Em 02-12-2013 06:05, Bernd escreveu:
> Hi list,
>
> I'm planning to configure SSL offloading using relayd(8).
>
> The manpage for relayd.conf(5) states the following:
>
> ``If the ssl keyword is present, the relay will accept connections
> using the encrypted SSL protocol. The relay will attempt to look
> up a private key in /etc/ssl/private/address:port.key and a
> public certificate in /etc/ssl/address:port.crt, where address is
> the specified IP address and port is the specified port that therelay
> listens on. If these files are not present, the relay will
> continue to look in /etc/ssl/private/address.key and
> /etc/ssl/address.crt. See ssl(8) for details about SSL server
> certificates.''
>
> However, I also got an intermediate certificate provided by my CA.
> Using it in Apache, e.g., is no problem, however I wonder how to get
> this configured in(to) relayd... any clues?
>
> Thanks & best,
>
> Bernd
>
Bernd,
You can try concatenating all your certs in one single file, the CA
cert, intermediate cert and your cert. The order matters your CA cert
must be on the bottom of the file, the intermediate in the middle and
your cert in the top. This might work. Your private key must still be
kept in a separate file.
Cheers,
--
Giancarlo Razzolini
GPG: 4096R/77B981BC
