Hello,
there exists a self signed root CA certificate (A)
one intermediate CA certificate (B)
and this intermedia certificate has signed a SSL certificate (C) of a
web server;
the SSL certificate has in its 'Authority Information Access' extension
the URL to the
intermediate CA certificate, and the intermediate CA certificate has in
this extension the URL to the root CA certificate;
every certificate is stored in DER format;
in case the certificate database of the browser has only the root CA
certificate and I surf to this webserver
which itself sends the whole certificate chain; why does this work
without errors only in IE, and not in FireFox?
if the root CA certificate is a built-in token; then this works in
Firefox, too;
why this strange behaviour?
Thanks,
Walter
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
