Maybe I'm missing something, but: - The app server cert is not signed by the CA cert, so there's no point in sending the CA cert as part of the chain for that server.
- The app server cert isn't self-signed, either (contrary to what the original message claimed). - The new cert is an X.509v1 certificate - why isn't it v3? I admit I don't understand the problem description from the original note, but it doesn't seem to match what we have with these three certificates. -- Michael Wojcik Technology Specialist, Micro Focus This message has been scanned for malware by Websense. www.websense.com ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager majord...@openssl.org
