Hi
I am still having trouble with my certificate! Am I doing something
stupid?? Here is the openssl output to prove the cert paths
kursk# openssl verify -CAfile opl-all.pem -verbose opl20070919.pem
opl20070919.pem: OK
kursk#
here are the squid.conf line
https_port 82.36.186.17:443
cert=/usr/local/etc/squid/sslcert/opl20070919.pem ca
file=/usr/local/etc/squid/sslcert/opl-all.pem name=opls
defaultsite=www.optimalp
rofit.com
cache_peer 192.168.0.11 parent 443 0 no-query originserver login=PASS
nam
e=opls ssl sslcert=/usr/local/etc/squid/sslcert/opl20070919.pem
cache_peer_domain opls www.optimalprofit.com
I am still getting this error:
2007/09/21 12:24:41| SSL unknown certificate error 20 in /C=GB/ST=West
Midlands/L=Solihull/O=Optimal Profit Ltd/OU=StartCom Free Certificate
Member/OU=Domain validated
only/CN=www.optimalprofit.com/emailAddress=gordon@gdmckee.com
2007/09/21 12:24:41| fwdNegotiateSSL: Error negotiating SSL connection on FD
19: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate
verify failed (1/-1/0)
2007/09/21 12:24:41| TCP connection to 192.168.0.11/443 failed
Does anyone know how to fix this? Do I need to post the certificates? Not
very secure though!!
Many thanks
Gordon
Received on Fri Sep 21 2007 - 05:31:52 MDT
This archive was generated by hypermail pre-2.1.9 : Mon Oct 01 2007 - 12:00:02 MDT