Hi, I am running a HostAPD server on openSUSE and I am having some problems with certificates. The reason why I have set up this server is for learning and testing purposes.
I am using my nokia (n95) phone to connect to the Internet and authenticating via the HostAPD server. I am using openssl to create certificates on the same server The thing is that my Nokia phone has support for following cipher suites: RSA, 3DES, SHA RSA, AES, SHA RSA, RC4, MD5 RSA, RC4, SHA DHE-RSA, 3DES, SHA DHE-DSS, 3DES, SHA DHE-RSA, AES, SHA DHE-DSS, AES, SHA The four first cipher suites are no problem. I have created certificates for them to work and it works, but the problem is with the DHE certificates. As far as I have been able to learn is that the DHE-RSA cipher suites use DH for key exchange and RSA for authentication, and the DHE-DSS cipher suites use DH for key exchange and DSA for authentication. So my problem is creating the right certificates and keys with openssl for DH key exchange with RSA and with DSA. I would de more than thankful if anyone can tell me how to create this in openssl. Best regards, Majd
