Dear openssl group, could you solve this issue regarding mod_ssl?
Michele Masè
On Thu, May 23, 2013 at 10:11 AM, Michele Mase' michele.m...@gmail.com wrote:
Okay, openssl works, but mod_ssl doesn't.
Is this a real problem?
Instead try hacking mod_ssl code ...
Could I ask for a bug/improvement
Okay, openssl works, but mod_ssl doesn't.
Is this a real problem?
Instead try hacking mod_ssl code ...
Could I ask for a bug/improvement so that mod_ssl could finally work?
Michele MAsè
On Thu, May 23, 2013 at 1:22 AM, Dave Thompson dthomp...@prinpay.comwrote:
From:
From: owner-openssl-us...@openssl.org On Behalf Of Michele Mase'
Sent: Tuesday, 21 May, 2013 04:16
I was wrong!
Does it work with client=Firefox using client certs under both CAs?
I would expect at least one to fail. Note that s_server -verify
doesn't *require* client cert, it only *allows* it;
If these are the roots you attached -- with names that differ only
in case of one letter -- they should have gotten the same hashvalue
(with suffixes .0 and .1); did they?
yes
Does it work with client=Firefox using client certs under both CAs?
I would expect at least one to fail. Note that
Tx. for the response. Now I try to explain what I should do ...
What I did:
openssl:
Commandline for the openssl s_server (sorry for my typo)
before starting www server:
c_rehash /some/path #where I've put 2 pem encoded CA's certificates
start the simple www server
openssl s_server -www -key
From: owner-openssl-us...@openssl.org On Behalf Of Michele Mase'
Sent: Friday, 17 May, 2013 10:04
What I did:
openssl:
Commandline for the openssl s_server (sorry for my typo)
before starting www server:
c_rehash /some/path #where I've put 2 pem encoded CA's certificates
If these are
From: owner-openssl-us...@openssl.org On Behalf Of Michele Mase'
Sent: Monday, 13 May, 2013 05:33
I'm testing a client authentication using [Apache with 1.0.0-fips]
I have 2 CA's x509 pem files, bundled.
CA1 signs client1 certificate files
CA2 signs client2 certificate files
I should use two