hi, I' ve just installed the latest version of openssl (0.9.5) and apache (1.3.12) on my (great) linux box. After testing the whole thing with a selfsigned cert (with make certificate TYPE=test) and the impression that 'that's work' I have made a certificate request (custom) and asking for a 'test' certificate on the website of 'thawte'. copied the ssl.key/server.key to the right place (according to SSLCertificateKeyFile directive) and the return from ssl.csr/server.csr in ssl.crt/server.crt (with SSLCertificateFile) apachessl starts and nothing in the log, the secure connection is made but when i go in the properties of a protected page i see the following Certificate Information: This certificate cannot be verified to a lack of information and the certification path show only my website name with a '!' on it not the full path to thawte Root Cert. when i made the cert with 'make' i'm asked twice about the same (surrely not but don't really see the difference) informations (like common name, country, ...) the first for the CA and the second for my CN. I don't really know what i exactly have to write for the first demand ... is at that point I made the wrong thing ? or simply this problem is because i have just a 'test' cert from thawte ? I'm new in crypto software and all help would be -very- appreciated , thanks ! ---------------------------------------------------------------------------- ---------------- Beuserie Frederic DSI / Système et Exploitation - 3 Suisses Belgique Email: [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
trust chain broken or request problem ?
Beuserie Frédéric (stbrice dsi) Mon, 13 Mar 2000 10:28:05 -0800