Thank you very much, it's working now!<br><br><div class="gmail_quote">On Jan 4, 2008 8:03 PM, Brian <<a href="mailto:brian@liberatinginsight.com">brian@liberatinginsight.com</a>> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
The code you included below for starting the server has a typo in it.<br>You provided the keywork :ssl-certificate-file twice. Try using this instead<br><div class="Ih2E3d"><br>(defparameter *x* (hunchentoot:start-server :port 4443
<br></div>:ssl-privatekey-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file<br><div class="Ih2E3d">#P"/home/kiuma/pem/CA.crt"))<br><br></div>Also I assume you want port 4443 and not the standard 443
<br><div class="Ih2E3d"><br><br>Andrea Chiumenti wrote:<br>> into /home/kiuma/pem<br>> I've executed:<br>> >openssl genrsa -out CA.key 1024<br>> >openssl req -new -key CA.key -x509 -days 1095  -out CA.crt
<br>><br>> Country Name (2 letter code) [AU]:IT<br>> State or Province Name (full name) [Some-State]:Milano<br>> Locality Name (eg, city) []:Monza<br>> Organization Name (eg, company) [Internet Widgits Pty Ltd]:
wingstech.priv<br>> Organizational Unit Name (eg, section) []:kasa.wingstech.priv<br>> Common Name (eg, YOUR name) []:Chiumenti Andrea<br></div>> Email Address []:<a href="mailto:my@e.mail">my@e.mail</a> <mailto:
<a href="mailto:my@e.mail">my@e.mail</a>><br><div class="Ih2E3d">><br>> the in slime repl:<br>><br>> (defparameter *x* (hunchentoot:start-server :port 4443<br>> :ssl-certificate-file #P"/home/kiuma/pem/CA.key" :ssl-certificate-file
<br>> #P"/home/kiuma/pem/CA.crt"))<br>><br>> The server stays mute :((<br>> On Jan 4, 2008 7:27 PM, Brian <<a href="mailto:brian@liberatinginsight.com">brian@liberatinginsight.com</a><br></div><div>
<div></div><div class="Wj3C7c">> <mailto:<a href="mailto:brian@liberatinginsight.com">brian@liberatinginsight.com</a>>> wrote:<br>><br>>     I also just noticed that you didn't provide the private key file input
<br>>     to your start server function. Try something like:<br>><br>>              (hunchentoot::start-server :port 443<br>>                                         ;:ssl-privatekey-password<br>>     <password
<br>>     to key file if version of lisp supports this><br>>                                         :ssl-certificate-file<br>>     *ssl-certificate-path*<br>>                                         :ssl-privatekey-file
<br>>     *ssl-private-key-path*)<br>><br>>     You will need both the certificate and private key files to start a<br>>     secure server. The howto listed below provides the directions,<br>>     make sure
<br>>     you use the instructions on a self-signed certificate when<br>>     producing the<br>>     certificate file.<br>><br>><br>>     Brian wrote:<br>>     > I always use the How To's found on the OpenSSL website which you can
<br>>     > find here<br>>     ><br>>     > <a href="http://www.openssl.org/docs/HOWTO/" target="_blank">http://www.openssl.org/docs/HOWTO/</a><br>>     ><br>>     ><br>>     ><br>>     > Andrea Chiumenti wrote:
<br>>     >> Hello,<br>>     >> I'm trying to figure out how to run Hunchentoot with SSL but I'm<br>>     >> getting lost.<br>>     >> I'm using it under a gentoo linux installation.
<br>>     >> I think the problem is with my ssl certificete file.<br>>     >><br>>     >> to create it I use `openssl genrsa -out File.pem 1024` but since<br>>     >> (defparameter *x* (hunchentoot:start-server :port 4443
<br>>     >> :ssl-certificate-file #P"/home/kiuma/File.pem")) does not start the<br>>     >> server.<br>>     >><br>>     >> Does anybody know how to create a test certificate file with
<br>>     openssl<br>>     >> or another tool ?<br>>     >><br>>     >> Thanks in advance,<br>>     >> kiuma<br>>     >><br>>     ------------------------------------------------------------------------
<br>>     >><br>>     >> _______________________________________________<br>>     >> tbnl-devel site list<br></div></div>>     >> <a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net
</a> <mailto:<a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net</a>><br><div class="Ih2E3d">>     >> <a href="http://common-lisp.net/mailman/listinfo/tbnl-devel" target="_blank">http://common-lisp.net/mailman/listinfo/tbnl-devel
</a><br>>     <<a href="http://common-lisp.net/mailman/listinfo/tbnl-devel" target="_blank">http://common-lisp.net/mailman/listinfo/tbnl-devel</a>><br>>     ><br>>     > _______________________________________________
<br>>     > tbnl-devel site list<br></div>>     > <a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net</a> <mailto:<a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net</a>
><br><div class="Ih2E3d">>     > <a href="http://common-lisp.net/mailman/listinfo/tbnl-devel" target="_blank">http://common-lisp.net/mailman/listinfo/tbnl-devel</a><br>>     ><br>>     ><br>><br>>     _______________________________________________
<br>>     tbnl-devel site list<br></div>>     <a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net</a> <mailto:<a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net</a>><br><div>
<div></div><div class="Wj3C7c">>     <a href="http://common-lisp.net/mailman/listinfo/tbnl-devel" target="_blank">http://common-lisp.net/mailman/listinfo/tbnl-devel</a><br>><br>><br>> ------------------------------------------------------------------------
<br>><br>> _______________________________________________<br>> tbnl-devel site list<br>> <a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net</a><br>> <a href="http://common-lisp.net/mailman/listinfo/tbnl-devel" target="_blank">
http://common-lisp.net/mailman/listinfo/tbnl-devel</a><br><br>_______________________________________________<br>tbnl-devel site list<br><a href="mailto:tbnl-devel@common-lisp.net">tbnl-devel@common-lisp.net</a><br><a href="http://common-lisp.net/mailman/listinfo/tbnl-devel" target="_blank">
http://common-lisp.net/mailman/listinfo/tbnl-devel</a><br></div></div></blockquote></div><br>