On Wed, 2012-02-22 23:38:53 +0000, Thomas Manson wrote:
[..]
the CRT file is generated by my registrar. If it's in the wrong format, How can I convert it?
[..]
Key file: /etc/stunnel/sites/mansonthomas.com/mansonthomas.com.crt error queue: 140B0009 : error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib SSL_CTX_use_PrivateKey_file: 906D06C: error:0906D06C:PEM routines:PEM_read_bio:no start line [..]
root@ns0:/etc/stunnel/sites/mansonthomas.com# cat mansonthomas.com.crt -----BEGIN CERTIFICATE----- [..] -----END CERTIFICATE----- -----BEGIN DH PARAMETERS----- ..... -----END DH PARAMETERS-----
Thomas, If there is no "-----BEGIN RSA PRIVATE KEY-----" in mansonthomas.com.crt, then there is no key in. You should be provided with a file containing the key. If this is in DER format (*.pfx or *.p12), you'll have to convert it first: openssl pkcs12 -in <der file> -out <pem file> HTH, Ludolf -- --------------------------------------------------------------- Ludolf Holzheid Tel: +49 621 339960 Bihl+Wiedemann GmbH Fax: +49 621 3392239 Floßwörthstraße 41 e-mail: lholzheid@bihl-wiedemann.de D-68199 Mannheim, Germany ---------------------------------------------------------------