On Mon, 12 Jan 2004, Douglas Maxwell wrote: > Hi Fabio- > > On Mon, Jan 12, 2004 at 09:18:04PM +0100, Fabio Massimo Di Nitto wrote: > > I am just going trough the bug again and i noticed that there is > > stuff missing from the information required to generate the certificate > > like Locality Name. > > > > All the fields are required to generate the certificate. Can you kindly > > try again removing /etc/apache-ssl/apache.pem, create a certificate with > > all the fields filled up? > > I tried this, and it now seems to work fine. The cert is generated without > error, and apache-ssl starts as normal. This was definitely unexpected > behavior, though. I have generated self-signed certificates before and have > not had to fill in all the fields.
It is unexpected for me as well. From my experience i can tell that i have been always providing all the data (also in the past) to be sure that everything was ok. > Did this change recently? I have no idea. > Would a warning > in debconf be appropriate, or perhasps some logic to refuse to generate the > cert if any fields are left blank? I was thinking about the second option. The first one would not prevent users from messing around ;) In any case it is all still a ssl-cert problem (but no9 worry... we are still the same maintainers ;)) > Thanks for your time, it is much appreciated. No problem at all. Thanks to you for helping us Fabio -- Our mission: make IPv6 the default IP protocol "We are on a mission from God" - Elwood Blues http://www.itojun.org/paper/itojun-nanog-200210-ipv6isp/mgp00004.html
