On Tuesday, August 22, 2000, at 12:24 PM, Dan Mahoney wrote:
> When I try to connect to https://www.lessonlink.com:8443 I get a
> Netscape box telling me:
> "www.lessonlink.com is a site that uses encryption to protect encrypted
> information. However, Netscape does not recognize the authority who
> signed its Certificate". This error message is coming from a Netscape
> 4.75 browser running under Linux. I get a similar message trying to
> access the site through a Mac running IE.
>From the docs, I understand that the SSLCACertificateFile is supposed to
point to a file containing the certificate of the CA that signed your
server's certificate. If your certificate is signed by Verisign, you'll
need a copy of their signing certificate.
That said, I think that if you're not doing client authentication by
certificate, then you don't need to include the SSLCACertificateFile at
all. I'm justing using mod_ssl to encrypt sessions with my web server, so
I don't have SSLCACertificate specified in my Apache conf; it's working
just fine.
Bill
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
