search

cvca / tunnelblick

Automatically exported from code.google.com/p/tunnelblick
0 stars 0 forks source link

No server certificate verification method has been enabled #118

Closed GoogleCodeExporter closed 9 years ago

GoogleCodeExporter commented 9 years ago 
this is what i get when i try to connect:

2009-10-13 19:40:27 *Tunnelblick: Tunnelblick 3 (3.0b20 build 1206);
OpenVPN 2 (2.1_rc19)
2009-10-13 19:40:31 SUCCESS: pid=92337
2009-10-13 19:40:31 SUCCESS: real-time state notification set to ON
2009-10-13 19:40:31 SUCCESS: real-time log notification set to ON
2009-10-13 19:40:30 OpenVPN 2.1_rc19 i386-apple-darwin9.8.0 [SSL] [LZO2]
[PKCS11] built on Oct  9 2009
2009-10-13 19:40:30 MANAGEMENT: TCP Socket listening on 127.0.0.1:1337
2009-10-13 19:40:30  waiting...
2009-10-13 19:40:31 MANAGEMENT: Client connected from 127.0.0.1:1337
2009-10-13 19:40:31 MANAGEMENT: CMD 'pid'
2009-10-13 19:40:31 MANAGEMENT: CMD 'state on'
2009-10-13 19:40:31 MANAGEMENT: CMD 'log on all'
2009-10-13 19:40:31 END
2009-10-13 19:40:31 MANAGEMENT: CMD 'hold release'
2009-10-13 19:40:31 SUCCESS: hold release succeeded
2009-10-13 19:40:31 WARNING: No server certificate verification method has
been enabled.  See http://openvpn.net/howto.html#mitm for more info.
2009-10-13 19:40:31 NOTE: the current --script-security setting may allow
this configuration to call user-defined scripts
2009-10-13 19:40:31 Cannot load certificate file client.crt:
error:02001002:system library:fopen:No such file or directory:
error:20074002:BIO routines:FILE_CTRL:system lib: error:140AD002:SSL
routines:SSL_CTX_use_certificate_file:system lib

Original issue reported on code.google.com by sel...@gmail.com on 13 Oct 2009 at 5:40

GoogleCodeExporter commented 9 years ago 
The key to understanding the problem is the error message "Cannot load 
certificate file client.crt"

Your configuration file refers to a certificate file named client.crt, which 
doesn't exist (at least not in the 
~/Library/openvpn folder).

Did you read the OpenVPN "howto", as the error message suggests?

If you have further questions, please post in the Tunnelblick Discussion Group 
at
http://groups.google.com/group/tunnelblick-discuss
where there are often more people who can help.

"Issues" is usually monitored only by the developers (and is for problems with 
the Tunnelblick program itself, 
not for configuration issues such as yours).

Original comment by jkbull...@gmail.com on 13 Oct 2009 at 5:53