> Indeed, but as I said, the cert on the site is not expired, > and I never had one on the CF server.
You almost certainly did have a certificate on the CF server. I'm pretty sure that the JVM ships with a default list of trusted root certification authorities. For a certificate to be validated, you would either have to have that certificate imported into your keystore as a trusted certificate, or it would have had to been signed using one of the trusted root certificates you happen to already have installed. http://java.sun.com/j2se/1.4.2/docs/tooldocs/windows/keytool.html#Certificat es Those trusted root certificates, like any other certificates, expire over time. This has happened occasionally with browsers, as well. http://www.verisign.com.au/repository/faq/rootCA_faq.shtml Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Introducing the Fusion Authority Quarterly Update. 80 pages of hard-hitting, up-to-date ColdFusion information by your peers, delivered to your door four times a year. http://www.fusionauthority.com/quarterly Archive: http://www.houseoffusion.com/groups/CF-Talk/message.cfm/messageid:255263 Subscription: http://www.houseoffusion.com/groups/CF-Talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
