Hi all, known as ruenoak on the list. with a bit of trial and error and help from Chris Were's Youtube tutorial, I finally go my Gemini server up and running. Seem to be having a little trouble with text wrapping for some reason, not sure why yet. Gemini is what I have been waiting for,? just clean beautiful text. gemini://cratermouse.com All the best ruenoak
On Wed Feb 10, 2021 at 8:40 AM CET, reuben wrote: > gemini://cratermouse.com I can't load this in amfora, but lagrange can load it, even tho it's complaining about an Untrusted Certificate (CN = YOURDOMAIN.COM) Maybe try generating your certificates with this: openssl req -newkey rsa:2048 -nodes -keyout cratermouse.com.key -nodes -x509 -out cratermouse.com.crt -subj "/CN=cratermouse.com" that's what I use to generate my certificates
On Wed, Feb 10, 2021 at 09:08:07AM +0100, metalune <metalune at mailbox.org> wrote a message of 12 lines which said: > I can't load this in amfora, Indeed, the problem is that the certificate is not issued for cratermouse.com but for yourdomain.com: % gnutls-cli -p 1965 cratermouse.com ... - Certificate[0] info: - subject `CN=YOURDOMAIN.COM', The specification <gemini://gemini.circumlunar.space/docs/specification.gmi> is silent about that (a general problem of section 4) so all clients, whether they accept or reject this certificate, are right.
metalune <metalune at mailbox.org> writes: > On Wed Feb 10, 2021 at 8:40 AM CET, reuben wrote: >> gemini://cratermouse.com A fellow Emacs user! Welcome! =) There's a problem with the ASCII art, you should enclose it in ``` so it's treated as a verbatim block; not every client uses monospace to render the lines, and it could confuse screen readers and such :) P.S.: you may want to check out elpher, an Emacs client for Gemini > I can't load this in amfora, but lagrange can load it, even tho it's > complaining about an Untrusted Certificate (CN = YOURDOMAIN.COM) > Maybe try generating your certificates with this: > > openssl req -newkey rsa:2048 -nodes -keyout cratermouse.com.key -nodes P.P.S. maybe it's just me, I'd bump that 2048 ;) > -x509 -out cratermouse.com.crt -subj "/CN=cratermouse.com" > > that's what I use to generate my certificates
Thanks Omar Polo for the ASCII tip I will try it. I've heard about elpher, I'll give it a try. metalune, I generated the keys again, I still get a self-signed and untrusted key warning in the Kristall browser. Kristall and Ariane on my phone are the only two browser I have installed at the moment i will need to add a few more for testing I'm thinking. Thanks. Omar Polo wrote: > metalune <metalune at mailbox.org> writes: > >> On Wed Feb 10, 2021 at 8:40 AM CET, reuben wrote: >>> gemini://cratermouse.com > A fellow Emacs user! Welcome! =) > > There's a problem with the ASCII art, you should enclose it in ``` so > it's treated as a verbatim block; not every client uses monospace to > render the lines, and it could confuse screen readers and such :) > > P.S.: you may want to check out elpher, an Emacs client for Gemini > >> I can't load this in amfora, but lagrange can load it, even tho it's >> complaining about an Untrusted Certificate (CN = YOURDOMAIN.COM) >> Maybe try generating your certificates with this: >> >> openssl req -newkey rsa:2048 -nodes -keyout cratermouse.com.key -nodes > P.P.S. maybe it's just me, I'd bump that 2048 ;) > >> -x509 -out cratermouse.com.crt -subj "/CN=cratermouse.com" >> >> that's what I use to generate my certificates
On Wed, Feb 10, 2021 at 10:12:13PM +1300, reuben <reuben at cratermouse.com> wrote a message of 32 lines which said: > I generated the keys again, I still get a self-signed and untrusted > key warning The problem were not the keys, regenerating them does not help. The problem is the owner of the certificate (subject, in X.509 parlance), which is yourdomain.com when it should be cratermouse.com. % gnutls-cli -p 1965 cratermouse.com ... - Certificate[0] info: - subject `CN=YOURDOMAIN.COM',
Thanks Stephane seems to all be working now Thanks Reuben Stephane Bortzmeyer wrote: > On Wed, Feb 10, 2021 at 10:12:13PM +1300, > reuben <reuben at cratermouse.com> wrote > a message of 32 lines which said: > >> I generated the keys again, I still get a self-signed and untrusted >> key warning > The problem were not the keys, regenerating them does not help. The > problem is the owner of the certificate (subject, in X.509 parlance), > which is yourdomain.com when it should be cratermouse.com. > > % gnutls-cli -p 1965 cratermouse.com > ... > - Certificate[0] info: > - subject `CN=YOURDOMAIN.COM', >
---