Hi to all, first of all a big thanks to everyone that so far helped me on all
the OCSP questions Ive had so far.
I still have a single problem when trying to validade client Certs using Apache
and a OCSP responder. Iam having this error on error log:
(I can successfully validate the cert if
-Ursprüngliche Nachricht-
Von: owner-openssl-us...@openssl.org [mailto:owner-openssl-
us...@openssl.org] Im Auftrag von Dr. Stephen Henson
Gesendet: Dienstag, 28. Juli 2009 23:43
An: openssl-users@openssl.org
Betreff: Re: OCSP_basic_verify:root ca not trusted
On Tue, Jul 28, 2009
Dear list,
another problem with the OCSP-handling in Apache/mod_ssl:
[Tue Jul 28 14:27:12 2009] [error] SSL Library Error: error:27069070:OCSP
routines:OCSP_basic_verify:root ca not trusted
[Tue Jul 28 14:27:12 2009] [error] failed to verify the OCSP response!
Now, of course this could be just
On Tue, Jul 28, 2009, Natanael Mignon - michael-wessel.de wrote:
Dear list,
another problem with the OCSP-handling in Apache/mod_ssl:
[Tue Jul 28 14:27:12 2009] [error] SSL Library Error: error:27069070:OCSP
routines:OCSP_basic_verify:root ca not trusted
[Tue Jul 28 14:27:12 2009]
Blackberry - Dienste erhalten Sie bei uns!
- Originalnachricht -
Von: owner-openssl-us...@openssl.org owner-openssl-us...@openssl.org
An: openssl-users@openssl.org openssl-users@openssl.org
Gesendet: Tue Jul 28 18:41:30 2009
Betreff: Re: OCSP_basic_verify:root ca not trusted
On Tue, Jul 28, 2009
Is the OCSP response verification algorithm described below
implemented exclusively by OpenSSL, or is the algorithm an
implementation
of a particular RFC algorithm?
Thanks!
Randy
On Jul 28, 2009, at 9:41 AM, Dr. Stephen Henson wrote:
On Tue, Jul 28, 2009, Natanael Mignon -
On Tue, Jul 28, 2009, Randy Turner wrote:
Is the OCSP response verification algorithm described below implemented
exclusively by OpenSSL, or is the algorithm an implementation
of a particular RFC algorithm?
It is follows the rules in RFC2560. The CA signing and delegate signing are
taked
