Hi Konstantin,
On Sun, 28 Jun 2009, Konstantin Ivanov wrote:
I've setup a CA using openssl. My scenario is to have a root
certificate, which signs requests for certificates. I've generated CA
private key as well as the root CA certificate. However, when signing
requests and placing certificate on the web server, I get the following
message (chrome browser) when accessing the site: You connection to
127.0.0.1 is encrypted with 128-bit encryption. However, this page
includes other resources which are not secure"
Please note that I only get this message if I've placed by CA root
certificate into Trusted Certificates under windows. If I remove CA
certificate from trusted, what happens is that the message regarding
connection goes away but the identity is not verified, which is normal
as no root CA is present to validate. What could be the problem of
this?
This doesn't sound like a certificate problem. It sounds like the HTML
page includes some resources which are not loaded via HTTPS URLs, e.g.
images or javascripts, and this is what the browser is warning you about.
Cheers, Chris.
--
_____ __ _
\ __/ / ,__(_)_ | Chris Wilson <0000 at qwirx.com> - Cambs UK |
/ (_/ ,\/ _/ /_ \ | Security/C/C++/Java/Ruby/Perl/SQL Developer |
\__/_/_/_//_/___/ | We are GNU : free your mind & your software |
