Solution mandos-client: Error[-64] while reading the key pair
Teddy Hogeborn
teddy at recompile.se
Mon Sep 20 19:36:11 CEST 2021
Juan Miguel Alcarria Herrera <juanmi at arco2000.es> writes:
> Hi Teddy! All is working, to the problem that appers when i execute:
>
> /usr/lib/arm-linux-gnueabihf/mandos/plugins.d/mandos-client
> --pubkey=/etc/keys/mandos/pubkey.txt --seckey=/etc/keys/mandos/seckey.txt
> --connect=192.168.1.137:9000; echo
>
> mandos-client: Error[-64] while reading the key pair
> ('/conf/conf.d/mandos/tls-pubkey.pem','/conf/conf.d/mandos/tls-privkey.pem')Mandos
> plugin mandos-client: The GnuTLS error is: Error while reading file.Mandos
> plugin mandos-client: init_gnutls_global failed*
>
> I have created a simbolic link like this:
>
> root at openfone1:/usr/src# mkdir -p /conf/conf.d
> root at openfone1:/usr/src# cd /conf/conf.d
> root at openfone1:/conf/conf.d# ln -s /etc/keys/mandos .
>
> The command is working now ;-)
I would recommend against doing that; the /conf/conf.d directory is only
normally present in the initramfs image environment, and should not
normally be present on a full Debian system. Making mandos-client read
from /etc/keys/mandos instead of /conf/conf.d is what those --pubkey=
and --seckey= options are for. Please make sure that you are actually
passing those options on the same line as the "mandos-client" command.
/Teddy Hogeborn
--
The Mandos Project
https://www.recompile.se/mandos
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 832 bytes
Desc: not available
URL: <http://mail.recompile.se/pipermail/mandos-dev/attachments/20210920/00c4dfcd/attachment.sig>
More information about the Mandos-Dev
mailing list