On Monday 18 November 2002 11:44 am, Evan Dillon wrote: > > My installation: I received the cert from Verisign as an email > attachment and saved the cert to: > $APACHE_HOME/conf/ssl.crt/server.crt. I then visited the VeriSign > web site copied and pasted the intermediate cert into a text editor > (gEdit) and saved the file to $APACHE_HOME/conf/ssl.crt/ca.crt. I > updated my conf with the following directives: > > <VirtualHost MY_IP:443> > > ... > > SSLCertificateFile conf/ssl.crt/server.crt > SSLCertificateKeyFile conf/ssl.key/server.key > SSLCACertificateFile conf/ssl.crt/ca.crt > > SSLProtocol -all +SSLv2 > SSLCipherSuite SSLv2:+HIGH:+MEDIUM:+LOW:+EXP > > </VirtualHos>
Evan, You didn't say but did you add the SSLCertificateChainFile directive to point to the intermediate ca.crt? BTW, 0.9.6e may have security issues, not sure. There are 2 newer releases. Regards, Ed ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
