domi wrote:
All the steps in OpenSSL and Apache work as far as I can say. Now follow
some steps to access my site.
step 1: start the Apache with /etc/init.d/apache2 startssl
The certificate in the Apache ssl-global.conf is NOT revoked.
step 2: start Firefox 2.0.1 and call the site https://192.168.0.2
Of course you must trust the certificate.
I'm not a FireFox expert, but it stands to reason that if you manually
trust the cert at this point, it'll continue to be "trusted" even if
it's revoked later.
What you really want to do is browse to your root cert, import that
(which will grant implicit trust to "testcert") and then try importing
the CRL and see if you get any notices.
Issac
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
