[hunchentoot-devel] Running Hunchentoot with ssl

Andrea Chiumenti kiuma72 at gmail.com
Fri Jan 4 18:47:29 UTC 2008 

Stupid me: Ididn't checkout the logs
[2008-01-04 19:46:13 [ERROR]] Error while processing connection: SSL
initialization error: Can't load RSA private key ~A

what does it mean ?

On Jan 4, 2008 7:41 PM, Andrea Chiumenti <kiuma72 at gmail.com> wrote:

> into /home/kiuma/pem
> I've executed:
> >openssl genrsa -out CA.key 1024
> >openssl req -new -key CA.key -x509 -days 1095  -out CA.crt
>
> Country Name (2 letter code) [AU]:IT
> State or Province Name (full name) [Some-State]:Milano
> Locality Name (eg, city) []:Monza
> Organization Name (eg, company) [Internet Widgits Pty Ltd]:wingstech.priv
> Organizational Unit Name (eg, section) []:kasa.wingstech.priv
> Common Name (eg, YOUR name) []:Chiumenti Andrea
> Email Address []:my at e.mail
>
> the in slime repl:
>
> (defparameter *x* (hunchentoot:start-server :port 4443
> :ssl-certificate-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file
> #P"/home/kiuma/pem/CA.crt"))
>
> The server stays mute :((
>
> On Jan 4, 2008 7:27 PM, Brian <brian at liberatinginsight.com> wrote:
>
> > I also just noticed that you didn't provide the private key file input
> > to your start server function. Try something like:
> >
> >          (hunchentoot::start-server :port 443
> >                                     ;:ssl-privatekey-password <password
> > to key file if version of lisp supports this>
> >                                     :ssl-certificate-file
> > *ssl-certificate-path*
> >                                     :ssl-privatekey-file
> > *ssl-private-key-path*)
> >
> > You will need both the certificate and private key files to start a
> > secure server. The howto listed below provides the directions, make sure
> > you use the instructions on a self-signed certificate when producing the
> >
> > certificate file.
> >
> >
> > Brian wrote:
> > > I always use the How To's found on the OpenSSL website which you can
> > > find here
> > >
> > > http://www.openssl.org/docs/HOWTO/
> > >
> > >
> > >
> > > Andrea Chiumenti wrote:
> > >> Hello,
> > >> I'm trying to figure out how to run Hunchentoot with SSL but I'm
> > >> getting lost.
> > >> I'm using it under a gentoo linux installation.
> > >> I think the problem is with my ssl certificete file.
> > >>
> > >> to create it I use `openssl genrsa -out File.pem 1024` but since
> > >> (defparameter *x* (hunchentoot:start-server :port 4443
> > >> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the
> > >> server.
> > >>
> > >> Does anybody know how to create a test certificate file with openssl
> > >> or another tool ?
> > >>
> > >> Thanks in advance,
> > >> kiuma
> > >>
> > ------------------------------------------------------------------------
> > >>
> > >> _______________________________________________
> > >> tbnl-devel site list
> > >> tbnl-devel at common-lisp.net
> > >> http://common-lisp.net/mailman/listinfo/tbnl-devel
> > >
> > > _______________________________________________
> > > tbnl-devel site list
> > > tbnl-devel at common-lisp.net
> > > http://common-lisp.net/mailman/listinfo/tbnl-devel
> > >
> > >
> >
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20080104/886a9699/attachment.html>

More information about the Tbnl-devel mailing list