Manualshelf

WU-FTPD 2.6.1 Release Notes for HP-UX 11i v1, HP-UX 11i v2 and HP-UX 11i v3

ManualsBrandsHP ManualsSoftwareHP-UX 11i v3 Foundation OE
11121314151617181920
cd /etc/ftpd/security
7. Copy the previously created CA certificate, the FTP server certificate, and the key
from the /opt/openssl/misc/ directory to the /etc/ftpd/security
directory:
cp /opt/openssl/misc/demoCA/cacert.pem
/etc/ftpd/security/ftpd-rsa-ca.pem
cp /opt/openssl/misc/newkey.pem
/etc/ftpd/security/ftpd-rsa-key.pem
cp /opt/openssl/misc/newcert.pem
/etc/ftpd/security/ftpd-rsa-cert.pem
The FTP server is now ready with the signed public certificate and the private key.
Creating DSA Certificates and Keys
This section provides an example to create DSA certificates and keys.
NOTE: You must create DSA certificates only if you want to use DSA certificates
instead of RSA certificates.
Following is an example to create DSA certificates and keys:
1. Create DSA parameters:
openssl dsaparam -out dsap.pem 1024
2. Create a DSA CA certificate and private key:
openssl req -x509 -newkey dsa:dsap.pem -keyout cacert.pem
-out cacert.pem
3. Create the CA directories and files:
/opt/openssl/misc/CA.pl -newca
Enter cacert.pem when prompted for the CA file name.
4. Create a DSA certificate request and private key (a different set of parameters can
optionally be created first):
openssl req -out newreq.pem -newkey dsa:dsap.pem
5. Sign the request:
CA.pl -signreq
The newcert.pem and privkey.pem files are created. newcert.pem is the
certificate that must be loaded by ftpd and cacert.pem is the CA certificate that
must be loaded by FTP to verify the server certificate.
WU-FTPD 2.6.1 Features 17