[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Free SSL-Certificates from StartCom Ltd.

TOR-Admin (gpfTOR1) schrieb:

> The Intermediate CA certificates have not to be integrated in the
> clients, if the server admin has done a good job. (But I know, not all
> server admins have the hole certification chain in the configuration.)

You're right!

While testing this, I've made a mistake which lead me to that wrong
conclusion in my previous email:

I've placed *all* certs into *one* PEM file (ssl.key, ssl.crt, ca.crt,
ca-intermediate-server.crt and DH) assuming a smarter file usage by the
daemon and that was badly wrong!

The CA parts were simply not recognized!

These instructions are simple to follow by just reading them:


As server admin I'm trying to do a good job now! ;-)



PGPID: 0x36150C86
PGPFP: E9AE 667C 4A2E 3F46 9B69 9BB2 FC63 8933 3615 0C86

Attachment: signature.asc
Description: OpenPGP digital signature