I'm using openssl-0.9.5a with mod_ssl2..6-1.3.12 and apache 1.3.12 under RedHat 6.2. I have a commercial server cert from Verisign, and have set up my Apache config file to point to: SSLCertificateFile /usr/local/ssl/bin/www.lessonlink.com.crt SSLCertificateKeyFile /usr/local/ssl/bin/www.lessonlink.com.key SSLCACertificateFile /usr/local/httpd_doc/conf/ssl.crt/ca-bundle.crt where the CertificateFile and CertificateKeyFile are the files I got from Verisign and the CACertificateFile is the one that got installed by default by mod_ssl. The SSL server is set up to run on port 8443, so I can do my testing without disrupting the production server running on 443. When I try to connect to https://www.lessonlink.com:8443 I get a Netscape box telling me: "www.lessonlink.com is a site that uses encryption to protect encrypted information. However, Netscape does not recognize the authority who signed its Certificate". This error message is coming from a Netscape 4.75 browser running under Linux. I get a similar message trying to access the site through a Mac running IE. I assume that I've misconfigured OpenSSL; can anyone point me to the right place in the documentation where I can look up what I'm doing wrong? Dan Mahoney [EMAIL PROTECTED] ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
