Adam Shand wrote: > so i assume the problem is that the cn of the cert doesn't equal > maus.spack.org. is this the standard for host certificates that the > common name attribute should equal the hostname?
if it is unsigned i think so. signed certs i think only have to match the domain. instead of "fixing" your ssl cert look into ditching outlook or fixing outlook. i use sslwrap to provide SSL over IMAP4, with netscape it warns me that the host is not the same as the cert as well, because i am connecting to a CNAME rather then the real hostname. doesn't cause a problem, just have to click the continue button, and i prefer to see that come up so i know SSL is enabled :) to be sure, i just fired up vmware with win2k and outlook express 5, pointed it to my IMAP server enabled SSL and connected. it prompted me saying the SSL cert may not be from that host bla bla..and said do i want to keep using it, i click yes and up pops the folders with my mail. i dont see any way in OE to view the certificate ...but since i have IMAP4 firewalled the only IMAP allowed in is SSL so i know its usin' it. nate -- ::: ICQ: 75132336 http://www.aphroland.org/ http://www.linuxpowered.net/ [EMAIL PROTECTED]