Just to drop a note that I have solved this problem: actually I was using
some proprietary SSL mediating software (since I'm using client cert on a
smart card) between the apache & the remote browser. I thought it was an
apache problem, apparently it was a problem with the software mentioned.
Thanks for your help! :)
--sazli
On Fri, 30 Jun 2000, Yeak Nai Siew wrote:
> on 30/6/00 9:24 AM, Syahrul Sazli Shaharir at [EMAIL PROTECTED] wrote:
>
>
> > Sorry, I got mixed up with another CA cert. The actual CA I am using has
> > the following:-
> >
> > X509v3 extensions:
> > X509v3 Authority Key Identifier:
> > keyid:44:31:30:32:34:30:30:31
> >
> > X509v3 Subject Key Identifier:
> > 44:31:30:32:34:30:30:31
> > X509v3 Basic Constraints:
> > CA:TRUE
> > 2.5.29.33:
> > 0.0....r.....r..
> >
> > which has CA:TRUE, but not pathlen:0. Appreciate any more
> > help.. thanks. :)
> >
> > --sazli
> >
>
> Try http://www.modssl.org/contrib/ssl.ca-0.1.tar.gz
>
> It has script to generate a proper CA and sign it. Also it has script to
> generate personal cert and server cert. Command line based. The script is
> just a standard SHELL script, it should be self-explanatory.
>
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
