WelcomeWelcome | FAQFAQ | DownloadsDownloads | WikiWiki

Recent Posts

Pages: [1] 2 3 ... 10
1
Release Candidates / Re: Announcements
« Last post by Jason W on Today at 05:55:49 AM »
Ok, forgot to update it, should be there now.
2
dCore Imported Extensions / Re: ca-certificates
« Last post by Jason W on Today at 05:02:56 AM »
Before spending any more time with what is the current ca-certificates package, I have a very simple solution.

Will upload shortly.
3
Release Candidates / Re: Announcements
« Last post by jls_legalize on Today at 04:58:50 AM »
Hi
I don't see any update regarding the update routine in dCore-scripts.git
Thanks
4
dCore Imported Extensions / Re: ca-certificates
« Last post by gordon64 on Today at 03:51:43 AM »
Hi
Quote
of course, in the mozilla subfolder.
then you have none in the parent directory /etc/ssl/certs?

Quote
Do you have a list, an overview over these browsers and apps?
My bad, I mean, for those browsers that do not use their own certificates, and support https
----they tend to look in /etc/ssl

firefox and opera(-12) ON 32/64 bit use their own certs.
AFAIK, if built that way elinks, lynx use openssl certs.
fifth handles certificates differently, invented by Curaga and shows here
http://fifth-browser.sourceforge.net/features.html
Quote
CAs are ignored, the only thing that matters is that the cert does not change

2) ca-certificates.crt is a bundle of certificates, hence I called it a bundle....sorry for not explaining

3) I don't and have never used dcore but looking at your link on the script, I am sure the maintainer can explain it better than I can. but I will give it a go
################
if the directory /etc/ssl/certs  does not exist then create it.
next because the script is already in the directory /usr/share/ca-certificates
copy those files to /etc/ssl/certs/
##################
4) Can you see that its the contents of the top level of /etc/ssl/certs/ that is important. Its OK to have a sub-folder as long as certificates exist in the certs directory (folder)

good luck
5
dCore Imported Extensions / Re: ca-certificates
« Last post by Jason W on Today at 03:11:47 AM »
Ok, looking at my HD install I see what needs to be done.
6
dCore Imported Extensions / Re: ca-certificates
« Last post by hiro on Today at 02:01:20 AM »
Do you have any crt or pem files in /etc/ssl/certs?
of course, in the mozilla subfolder.

Quote
Most web browsers and some apps look in that folder.
How did you find out? Do you have a list, an overview over these browsers and apps?

Quote
Leaping ahead, without knowing your answer etc
 you could try this assuming individual crt files in mozilla
The reason for the move bundle command is c_rehash only looks at the first certificate in the bundle in hashing it, giving you a duplicate error we don't need. Delete that line if you have no bundle. But if possible pls advise if you have no bundle.
I don't know what you are suggesting here. What is a move bundle command? I didn't get any duplicate error? What do you mean?

btw, here is the current dcore deb2sce script: http://tinycorelinux.net/dCore/import/ca-certificates.deb2sce
and here the tc 6 extension: http://tinycorelinux.net/6.x/x86/tcz/openssl.tcz

Be aware there's also a postinst script in the deb which I tried to read but can't understand the purpose of.
And are we even running the postinst script?
7
dCore Imported Extensions / Re: ca-certificates
« Last post by gordon64 on August 29, 2015, 05:25:21 PM »
Quote
/etc/ssl/certs/mozilla/

Do you have any crt or pem files in /etc/ssl/certs?

Most web browsers and some apps look in that folder.

Leaping ahead, without knowing your answer etc
 you could try this assuming individual crt files in mozilla
The reason for the move bundle command is c_rehash only looks at the first certificate in the bundle in hashing it, giving you a duplicate error we don't need. Delete that line if you have no bundle. But if possible pls advise if you have no bundle.

Code: [Select]
sudo su
mv /etc/ssl/certs/mozilla/ca-certificates.crt /etc
ln -s /etc/ssl/certs/mozilla/* /etc/ssl/certs/
cd /etc/ssl
c_rehash
mv /etc/ca-certificates.crt  /etc/ssl/certs/

good luck


8
dCore Imported Extensions / Re: ca-certificates
« Last post by hiro on August 29, 2015, 01:01:38 PM »
The only thing to get anything working on dcore for me is to do
sudo c_rehash /etc/ssl/certs/mozilla/
and then specify capath to mozilla dir, e.g.
strace openssl s_client -connect  google.com:443 -CApath /etc/ssl/certs/mozilla/

same in irssi, with capath specified as /etc/ssl/certs/mozilla/ it works now, but it required the rehash first.
9
dCore Imported Extensions / Re: ca-certificates
« Last post by hiro on August 29, 2015, 12:44:46 PM »
With "hardcoded" in irssi I mean I specified the CA path in the config file. On 6.x specifying /etc/ssl/certs works.
The irssi used on dcore is the one from debian. There specifying /etc/ssl/certs with only the mozilla folder beneath doesn't succeed.
It doesn't really matter what I do in irssi though, cause even with plain openssl I get the same result. It might be that the above example needs -CApath /etc/ssl/ appended to the openssl command. Without it also doesn't succeed on tc 6.0.
10
Release Candidates / Re: Announcements
« Last post by Jason W on August 29, 2015, 10:21:48 AM »
New fix to the update routine, all dCore x86 ports updated.  If no issues in the coming days, I will move to release.

http://tinycorelinux.net/dCore/x86/release_candidates/
Pages: [1] 2 3 ... 10