Free SSL-Certificates from StartCom Ltd.
BlueStar88
BlueStar88 at Xenobite.eu
Thu Sep 27 15:26:16 UTC 2007
TOR-Admin (gpfTOR1) schrieb:
> The Intermediate CA certificates have not to be integrated in the
> clients, if the server admin has done a good job. (But I know, not all
> server admins have the hole certification chain in the configuration.)
You're right!
While testing this, I've made a mistake which lead me to that wrong
conclusion in my previous email:
I've placed *all* certs into *one* PEM file (ssl.key, ssl.crt, ca.crt,
ca-intermediate-server.crt and DH) assuming a smarter file usage by the
daemon and that was badly wrong!
The CA parts were simply not recognized!
These instructions are simple to follow by just reading them:
http://cert.startcom.org/?lang=en&app=102
As server admin I'm trying to do a good job now! ;-)
Greets
--
BlueStar88
________________________________________________________
PGPID: 0x36150C86
PGPFP: E9AE 667C 4A2E 3F46 9B69 9BB2 FC63 8933 3615 0C86
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20070927/52863a2c/attachment.pgp>
More information about the tor-talk
mailing list