On Mon, Nov 29, 2010, iruvopen...@hushmail.com wrote: > Greetings, > > I guess this question must have been asked quite a lot over here, > but I couldn't find any traces of it > so I guess I'll repeat it. > > I can't seem to be able to verify (using 'openssl verify') - > without openssl spitting a X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT - > a server certificate that was signed with a custom-made CA even > though I pass the CA certificate using the -CAfile switch. > I've tried -purpose and also using -CApath instead of -CAfile but > to no avail. > > Is this a feature, a bug or am I just doing it wrong? >
Impossible to tell without seeing the actual certificate and the precise command line you use. Steve. -- Dr Stephen N. Henson. OpenSSL project core developer. Commercial tech support now available see: http://www.openssl.org ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org