On 6/8/07, Joe Orton <[EMAIL PROTECTED]> wrote:
On Fri, Jun 08, 2007 at 09:33:14AM -0700, Joshua Swink wrote:
> When I use cadaver, I get the following message:
>
> [EMAIL PROTECTED]:~$ cadaver https://eng.ucmerced.edu/webdav/people/jswink
> WARNING: Untrusted server certificate presented for `*.ucmerced.edu':
> Issued to: US, California, Merced, University of California - Merced,
> *.ucmerced.edu
> Issued by: US, Equifax, Equifax Secure Certificate Authority
> Certificate is valid from Wed, 19 Jul 2006 20:45:28 GMT to Fri, 20 Jul
> 2007 20:45:28 GMT
> Do you wish to accept the certificate? (y/n)
>
> The time was Fri Jun 8 09:18:55 PDT 2007.
>
> Why does cadaver state that the certificate is untrusted?
cadaver loads the set of trusted CA roots provided by the SSL toolkit,
if any. In a Linux distribution this is normally a file called
"ca-bundle.crt"; the location varies.
If the certificate presented by the SSL server is not signed by one of
those CAs, you'll get a prompt as above.
It's my opinion that the certificate is trustworthy, and that a
program shouldn't say it's untrusted. Do you think it's possible that
my SSL toolkit is incomplete and I should take the issue up with its
maintainer(s)?
Josh
_______________________________________________
cadaver mailing list
[email protected]
http://mailman.webdav.org/mailman/listinfo/cadaver
