| From: |
"Steven Levine" <ecs-isp@2rosenthals.com> |
Full Headers
Undecoded message |
| Subject: |
Re: [eCS-ISP] Apache HTTPS |
| Date: |
Mon, 12 Aug 2024 10:33:50 -0700 |
| To: |
"eCS ISP Mailing List" <ecs-isp@2rosenthals.com> |
|
|---|
In <list-10572839@2rosenthals.com>, on 08/12/24
at 05:10 PM, "Paul Smedley" <ecs-isp@2rosenthals.com> said:
Hi Paul,
>If I was to guess, uacme is built using a staically linked libcurl
>which I built locally, which doesn't look in the right spot for SSL root
>certificates. I should probably rebuild uacme using libcurl from rpm....
This was another path rewriter issue. uacme was looking for
/etc/ssl/cacert.pem which will map to %ETC/ssl/cacert.pem.
According to the docs, uacme.exe expects to have hard links supported.
With cacert.pem in the expected place we get
>uacme -v -s newkey
...
uacme.exe: failed to link /etc/ssl/uacme/private/key-1723484618.pem to
/etc/ssl/uacme/private/key.pem: Function not implemented
Perhaps we should patch uacme to use copy rather than link?
Thanks,
Steven
--
----------------------------------------------------------------------
"Steven Levine" <steve53@earthlink.net> Warp/DIY/BlueLion etc.
www.scoug.com www.arcanoae.com www.warpcave.com
----------------------------------------------------------------------
|