PGPnet does not look at the certificate "x509cert.der" that it receives
from its peer since the cert is already loaded locally.
"Seide, S" wrote:
>
> > Have you verified if FreeS/WAN's private RSA key loaded in
> > /etc/ipsec.secrets
> > matches the certificate contained in /etc/x509cert.der?
> >
> > openssl rsa -in freeswanKey.pem -noout -text
> >
> > and
> >
> > openssl x509 -inform der -in /etc/x509cert.der -noout -text
> >
> > should list the same modulus.
> >
>
> Thanks - there was a wrong key in /etc/ipsec.secrets.
>
> But, why does it work with PGPnet and X.509 certificates?
> Some months ago, I already tested this and PGP worked, using
> Win2k I got this CryptVerifySignature error. I just started
> testing again, because I needed Win2K support...
>
> Stefan
>
-- ====================================================================== Andreas Steffen e-mail: andreas.steffen_at_zhwin.ch Zuercher Hochschule Winterthur home: http://www.zhwin.ch/~sna/ CH-8401 Winterthur (Switzerland) phone: +41 76 340 25 56 ===============================================================[ZHW]== _______________________________________________ Users mailing list Users_at_lists.freeswan.org http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:47 CEST