Go Back   DaemonForums > OpenBSD > OpenBSD Installation and Upgrading

OpenBSD Installation and Upgrading Installing and upgrading OpenBSD.

Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 12th November 2013
shep shep is offline
Rc.conf Instructor
Join Date: May 2008
Location: Dry and Dusty
Posts: 1,111
Default [Solved]M:Tier ssl certificate

I am looking at the updated M:Tier packages ImageMagick and icu4. I have patched both ssl and the kernel with the most recent patches for 5.4stable.

I was going to try to manually update ImageMagick and icu4 from a local directory.
# pkg_add -u ImageMagick
system(/usr/sbin/openssl, smime, -verify, -binary, -inform, DEM, -in, /tmp/pkgsig.OTHRZCIbb, -content, /tmp/pkgcontent.XZHz7Fv5I, -CAfile, /etc/ssl/pkgca.pem, -out, /dev/null) failed: exit(2)
--- +ImageMagick- -------------------
Bad signature
Error loading file /etc/ssl/pkgca.pem
8908934914960:error:02001002:system library:fopen:No such file or directory:/usr/src/lib/libssl/crypto/../src/crypto/bio/bss_file.c:169:fopen('/etc/ssl/pkgca.pem','r')
8908934914960:error:2006D080:BIO routines:BIO_new_file:no such file:/usr/src/lib/libssl/crypto/../src/crypto/bio/bss_file.c:172:
8908934914960:error:0B084002:x509 certificate routines:X509_load_cert_crl_file:system lib:/usr/src/lib/libssl/crypto/../src/crypto/x509/by_file.c:274:
Couldn't find updates for jbigkit-2.0, libwmf-, lcms2-2.4p0, xz-5.0.5, bzip2-1.0.6p0, netpbm-10.35.88p0, tiff-4.0.3p2, libltdl-2.4.2, libxml-2.9.0p0, djvulibre-, jasper-1.900.1p2, ghostscript-9.06p2, fftw3-3.2.2p2, libiconv-1.14p0, png-1.6.2p0, transfig-3.2.5ap0
Fatal error: ImageMagick-> is corrupted
 at /usr/libdata/perl5/OpenBSD/PkgAdd.pm line 672.
So I need to install M:Tier's certificate
1) Install the M:Tier certificate

Retrieve the certificate and install it into:

I 've looked in the FAQ and ssl(8) but am confused by both the signing authority and format of the mtier.cert.

Can someone point me to a reference?

Thanks in advance

Last edited by shep; 12th November 2013 at 05:03 PM.
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Security Would you knowingly trust an irrevocable SSL certificate? J65nko News 0 24th May 2013 06:56 PM
Security Banking trojan with a DIGITAL CERTIFICATE J65nko News 0 6th February 2013 11:48 AM
Current Packages in 2nd Tier US mirrors shep OpenBSD Installation and Upgrading 0 4th April 2012 02:00 PM
Trustwave issued a man-in-the-middle certificate J65nko News 2 21st February 2012 10:41 PM
Further evidence of Certificate Authority break-ins J65nko News 0 27th October 2011 08:18 PM

All times are GMT. The time now is 03:04 AM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick