implementing CAcert certificate

[MadMax]

Hi all!

I am using an UnrealIRCd 3.2.8.1 on a Debian os. Until today I used a self-signed certificate for ssl connections. Now I implemented a public key, that is certified by CAcert. Of course I also use the matching private key.

unrealircd.conf:

Code: Select all

set {
[...]
  ssl {
    certificate server.crt.pem;
    key server.key.pem;
  };
[...]
}

Up to this point everything was ok, but on connect I got the message "unable to get local issuer certificate":

* Searching engine.bikers-irc.net
* Conecting to engine.bikers-irc.net (80.81.243.41) Port 6679...
* * Certification info:
* Subject:
* CN=engine.bikers-irc.net
* Issuer:
* O=CAcert Inc.
* OU=http:
*
* http://www.CAcert.org
* CN=CAcert Class 3 Root
* Public key algorithm: rsaEncryption (2048 bits)
* Sign algorithm sha1WithRSAEncryption
* Valid since Mar 13 15:20:11 2010 GMT to Mar 12 15:20:11 2012 GMT
* * Cipher info:
* Version: TLSv1/SSLv3, cipher AES256-SHA (256 bits)
* Connection failed. Error: unable to get local issuer certificate.? (20)

Can someone tell me how to implement the local issuer certificate? Is it the CAcert Class 3 Root Certificate?

Many thanks for your help!

[MadMax]

Heya!

I solved the Problem. I had to integrate the CAcert key, that was used to certify my public key. There are no details or examples to this point in the documentation.

Code: Select all

set {
  [...]
  ssl {
    certificate server.crt.pem;
    key server.key.pem;
    trusted-ca-file class3.crt;
  };
  [...]
}

I would like to take this opportunity to note, that it is absolutely annoying to do this stupid quiz in the channel #unreal-support after several hours of internet research. I must have done a mistake... Anyway I was banned for 24 hours from the support channel because I failed the quiz! I needed help and did not want to play! You have earned it the title "worst support team of the open source community"!

[Stealth]

This is the part where I make you look stupid because you complained about the quiz.

I would like to take this opportunity to note, that it is absolutely annoying to do this stupid quiz in the channel #unreal-support after several hours of internet research.

There is a link to the FAQ item explaining the need for the quiz in multiple places.

I must have done a mistake... Anyway I was banned for 24 hours from the support channel because I failed the quiz!

You made 2 "mistakes", one referring to basic documentation and one referring to basic networking. If you're playing with certificates I'd think you would be able to answer all the networking questions just fine.

It states very clearly on the quiz page that you won't get support if you can't pass. It isn't our problem if you did not check your answers or rushed through the quiz, as you were allowed to pop open Google or read as much documentation you want while taking it.

I needed help and did not want to play! You have earned it the title "worst support team of the open source community"!

Providing support is not a requirement and is provided as a courtesy to users. Because of such, we have chosen to make IRC support only available to those who qualify which is why there needs to be a quiz.

If you did so much research you would know all the answers and not fail.

[MadMax]

Oh well... Please close the topic! I told you I did not wanna play and I dit not take it seriously.

[Stealth]

If you "did not want to play" then you would have taken it seriously because you wanted support. Instead you decided to play around by not reading the warnings and got banned.

People who seriously want support get support because pass the quiz and don't play around.

I hope you learned something from this experience.

[MadMax]

I have already said... After several hours searching the internet I had no nerves for a quiz. Whatever...

I will not respond again to this thread. The discussion is not about the topic. I have just told my opinion about my first experience with this support. You have your own opinion! It's ok! So close the thread and go on playing quiz!