On 29/03/2015 11:56 PM, John Levine wrote:
SSLCertificateChainFile /etc/ssl/certs/gd_bundle-g2-g1.crt
I have actually fixed it.
Yeah, that's always it.
Back in the good aulde days all of the SSL certs one might buy were
signed directly by the CA, but now more often than not there are
intermed
>SSLCertificateChainFile /etc/ssl/certs/gd_bundle-g2-g1.crt
>
>I have actually fixed it.
Yeah, that's always it.
Back in the good aulde days all of the SSL certs one might buy were
signed directly by the CA, but now more often than not there are
intermediate certs, and a valid cert needs to be ac
had a root
certificate bundle update in a while) that wasn't enough - the new root needed
to be provided since from their perspective it's an intermediate.
M.
Original Message
From: Mike
Sent: Sunday, March 29, 2015 23:29
To: nanog@nanog.org
Subject: Re: FIXED - Re: Broken SSL cert caused
On 03/28/2015 01:50 PM, Matt Palmer wrote:
On Sat, Mar 28, 2015 at 09:05:38AM -0700, Mike wrote:
On 03/27/2015 10:34 AM, Frank Bulk wrote:
Glad you figured that out.
I've used three SSL evaluation websites to help me with intermediate
certificate issues:
https://www.ssllabs.com/ssltest/analyz
On Sat, Mar 28, 2015 at 09:05:38AM -0700, Mike wrote:
> On 03/27/2015 10:34 AM, Frank Bulk wrote:
> >Glad you figured that out.
> >
> >I've used three SSL evaluation websites to help me with intermediate
> >certificate issues:
> >https://www.ssllabs.com/ssltest/analyze.html (will show the names an
On 3/28/15 9:05 AM, Mike wrote:
I went back to Frank's list and did some additional testing. I have a
different server which was set up the same way as the previous one
discussed, and I thought I would use the above tools and see if my
problem would have been identified by any of them. I am sorry
On 03/27/2015 10:34 AM, Frank Bulk wrote:
Glad you figured that out.
I've used three SSL evaluation websites to help me with intermediate
certificate issues:
https://www.ssllabs.com/ssltest/analyze.html (will show the names and details
of the certs, missing or not
https://www.wormly.com/test_s
Cc: nanog@nanog.org
Subject: FIXED - Re: Broken SSL cert caused by router?
I'd like to thank everyone for their kind responses. One person who
responded off list and bothered to look at the returned certificates
pointed out, and correctly it seems, that my original setup was missing
When I had the same mistake as you, that toll identified it. That's why I
mentioned that one :)
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Mar 27, 2015 12:34 PM, "Mike" wrote:
>
>
> On 03/27/2015 08:43 AM, Josh Luthman wrote:
>
>> FFR you c
I believe the SSLLabs Analyzer should have pointed out an "Extra
Download" in the cert chain. That was the hint that there was an
intermediate cert that a client would have to go find on it's own
because it wasn't included with your server cert.
https://community.qualys.com/thread/12831
On 3
On 03/27/2015 08:43 AM, Josh Luthman wrote:
FFR you can use this to verify the site itself is good or not:
https://www.sslshopper.com/ssl-checker.html (there are others, this is
just what I have bookmarked)
Thanks. Previously while diagnosing this however, I used some others
similar and
FFR you can use this to verify the site itself is good or not:
https://www.sslshopper.com/ssl-checker.html (there are others, this is just
what I have bookmarked)
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Fri, Mar 27, 2015 at 11:35 AM, Mik
I'd like to thank everyone for their kind responses. One person who
responded off list and bothered to look at the returned certificates
pointed out, and correctly it seems, that my original setup was missing
an intermediate certificate. The site was returning 'valid ssl' and all
browsers
13 matches
Mail list logo
