TOR-Admin (gpfTOR1) schrieb: > The Intermediate CA certificates have not to be integrated in the > clients, if the server admin has done a good job. (But I know, not all > server admins have the hole certification chain in the configuration.) You're right! While testing this, I've made a mistake which lead me to that wrong conclusion in my previous email: I've placed *all* certs into *one* PEM file (ssl.key, ssl.crt, ca.crt, ca-intermediate-server.crt and DH) assuming a smarter file usage by the daemon and that was badly wrong! The CA parts were simply not recognized! These instructions are simple to follow by just reading them: http://cert.startcom.org/?lang=en&app=102 As server admin I'm trying to do a good job now! ;-) Greets -- BlueStar88 ________________________________________________________ PGPID: 0x36150C86 PGPFP: E9AE 667C 4A2E 3F46 9B69 9BB2 FC63 8933 3615 0C86
Attachment:
signature.asc
Description: OpenPGP digital signature