ARGL! I friend of me debugged Apache+mod_ssl a complete day because he
couldn't find the reason why his CA-Cert (placed under the dir configured with
SSLCACertificatePath) cannot be found after the upgrade from
Apache-SSL+SSLeay-0.8 to mod_ssl+SSLeay 0.9.
The reason is illustrated here:
:> /sw/pkg/ssleay-0.8/bin/ssleay x509 -noout -hash <ca.cert
4ec52b0b
rse@en1:/e/apache/SSL/ca
:> /sw/pkg/ssleay/bin/ssleay x509 -noout -hash <ca.cert
d8df2d3a
rse@en1:/e/apache/SSL/ca
:>
As you can see SSLeay 0.8 uses a different algorithm to generate the symlinks
then SSLeay 0.9. So, when one upgrades and just uses the same old symlinks
SSLeay cannot find the certs. Does anybody know why to the hell SSLeay has
changed the hash algorithm here?
Hmmm... seems like we have to add another FAQ....
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
