WebEx on Ubuntu 9.10 Karmic

2009.12.22

To get WebEx running on Ubuntu UNR 9.10 Karmic the following commands were run in Terminal.

1. sudo apt-get install ubuntu-restricted-extras
2. Install libstdc++5 from the following location
http://packages.debian.org/lenny/i386/libstdc++5/download

Categories : Debian
Tags :   

Mac OS X Java Update 10.6 Update 1 and Juniper SSL/VPN

2009.12.21

After running the java update on my Mac OS X Snow Leopard, I started receiving an error about a missing certificate. The company I work with utilizes client SSL certificates during the Juniper authorization process.

1. To rectify the error, I made the following entry in Terminal.

sudo keytool -storepasswd -new changeit -keystore /System/Library/Frameworks/JavaVM.framework/Resources/Deploy.bundle/Contents/Home/lib/security/cacerts -storepass changeme

2. I was then asked for my Mac user id password as I am an administrator user on the Mac.

3. Please note that you may have to reboot for the change to apply.

Categories : OS X  OS X  Snow Leopard

Mac OS X Snow Leopard and Juniper SSL/VPN

2009.12.21

If you have been using Juniper VPN on Mac OS X Leopard and you upgrade to Mac OS X Snow Leopard, you will most likely have to modify the permissions a folder and create a new folder.

Run the following sudo commands in terminal
1. cd /usr/local/juniper/nc/
Identify the version, in my case it is 6.0.0

2. sudo chmod 755 6.0.0
3. sudo mkdir ‘/Applications/Network Connect.app/Contents/Frameworks’

That should be it. Juniper SSL should be working again without an issue.

Categories : OS X  OS X  Snow Leopard

Use SSH key to access Debian from Mac OS X

2009.12.07

1. Open the OS X Terminal application

2. cd .ssh
If directory .ssh does not exist then mkdir .ssh

3. Generate SSH keys
ssh-keygen
Enter file in which to save the key (/User/xxxxx/.ssh/id_rsa): recommend leaving blank
Enter passphrase (empty for no passphrase): recommend entering passphrase
Enter same passphrase again:
Your identification has been saved in /Users/xxxxx/.ssh/id_rsa.
Your public key has been saved in /Users/xxxxx/.ssh/id_rsa.pub.

5. Access the .ssh directory on the server
cd /home/xxxxx/.ssh/
If directory .ssh does not exist then mkdir .ssh
chmod 700 /home/xxxxx/.ssh

4. Upload your public key to the server
Upload your id_rsa.pub to /home/xxxxx/.ssh/

5. Create the authorized_keys file
cat id_rsa.pub >> authorized_keys

Categories : Debian  OS X  OS X  Snow Leopard
Tags :       

Using a GoDaddy SSL Certificate with Openfire on Debian

2009.12.07

1.  Copy your key and cert to the /etc/openfire/security directory on the server
certkey.com.key
certpub.com.crt

2.  cd /etc/openfire/security

3.  Convert your key and cert to DER format in the root directory:

openssl pkcs8 -topk8 -nocrypt -in certkey.com.key -inform PEM -out certkey.key.der -outform DER
openssl x509 -in certpub.com.crt -inform PEM -out certpub.com.crt.der -outform DER

4.  Get some java utilities and place in the /etc/openfire/security directory to create a java key store from AgentBob
http://www.agentbob.info/agentbob/79.html
ImportKey.java, ImportKey.class

5.  Stop Openfire
/etc/init.d/openfire stop

6.  Backup your existing keystore
mv keystore keystore.old

7.  Create a new keystore (in root directory keystore.ImportKey):
java ImportKey certkey.com.key.der certpub.com.crt.der

8.  Change the keytool passwords back to the defaults (from ‘importkey’ to ‘changeit’)
keytool -storepasswd -keystore /root/keystore.ImportKey
keytool -keypasswd -alias importkey -keystore /root/keystore.ImportKey

9.  Download the the GoDaddy Intermediate Certificate to the /etc/openfire/security directory
wget –no-check-certificate https://certificates.godaddy.com/repository/sf_issuing.crt into the
keytool -import -alias intermed -file sf_issuing.crt -keystore /root/keystore.ImportKey -storepass changeit -trustcacerts

10.  Move the keystore to /etc/openfire/security
mv /root/keystore.ImportKey /etc/openfire/security/keystore

11.  Start Openfire
/etc/init.d/openfire start

Special thanks to http://www.lovelysystems.com/importing-an-existing-ssl-certificate-to-openfire/

Welcome tavshed.com

2009.11.21

Welcome to tavshed.com. This site is dedicated to the technology projects I have undertaken and documents the steps taken to get things to work.  I hope you find the information useful.  Please enjoy.