After installing the stable package and rerunning 'certtool -e --load-ca-certificate cacert.pem --infile servercert.pem', the outcome was:
Certificate[0]: CN=testserver,O=Server.inc Issued by: CN=testserver,O=Server.inc certtool: the last certificate is not self signed With the backports package the same command issued: Loaded 1 certificates, 1 CAs and 0 CRLs Subject: CN=testserver,O=Server.inc Issuer: CN=TestCA Output: Not verified. The certificate is NOT trusted. The certificate issuer is unknown. Subject: CN=testserver,O=Server.inc Issuer: CN=TestCA Output: Not verified. The certificate is NOT trusted. The certificate issuer is unknown. Chain verification output: Not verified. The certificate is NOT trusted. The certificate issuer is unknown. It seems the self-sign for snakeoil CAs is broken. Good luck, I don't think I'm of much use here, still playing around and trying to find out what I'm doing here ;) Jo
signature.asc
Description: This is a digitally signed message part