Hello:
I am facing some difficulties in CRL checking.
When setting a file in X.509 version2 CRL format (instead of
version1) for SSLCARevocationFile of httpd.conf,
I receive an error message below and checking fails:
[09/May/2000 14:07:01 11149] [warn] Invalid signature on CRL
[09/May/2000 14:07:01 11149] [error] Certificate Verification:
Error (8): CRL signature failure
Is this because version2 CRL format is not supported
in mod_ssl-2.6.4 ? Or should I add any other configuration?
I would appreciate if you would kindly show me the answer.
I conduct the test in the following environment:
openssl-0.9.5a
mod_ssl-2.6.4-1.3.12
apache_1.3.12
Any information would help me.
Thank you,
Tatsuya Yoshida
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
