> From: owner-openssl-us...@openssl.org On Behalf Of Jeffrey Walton
> Sent: Wednesday, October 02, 2013 16:57
> I fetched StartCom's ca-bundle from http://www.startssl.com/certs/. I
> then connected to api.pagepeeker.com, which uses StartCom.
>
Aside: you don't actually need the whole bundle, onl
So, this does not work either (placing the PEM encoded cert in the variable):
$ export SSL_CERT_FILE=`cat startcom-ca-bundle.pem`
$ echo "GET / HTTP\1.1" | openssl s_client -connect api.pagepeeker.com:443
$ echo $SSL_CERT_FILE
-BEGIN CERTIFICATE-
MIIGnzCCBIegAwIBAgIBPTANBgkqhkiG9w0BAQsFADB
It gets even more bizarre after soft linking SSL_CERT_FILE to
startcom-ca-bundle.pem
Does anyone know how to use SSL_CERT_FILE (or how its intended to be used)?
Jeff
*
riemann::~$ ln -s startcom-ca-bundle.pem SSL_CERT_FILE
riemann::~$ echo "GET / HTTP\1.1" | openssl s_client -connect
a
Hi All,
I fetched StartCom's ca-bundle from http://www.startssl.com/certs/. I
then connected to api.pagepeeker.com, which uses StartCom.
When I use s_client and -CAfile, the verification completes
successfully. When I use c_client and SSL_CERT_FILE, verification
fails with "Verify return code: 19
