Hi Johannes Bauer
If I have a certificate chain
Root - A - B - Leaf
where Leaf is the certificate of a webserver (https) and Root is av
self-signed certificate.
If you donot mind would you please mention what are the Openssl commands you
used to create this chain ?
Please help me on this.
-Original Message-
From: Steffen DETTMER
* Johannes Bauer wrote on Fri, Jan 13, 2012 at 14:22 +0100:
[...]
Or, in other words: Let's assume I have a ultimate root
(self-signed) Root and a branched CA X. I would like to
trust X and all it's children, but not Root. Is this
On Mon, Jan 16, 2012, Eisenacher, Patrick wrote:
-Original Message-
From: Steffen DETTMER
* Johannes Bauer wrote on Fri, Jan 13, 2012 at 14:22 +0100:
[...]
Or, in other words: Let's assume I have a ultimate root
(self-signed) Root and a branched CA X. I would like to
On 2012-01-13 15:38 +0100 (Fri), Johannes Bauer wrote:
Ah, good, then I explained it well enough :-) Do you have a solution for
your scenario? Do you manually check certificates? Or is there some
workaround?
I described my situation in a little more detail in this message:
On 12.01.2012 19:05, Kenneth Goldman wrote:
I have a question regarding the verify method of OpenSSL: If I have a
certificate chain
Root - A - B - Leaf
where Leaf is the certificate of a webserver (https) and Root is a
self-signed certificate.
In this scenario, is it valid for the
On 12.01.2012 19:23, Michael S. Zick wrote:
On Thu January 12 2012, Johannes Bauer wrote:
Hello group,
I have a question regarding the verify method of OpenSSL: If I have a
certificate chain
Root - A - B - Leaf
where Leaf is the certificate of a webserver (https) and Root is a
On 13.01.2012 01:02, Dave Thompson wrote:
The verify fails. Why is that? The immediate signature is valid, does
the verify command expect to always terminate at a self-signed
certificate?
Yes. Or rather the libcrypto routine X509_verify_cert, used by the
'verify' utility and also the SSL
On 13.01.2012 10:15, Curt Sampson wrote:
On 2012-01-13 09:54 +0100 (Fri), Johannes Bauer wrote:
Let's say I have some ultimate root A which has issued a sub-CA B
for me. I use B to create, for example, a certificate for my webserver
D.
Now I have clients which should only connect to
* Johannes Bauer wrote on Fri, Jan 13, 2012 at 14:22 +0100:
[...]
Or, in other words: Let's assume I have a ultimate root
(self-signed) Root and a branched CA X. I would like to
trust X and all it's children, but not Root. Is this
not possible?
[yes, it is not possible by default]
On Thu January 12 2012, Johannes Bauer wrote:
Hello group,
I have a question regarding the verify method of OpenSSL: If I have a
certificate chain
Root - A - B - Leaf
where Leaf is the certificate of a webserver (https) and Root is a
self-signed certificate.
In this scenario, is it
From: owner-openssl-us...@openssl.org On Behalf Of Michael S. Zick
Sent: Thursday, 12 January, 2012 13:24
On Thu January 12 2012, Johannes Bauer wrote:
Hello group,
I have a question regarding the verify method of OpenSSL: If I have a
certificate chain: Root - A - B - Leaf [...]
is
11 matches
Mail list logo