Required items:
1) Private key in pem format
2) Certificate in pem format
3) CA certificate in pem format
4) Openssl
Command:
openssl pkcs12 -export -in mycert.pem -inkey mykey.pem -certfile ca_cert.pem -out mycert.pfx
Thursday, May 15, 2008
Tuesday, May 13, 2008
Implement tcp wrapper in aix 5.3
0) Ensure gcc is installed and cc is linked
# which gcc
# which cc
# cd /usr/bin
# ln -s gcc cc
1) Compile tcp wrapper (read README for info)
# cd /tmp/tcp_wrappers_7.6
# make aix
2) Copy tcpd to /usr/tcpwrapper
# mkdir /usr/tcpwrapper
# cp tcpd /usr/tcpwrapper
3) Edit service to use tcpd (in this case is ftpd)
# vi /etc/inetd.conf
Original
#ftp stream tcp6 nowait root /usr/sbin/ftpd ftpd
Becomes
ftp stream tcp nowait root /usr/tcpwrapper/tcpd ftpd
4) Add in /etc/hosts.allow and /etc/hosts.deny
hosts.deny
ALL: ALL
hosts.allow
ftpd: localhost
5) tail –f /var/log/mail.log
# which gcc
# which cc
# cd /usr/bin
# ln -s gcc cc
1) Compile tcp wrapper (read README for info)
# cd /tmp/tcp_wrappers_7.6
# make aix
2) Copy tcpd to /usr/tcpwrapper
# mkdir /usr/tcpwrapper
# cp tcpd /usr/tcpwrapper
3) Edit service to use tcpd (in this case is ftpd)
# vi /etc/inetd.conf
Original
#ftp stream tcp6 nowait root /usr/sbin/ftpd ftpd
Becomes
ftp stream tcp nowait root /usr/tcpwrapper/tcpd ftpd
4) Add in /etc/hosts.allow and /etc/hosts.deny
hosts.deny
ALL: ALL
hosts.allow
ftpd: localhost
5) tail –f /var/log/mail.log
Subscribe to:
Comments (Atom)