I have done this, according to http://www.tc.umn.edu/~brams006/selfsign.html, part 1B (generating your own CA):
a) create a CA authority (ca.key and ca.crt)
b) make a certificate request (server.csr)
c) sign the certificate request (server.crt and server.key) with the new CA authority
d) change the server key so it does not ask for a passphrase.
Afterwards, the server.crt and server.key files are included in /usr/share/fred-client/ssl directory, and the fred-client configuration file is modified like this:
ssl_cert = %(dir)s/server.crt
ssl_key = %(dir)s/server.key
Now, if I try to run fred-client this is the result:
ERROR: socket.sslerror: [Errno 1] _ssl.c:480: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca (200.107.82.18:700)
Certificate not signed by verified certificate authority
What should I do for fred-client to identify these certificates as valid?.
Thanks in advance.
Note: the new fred-client is perfectly compatible with FRED 2.2.
--
Mario Guerra <mguerra(a)nic.cr>
Hi,
We try to install Fred for review features and start to use product. For
installation we use link —
https://fred.nic.cz/documentation/html/AdminManual/Installation/BinsUbuntu.…
(1.2.2). But can't pass step 7.
We got dependencies error (see below). fred-webwhois-apache needs
*1.17.0-1~xenial+1*, but maximal package that I found on archive.nic.cz
is *1.16.1-1~xenial+1*. How to resolve this problem?
Sincerely, Lem
*/root@fred:~# apt install fred-webwhois-apache /*/
/
/Reading package lists... Done/
/Building dependency tree /
/Reading state information... Done/
/Some packages could not be installed. This may mean that you have/
/requested an impossible situation or if you are using the unstable/
/distribution that some required packages have not yet been created/
/or been moved out of Incoming./
/The following information may help to resolve the situation:/
/The following packages have unmet dependencies:/
/ fred-webwhois-apache : Depends: fred-webwhois (=
1.17.0-1~xenial+1) but 1.16.1-1~xenial+1 is to be installed or/
/ fred-webwhois-py3 (=
1.17.0-1~xenial+1) but it is not going to be installed/
/E: Unable to correct problems, you have held broken packages./
*/root@fred:~# lsb_release -a/*
/No LSB modules are available./
/Distributor ID: Ubuntu/
/Description: Ubuntu 16.04.6 LTS/
/Release: 16.04/
/Codename: xenial/
