Bodo Moeller writes:
> library still builds the chain automatically when the CA certificate
> is also configured as a trusted certificate for client authentication
I don't think that I've done this (certainly not using client cert
based auth. at the present time). Not sure about other apache
servers I've connected to remotely.
> (but don't rely on this for the future). A cleaner approach is to use
> the functions in the OpenSSL API that allow applications to set up the
> certificate chain -- mod_ssl has configuration file directives for
> that, and I think for Stronghold you just append to your certificate file
> the CA certificates that you want to use.
I think we have done that latter step. Any suggestions about where
I'd find out how to do this correctly? Probably not an openssl
specific issue but perhaps someone can point me to the appropriate
forum. If it's in the stronhold doc I've missed it or misread it.
Thanks, ==mwh
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
