← Back to team overview

epoptes team mailing list archive

Re: [Question #202039]: epoptes-client failed to fetch certificate

 

Question #202039 on Epoptes changed:
https://answers.launchpad.net/epoptes/+question/202039

Norbert posted a new comment:
Thanks.
I'm closer.
Actually it was firewall issue, I solve it with firestarter. It was on list of blocked connections.
Now on client:

sudo epoptes-client -c
depth=0 C = AU, ST = Some-State, O = Internet Widgits Pty Ltd
verify error:num=18:self signed certificate
verify return:1
depth=0 C = AU, ST = Some-State, O = Internet Widgits Pty Ltd
verify return:1
DONE
Successfully fetched certificate from server:789

openssl s_client -connect 192.168.1.4:789 < /dev/null | sed '/-----BEGIN CERTIFICATE-----/,/-----END CERTIFICATE-----/!d'
depth=0 C = AU, ST = Some-State, O = Internet Widgits Pty Ltd
verify error:num=18:self signed certificate
verify return:1
depth=0 C = AU, ST = Some-State, O = Internet Widgits Pty Ltd
verify return:1
-----BEGIN CERTIFICATE-----
MIICWDCCAcGgAwIBAgIJALtNkjAxQnKTMA0GCSqGSIb3DQEBBQUAMEUxCzAJBgNV
BAYTAkFVMRMwEQYDVQQIDApTb21lLVN0YXRlMSEwHwYDVQQKDBhJbnRlcm5ldCBX
[...]
vXSCal8zeFhZ52JwEkmOiilmh3RnGAnQ0plK4g==
-----END CERTIFICATE-----
DONE


On server:
sudo netstat -nap | grep :789
[sudo] password for norbert:
tcp 0 0 0.0.0.0:789 0.0.0.0:* LISTEN 6114/python

ls -lha /etc/epoptes
razem 24K
drwxr-xr-x 2 root root 4,0K lis 29 19:16 .
drwxr-xr-x 149 root root 12K gru 6 10:29 ..
-rw-r--r-- 1 root root 875 lis 29 23:07 server.crt
-rw------- 1 root root 916 lis 29 23:07 server.key

openssl s_client -connect localhost:789 < /dev/null | sed '/-----BEGIN CERTIFICATE-----/,/-----END CERTIFICATE-----/!d'
depth=0 C = AU, ST = Some-State, O = Internet Widgits Pty Ltd
verify error:num=18:self signed certificate
verify return:1
depth=0 C = AU, ST = Some-State, O = Internet Widgits Pty Ltd
verify return:1
DONE
-----BEGIN CERTIFICATE-----
MIICWDCCAcGgAwIBAgIJALtNkjAxQnKTMA0GCSqGSIb3DQEBBQUAMEUxCzAJBgNV
[...]
gSxUqHOagjnfOK5WEqll90WpTEqqKzHJyrijUTGUs2Nc+9cXlpqUb9EALLRoWI5x
A/Aine6fvLeqN5e4MXa7YcbO0HKOPM5mYR0R3bXpYTYv0UpZH/8PSkAZ1T2MlyvF
vXSCal8zeFhZ52JwEkmOiilmh3RnGAnQ0plK4g==
-----END CERTIFICATE-----

On both:
sudo service epoptes restart

But when I run on server:
epoptes
Got clients: None

It doesn't see client.

-- 
You received this question notification because you are a member of
Epoptes Developers, which is an answer contact for Epoptes.