Hi, you can go to http://developer.netscape.com/docs/manuals/security/pkin/index.htm for some information.
Cary
-----Original Message-----
From: Tom Johnson [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, October 11, 2000 9:47 AM
To: [EMAIL PROTECTED]
Subject: Confused about certificates and keys for browser users
OK, I've installed OpenSSL, rebuilt Apache with the proper module and
the WWW server is
checking for certificates, but now I'm faced with the prospect of
setting up users (e.g. browsers)
to access WWW pages over HTTPS.
I've looked at the OpenSSL documentation and documentation from
Netscape, Apache, etc.
but all of the documentation falls short of telling me how to get
certificates of the proper
form (and file format) which will be accepted by the WWW server.
In the Apache setup, I'm using the following SSL-related settings:
SSLEnable
SSLSessionCacheTimeout 15
SSLCacheServerPort logs/gcache_port
SSLCacheServerPath bin/gcache
Port 443
SSLVerifyClient 2
SSLVerifyDepth 10
I also found that if I used the values 0 or 3 for SSLVerifyClient, that
the child processes
failed with a segmentation fault as they rejected client requests.
Tom Johnson
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
