domi wrote:
I'm not a FireFox expert, but it stands to reason that if you manually trust the cert at this point, it'll continue to be "trusted" even if it's revoked later. What you really want to do is browse to your root cert, import that (which will grant implicit trust to "testcert") and then try importing the CRL and see if you get any notices.All the steps in OpenSSL and Apache work as far as I can say. Now follow some steps to access my site. step 1: start the Apache with /etc/init.d/apache2 startssl The certificate in the Apache ssl-global.conf is NOT revoked. step 2: start Firefox 2.0.1 and call the site https://192.168.0.2 Of course you must trust the certificate.
Issac --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|