[Openswan Users] OpenSWAN truncating NSS passwords
John A. Sullivan III
jsullivan at opensourcedevel.com
Fri Oct 23 11:59:12 EDT 2009
On Fri, 2009-10-23 at 16:42 +0200, Marek Greško wrote:
> Dňa Pi 23. Október 2009 John A. Sullivan III napísal:
> <snip>> create file /etc/ipsec.d/nss.certs with the following:
> > @fqdn: RSA "<name of certificate in nss db>" ""
>
> If your nss database is protected by a password, it goes also there (thought
> it is mypassword:
> @fqdn: RSA "<name of certificate in nss db>" "mypassword"
>
>
> > Edit /etc/ipsec.secrets to reflect the cert nick name rather
> >
> > than the key:
> > : RSA "<name of certificate in nss db>"
>
> /etc/ipsec.secrets should contain only:
>
> include /etc/ipsec.d/*.secrets
>
>
> Hope this helps.
<snip>
Yes, that explains why we needed to add an ipsec.secrets entry when I
didn't think we had to.
--
John A. Sullivan III
Open Source Development Corporation
+1 207-985-7880
jsullivan at opensourcedevel.com
http://www.spiritualoutreach.com
Making Christianity intelligible to secular society
More information about the Users
mailing list