Free SSL-Certificates from StartCom Ltd.

BlueStar88 BlueStar88 at Xenobite.eu
Thu Sep 27 15:26:16 UTC 2007


TOR-Admin (gpfTOR1) schrieb:

> The Intermediate CA certificates have not to be integrated in the
> clients, if the server admin has done a good job. (But I know, not all
> server admins have the hole certification chain in the configuration.)

You're right!

While testing this, I've made a mistake which lead me to that wrong
conclusion in my previous email:

I've placed *all* certs into *one* PEM file (ssl.key, ssl.crt, ca.crt,
ca-intermediate-server.crt and DH) assuming a smarter file usage by the
daemon and that was badly wrong!

The CA parts were simply not recognized!

These instructions are simple to follow by just reading them:

	http://cert.startcom.org/?lang=en&app=102

As server admin I'm trying to do a good job now! ;-)



Greets

-- 


BlueStar88
________________________________________________________
PGPID: 0x36150C86
PGPFP: E9AE 667C 4A2E 3F46 9B69 9BB2 FC63 8933 3615 0C86


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 252 bytes
Desc: OpenPGP digital signature
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20070927/52863a2c/attachment.pgp>


More information about the tor-talk mailing list