bash:openssl:command not found error on generating ssl certificate on postfix centos

SarahGurung · 07-25-2014, 06:45 AM

Hello,

I configured by postfix server with sasl for smtp auth and since wihtout tls it isn't secure,i want to create ssl certificate.

I did the following as per one document:
mkdir /etc/postfic/ssl
cd /etc/postfix/ssl

if /usr/bin/openssl exists:
mv /usr/bin/openssl /usr/bin/openssl_orig

ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl(i did this though there is no /usr/local/ssl)
openssl genrsa -des3 -rand /etc/hosts -out smtpd.key 1024

and on running the last command it said:

Code:

bash: openssl: command not found

openssl and openssl-devel are installed. So whats could be the issue?

T3RM1NVT0R · 07-25-2014, 07:13 AM

From the error message it says command not found which means it is not able to find the binary. As you said that openssl and openssl-devel package is already install then it appears to be search path issue. Try the following:

1. Try to find openssl binary using

Code:

find / -name openssl

Once you get the location of openssl binary, then check your PATH variable using:

2.

Code:

echo $PATH

check if it contains the path where you found openssl binary. Incase you are unable to find openssl binary from step 1 itself then the files are missing and you should better re-install the package.

SarahGurung · 07-25-2014, 07:22 AM

on running the first command i got the following:

Code:

find / -name openssl
/etc/pki/ca-trust/extracted/openssl
/usr/lib64/openssl
/usr/include/openssl
/usr/bin/openssl

on running the 2nd command from /etc/postfix/ssl/ i got the following:

Code:

 echo $PATH
/usr/lib64/qt-3.3/bin:/usr/local/bin:/bin:/usr/bin:/usr/local/sbin:/usr/sbin:/sbin:/home/sarah/bin

What is possibly wrong and what should i do now?

T3RM1NVT0R · 07-25-2014, 07:26 AM

I can see from the output you pasted that /usr/bin is in the path and binary also exist. What happens if you try to execute the command as follows:

Code:

/usr/bin/openssl

SarahGurung · 07-25-2014, 07:31 AM

Well on running that way from /etc/postfix/ssl(usr/bin/openssl genrsa -des3 -rand /etc/hosts -out smtpd.key 1024 from /etc/postfix/ssl) it says the following:

Code:

bash: /usr/bin/openssl: No such file or directory

T3RM1NVT0R · 07-25-2014, 07:34 AM

I am not sure which document you referred but you renamed your original openssl to openssl_orig and then created a soft link. Why you need to do that? YOu also mention that location does not exist still you created softlink. Revert the changes that you have done and it will work fine. Share the document which you are referring as I a not sure why they suggested to do it that way.

SarahGurung · 07-25-2014, 07:38 AM

hello,

i have the doucment in only printed form so i do not have the location to share..

Now how do i revert the changes?

SarahGurung · 07-25-2014, 07:47 AM

Thank you...That worked..