On Mon, Sep 21, 1998, Mario Filipe wrote:
> I've already managed to import the certificates into netscape. I verified the
> certificates (both mine and the CA) and they checked ok!
>
> Then i changed the configuration of my httpd so that SSLVerifyClient would be 2.
>
> ssl_misc_log shows the following:
>
> [21/Sep/1998:17:56:36 +0100] Verify depth exceeded
> [21/Sep/1998:17:56:36 +0100] SSL Verify return: 0
> [21/Sep/1998:17:58:37 +0100] SSL Issuer: /C=PT/ST=Alentejo/L=\xC9vora/O=Univers
> [21/Sep/1998:17:58:37 +0100] Verify error:num=20:unable to get local issuer cer
> [21/Sep/1998:17:58:37 +0100] SSL Verify return: 0
>
> Where is mod_ssl trying to find the issuer certificate ? How can i go arround
> this ?
Either a standalone file (found via a hash symlink) under the dir configured
with SSLCACertificatePath or inside a bundle-file configured with
SSLCACertificateFile.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]