From 26b08fd87c60d193388b6657596c7c9801c9abe4 Mon Sep 17 00:00:00 2001 From: Nikos Mavrogiannopoulos Date: Wed, 1 Oct 2008 15:50:40 +0000 Subject: updated README file to account for openpgp keys --patch by Jack Bates --- README | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) (limited to 'README') diff --git a/README b/README index 5198ed7..34054b6 100644 --- a/README +++ b/README @@ -109,3 +109,22 @@ NameVirtualHost 1.2.3.4:443 GnuTLSClientCAFile ca.pem GnuTLSPGPKeyringFile /etc/apache2/ring.asc + +Create OpenPGP credentials for the server: + +IMPORTANT: mod_gnutls currently cannot read encrypted OpenPGP credentials. That +is, when you generate a key with gpg and gpg prompts you for a passphrase, just +press enter. Then press enter again, to confirm an empty passphrase. +http://news.gmane.org/gmane.comp.apache.outoforder.modules + +These instructions are from the GnuTLS manual: +http://www.gnu.org/software/gnutls/manual/html_node/Invoking-gnutls_002dserv.html#Invoking-gnutls_002dserv + + $ gpg --gen-key + ...enter whatever details you want, use 'test.gnutls.org' as name... + +Make a note of the OpenPGP key identifier of the newly generated key, here it +was 5D1D14D8. You will need to export the key for GnuTLS to be able to use it. + + $ gpg -a --export 5D1D14D8 > openpgp-server.txt + $ gpg -a --export-secret-keys 5D1D14D8 > openpgp-server-key.txt -- cgit