On Wed, Jul 02, 2003, Jeremy Wiebe wrote: > Hello again, > > I was using OpenSSL 0.9.6g for my development. I noticed that 0.9.6i was > released and decided to test it. > > I found that using the same scripts as for version 0.9.6g generates > certificates that Windows deems invalid. I have a self-signed CA > certificate that I use for various CA activities, including signing > certificate requests from IIS. With version 0.9.6g I can sign these CSR's > and import them successfully into IIS. After upgrading to 0.9.6i the > generated certificates are invalid (according to Windows). The message > displayed in the Certificate window (after double-clicking on the generated > .cer file) is "Certificate has a nonvalid digital signature." I tried > generating a new CA certificate (using the CA.pl script) and it yields the > same results. > > Has anyone seen this problem? > > For the time being this is strictly for my curiosity as I'm content > releasing the software targetted specifically for version 0.9.6g. >
Can you send me an example of such a certificate? Steve. -- Dr Stephen N. Henson. Core developer of the OpenSSL project: http://www.openssl.org/ Freelance consultant see: http://www.drh-consultancy.demon.co.uk/ Email: [EMAIL PROTECTED], PGP key: via homepage. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
