[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Getting SSL/TSL to work



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Je Sabato Marto 12 2005 16:09, vi skribis:
> Pupeno writes:
> >> Anyway, try a self-signed CA
> >> certificate instead, and sign the server certificate with that.  That
> >> works for us.
> >
> > Well, how do you do that ? (I thought I was doing that).
>
> Not a clue, except 'by reading the manual'.
Which manual would be in this case ? I've been strugling to find good 
documentation on this matter.

> I do it by asking our local CA for a certificate:-)
Lucky one! ;)

> However, we may be talking past each other here.  If you thought you
> were doing that, why did you wonder if TLSCertificateFile and
> TLSCACertificateFile should be the same file?
>
> TLSCACertificateFile should be your self-signed certificate,
> TLSCertificateFile   should be another cert signed by the above cert.
Well, here you mention two certificates (and there's also a key)... so far I 
was only able to make one certificate for one key, I'm missing a step where 
I'm making a certificate of the certificate, right ? How do I make the second 
certificate, signed by the first self-signed certificate ?
- -- 
Pupeno: pupeno@pupeno.com - http://pupeno.com
Reading Science Fiction ? http://sfreaders.com.ar
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFCM0L7fW48a9PWGkURAq/tAJ9UgAQaaeGdzt94FBAhYRol13xxcQCgguF1
gnJhzU4WxoNlzp6En5v5AQU=
=cQ85
-----END PGP SIGNATURE-----