> The certificate that is on there right now is the one that gets created when you install elogs.  I have tried 
> creating one with a windows server 2008 box with the CA role installed.  The certificate is created without issue 
> and I can install it on the server but when I try to restart the elog service it wont start until I put the 
> original server.crt and server.key file back into the ssl directory.  

How did you install the certificate? Maybe it ended up in the IIS directory and not in the elog directory?

> > The certificate that is on there right now is the one that gets created when you install elogs.  I have tried 
> > creating one with a windows server 2008 box with the CA role installed.  The certificate is created without issue 
> > and I can install it on the server but when I try to restart the elog service it wont start until I put the 
> > original server.crt and server.key file back into the ssl directory.  
> 
> How did you install the certificate? Maybe it ended up in the IIS directory and not in the elog directory?

That is a good point.  I just installed the cert by double clicking on it.  Then selecting either trusted root CA or 
personal to install the certificate.  Is there a different way to install the certificate for elog?

Thanks alot for your help.

> > 
> > The certificate that is on there right now is the one that gets created when you install elogs.  I have tried 
> > creating one with a windows server 2008 box with the CA role installed.  The certificate is created without issue 
> > and I can install it on the server but when I try to restart the elog service it wont start until I put the 
> > original server.crt and server.key file back into the ssl directory.  
> > 
> 
> I don't know anything about Windows server CA, but eLog is very strict in the syntax of the CERTs.
> I had to learn it the hard way when installing a chain CERT.
> 
> For server.crt and server.key it MUST NOT be a chain cert. Therefor you have to use chain.crt
> 
> Are the generated CERTs ASCII (with only one -----BEGIN CERTIFICATE----- and -----END CERTIFICATE----- in
> server.crt 
> and -----BEGIN RSA PRIVATE KEY----- and -----END RSA PRIVATE KEY----- in server.key)?
> 
> So the eLog generated keys should look like..
> 
> GS

Thanks for your reply.  I appreciate it alot.

When I created my certificate it came out as a .cer [there was no .key file] and looking at the code that was posted 
below it looks like unless there is a server.crt and server.key file in the ssl folder the program will exit:  So I 
guess I need to figure out how to generate a certificate that elog will understand using a .key file and a .crt file.  
So I might have to research certificates more.

To be honest I'm not an expert on SSL. I just use following code inside ELOG to initialize the SSL connection:

SSL_CTX *init_ssl(void)
{
   char str[256];
   SSL_METHOD *meth;
   SSL_CTX *ctx;

   SSL_library_init();
   SSL_load_error_strings();

   meth = SSLv23_method();
   ctx = SSL_CTX_new(meth);

   strlcpy(str, resource_dir, sizeof(str));
   strlcat(str, "ssl/server.crt", sizeof(str));
   if (!file_exist(str)) {
      eprintf("Cerificate file \"%s\" not found, aborting\n", str);
      return NULL;
   }
   if (SSL_CTX_use_certificate_file(ctx, str, SSL_FILETYPE_PEM) < 0)
      return NULL;

   strlcpy(str, resource_dir, sizeof(str));
   strlcat(str, "ssl/server.key", sizeof(str));
   if (!file_exist(str)) {
      eprintf("Key file \"%s\" not found, aborting\n", str);
      return NULL;
   }
   if (SSL_CTX_use_PrivateKey_file(ctx, str, SSL_FILETYPE_PEM) < 0)
      return NULL;
   if (SSL_CTX_check_private_key(ctx) < 0)
      return NULL;

   strlcpy(str, resource_dir, sizeof(str));
   strlcat(str, "ssl/chain.crt", sizeof(str));
   if (file_exist(str))
      SSL_CTX_use_certificate_chain_file(ctx, str);

   return ctx;
}

Hi,

I'd like to use ELOG as personal work logbook and database with search facilities

(e.g. record work progress, updates, plots, results, meeting schedule, outcome, TODO, etc...).

I will use it ONLY on my laptop, and I'd need to read the files when I don't have internet connection too.

I have no need to retrive files from elsewhere with a Web Browser, and I'd prefer not to open ports on the laptop.

Would this be feasible?

What's the setting I have to specify in elogd.cfg file?

Is there an example of such a ELOG use you could provide?

Thanks a lot

Sara

If you download the standard package, it installs a demo logbook on your computer which you can use as a personal logbook. It uses port 8080 by default, although this can be changed. Then only thing you need to do is to make sure that port 8080 is blocked on your firewall. Read your OS documentation on how to set-up and use a firewall. Once you block port 8080, the data cannot be accessed from outside your laptop. 

I write my lab journal with pen and though of getting a linux supported tablet. Has anybody ever used ELOG and did input using a tablet?

 Thanks Stefan,

I've properly set the firewall, and access is forbidden from outside. But when I don't have internet access, how could I open my database?

Furthermore: how it is possible to change the "demo" title ? and what's the procedure to open other databases?

Thanks again for helping

Sara

You can start the elogd daemon even when you don't have internet access, and access your database locally under http://localhost:8080. For changing the title of a logbook, please read the documentation.