Package: openssl
Version: 0.9.7b-2
(cc to Debian BTS and above headers as I believe this is a documentation
bug in the OpenSSL package)
Charles Cranston wrote:
> Server Certificate
> First Intermediate
> Second Intermediate
Thanks, that worked! I actually have the two intermediates as a
'bundle' from the CA, and used this:
/etc/ssl/certs/imapd.pem:
Server Cert
"CA Bundle" Cert
/etc/ssl/private/imapd.pem
Server Key
This did not seem to be what the man page said:
SSL_CTX_use_certificate_chain_file() loads a certificate chain from
file into ctx. The certificates must be in PEM format and must be
sorted starting with the certificate to the highest level (root CA).
There is no corresponding function working on a single SSL object.
To me that means the order should be root down, whereas the order is
actually server down.
David.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
