On Fri, Apr 21, 2006 at 09:00:17AM -0500, Fran Fabrizio wrote:
>
> Yes, I need to make a stronger permanent key. I've been playing with
> all the various settings trying to figure out what's wrong: this is
> about the 7th certificate I've made for this server. :-)
>
> The helpdesk.cis.uab.edu is an alias for the CA server, not for this
> email server. But you seem to have spotted that I have that set wrong
> somewhere! And now that I think about it, I don't think I need to
> specify the alternative names for the CA anywhere.
>
> That error message would be great if it pointed out the real problem,
> but I should've spotted that.
The other lesson here, is don't be skimpy in your error reports. If your
server were not reachable from the public Internet, nobody would have
been able to help you. The key evidence (the details of the certificate)
was never reported.
--
Viktor.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
