Juan Carlos Castro y Castro wrote:
>
> Hi! I just bought a Brazilian RH Linux distribution with Apache 1.3.3
> and mod_ssl 2.0.something. When I follow the instructions to create my
> own CA and sign the server certificate I just created, I get this in the
> verification phase:
>
> CA verifying: server.crt <-> CA cert
> server.crt:
> /C=BR/ST=RIO/O=PCShop/CN=secure.pcshop.com.br/Email=webmaster@pcshop
> .com.br
> error 7 at 0 depth lookup:certificate signature failure
there is not a problem wit your distribution.. there is a strange "bug"
on ssleay/openssl which doesn't allow the same values for a server.crt
and a ca.crt
so if you wan't to selfsigned your certify you need to change the values
you are putting on both certicates
i've learned this the difficult way.., should be on the FAQ, you could
get a clue if you check the list archives
HTH
Carlo
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
