[hunchentoot-devel] Chained SSL-certificates support
Semion Prihodko
semion.ababo at gmail.com
Wed Sep 1 14:46:18 UTC 2010
This is really a problem, because most of certificates that can be purchased
use intermediate root certificate... really don't understand why this issue
was not taken into consideration in Hunchentoot design.
2010/9/1 Bill St. Clair <billstclair at gmail.com>
> I use:
>
> SSLCertificateFile /usr/local/etc/apache22/certs/billstclair.com.crt
> SSLCertificateChainFile /usr/local/etc/apache22/certs/gd_bundle.crt
> SSLCertificateKeyFile
> /usr/local/etc/apache22/certs/billstclair.com.key
>
> billstclair.com.crt contains my certificate, signed by the GoDaddy CA.
> gd_bundle.crt contains the GoDaddy CA certificate and another CA
> certificate that signs it.
>
> -Bill
>
> On Wed, Sep 1, 2010 at 9:14 AM, Semion Prihodko <semion.ababo at gmail.com>
> wrote:
> > I think Apache supports adding one additional certificate. To do that you
> > must add the following line:
> > SSLCACertificateFile cert_filename
> > in configuration file.
> >
> > 2010/9/1 Edi Weitz <edi at agharta.de>
> >>
> >> I'm not familiar with chained certificates. How would you use your
> >> certificate with Apache for example?
> >>
> >> Edi.
> >>
> >> _______________________________________________
> >> tbnl-devel site list
> >> tbnl-devel at common-lisp.net
> >> http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
> >
> > _______________________________________________
> > tbnl-devel site list
> > tbnl-devel at common-lisp.net
> > http://common-lisp.net/mailman/listinfo/tbnl-devel
> >
>
> _______________________________________________
> tbnl-devel site list
> tbnl-devel at common-lisp.net
> http://common-lisp.net/mailman/listinfo/tbnl-devel
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.common-lisp.net/pipermail/tbnl-devel/attachments/20100901/b298dacc/attachment.html>
More information about the Tbnl-devel
mailing list