPP
connections to FRED registry.
So, I would like to learn from you on how you have grown your registrars, especially on
assisting them technically to do EPP connections. Do you have any comments on our
workshop agenda?
Do you have a portal for registrars? Do you give them fred-client? Is there a registrar that
has developed their own EPP client to connect to FRED and who is willing to share
development or source for such a client?
Please educate me !
We would be delighted if you could come to Malawi for the one day workshop?
Regards, Paulos
2nd WORKSHOP ON .MW DOMAIN
REGISTRARS
SDNP, the .mw domains registry operator, will run the 2nd .MW
Registrars Training Workshop on 24 April 2018 at the Raylls Protea
Hotel, Blantyre, Malawi. More details on the workshop are available at
SDNP registrar website at http://www.registrar.mw/registrars.php
The aim of the workshop is to assist to develop, train and support a
sustainable crop of Internet domain registrars in Malawi that do
sustainable business on the viable Malawi .mw Country Code Top Level
Domain, the .mw ccTLD, using a top of the range domain EPP registry
platform.
A detailed agenda has been developed for the workshop and a brief
version is shown here below with more details available on the above
website. Please do let us know if there is any particular topic that you
would like to be covered or emphasized.
The workshop is open to anyone interested but is particularly targeting
registrars and potential registrars. Those interested should register by
19 April 2018. Registration form is available on the above website.
There is limited space for 25 participants.
We, therefore, cordially invite you to the workshop to learn, share
knowledge and network with registrars in Malawi. As in the first
workshop we have interest from registrars from abroad who also want
to learn and to assist to share expertise and experience on how to
develop and sustain a profitable registrar operation and industry in a
place like Malawi.
The workshop fee to assist to cover the venue is MK25,000 for
accredited registrars and MK45,000 for those not yet accredited. Please
pay in advance when you register to Malawi SDNP bank account
number 674257 National Bank of Malawi, Chichiri Branch. Please bring
a laptop for the hands-on exercises.
Those who attended the first workshop are also welcome to share their
experience or ask specific questions at this workshop so as to further
develop their registrar business and operations.
TIME
TOPIC AREAS
08:00 - 08:30
Workshop Registration, verification
08:30 - 09:00
Workshop opening
Session 1
9:00 - 10:00
Overview: Domains, DNS, Registries, Registrars and
Registrants
Overview, Domains names, TLDs, Internet services, Users,
Registrants, Registrars, Registries, How DNS works, WHOIS,
framework
Session 2
10:30 - 11:00
Becoming a .mw registrar
What is a Registrar? Registrants, Registries, 2R, 3R, cases in
Africa and globally, overview on EPP - Extensible Provisioning
Protocol and its command groups
Session 3
11:00 - 11:30
Policy Framework for .mw domains
Principles, Domain Registration Policy - Registrar Accreditation
- Fees and Charges - Registrant Agreement
Session 4
11:30 - 12:30
How to grow the domain name industry in Malawi
Domain names and registrar business in Malawi - Example of a
successful registrar - presentations from EvMak(TZ),
Afriregister(BI), Lexsynergy(UK), ZACR(RSA) - ICANN
accreditation - Marketing .mw TLD, Registrar associations
LUNCH
Session 5
13:30 - 14:00
Registry and DNS operations
Global DNS system and operation - BIND and other DNS servers
- DNS zones and zone files - FRED Registry and Automatic Zone
Generation - DNS propagation
Session 6
14:00 - 15:00
Conducting EPP connections - Registry / Server Side
Requirements for registering a domain on .mw registry,
Contacts, handles, nssets, DNS servers, data validation, WHOIS -
Requirements for a registrar to connect to .mw registry,
Registrar Handle, Username and EPP Password, SSL/TLS, Private
Key and Digital Certificate.
SDNP Certification Authority, LINUX operating system tools for
Registrars, SSL, HTTP
Session 7
15:15 - 16:30
* Conducting EPP connections - Registrar / Client Side -
Practical / Demo
EPP clients, fred-client - Download, Configure, Connect, XML,
fred-client as backend of registrar website, security
* Building your own EPP client
* Transferring your current .mw domains to you to manage as a
Registrar over EPP connections
Session 8
16:30 - 170:0
Workshop evaluation
17:00 - 17:30
Closure of Workshop
Malawi SDNP Coordinator,
P.O. Box 31762, Chichiri, Blantyre 3, Malawi
NIC.MW & .mw ccTLD: http://www.registrar.mw
Tel: +265-(0)-1-874979 Cell: +265-(0)-888-824787
E-Mail: domains(a)registrar.mw
http://www.registrar.mw/registrars.php
---
This email has been checked for viruses by AVG.
http://www.avg.com
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
The following section of this message contains a file attachment
prepared for transmission using the Internet MIME message format.
If you are using Pegasus Mail, or any other MIME-compliant system,
you should be able to save it or view it from within your mailer.
If you cannot, please ask your system administrator for assistance.
---- File information -----------
File: hts_1.PNG
Date: 9 Apr 2018, 18:59
Size: 7433 bytes.
Type: Unknown
The following section of this message contains a file attachment
prepared for transmission using the Internet MIME message format.
If you are using Pegasus Mail, or any other MIME-compliant system,
you should be able to save it or view it from within your mailer.
If you cannot, please ask your system administrator for assistance.
---- File information -----------
File: hts_2.JPG
Date: 9 Apr 2018, 18:59
Size: 8575 bytes.
Type: Unknown
The following section of this message contains a file attachment
prepared for transmission using the Internet MIME message format.
If you are using Pegasus Mail, or any other MIME-compliant system,
you should be able to save it or view it from within your mailer.
If you cannot, please ask your system administrator for assistance.
---- File information -----------
File: hts_3.PNG
Date: 9 Apr 2018, 18:59
Size: 15205 bytes.
Type: Unknown