OK, I've installed OpenSSL, rebuilt Apache with the proper module and the WWW server is checking for certificates, but now I'm faced with the prospect of setting up users (e.g. browsers) to access WWW pages over HTTPS. I've looked at the OpenSSL documentation and documentation from Netscape, Apache, etc. but all of the documentation falls short of telling me how to get certificates of the proper form (and file format) which will be accepted by the WWW server. In the Apache setup, I'm using the following SSL-related settings: SSLEnable SSLSessionCacheTimeout 15 SSLCacheServerPort logs/gcache_port SSLCacheServerPath bin/gcache Port 443 SSLVerifyClient 2 SSLVerifyDepth 10 I also found that if I used the values 0 or 3 for SSLVerifyClient, that the child processes failed with a segmentation fault as they rejected client requests. Tom Johnson ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
