On Wed, Apr 30, 2008 at 4:27 PM, Irwin Tillman <irwin@xxxxxxxxxxxxx> wrote: > But the truss shows that at no time (at startup or later when talking to an LDAP server) > does the parent or any child httpd try to open() the file /var/local/etc/certs/foo. > So (not surprisingly), attempts by httpd to verify certificates issued by > the CA whose cert is in 'foo' fail. Can you try truss -u ::ldap_set_option and see if we're passing the cert info off to openldap? openldap would be the one actually on the hook for doing the checking. Coercing some trace out of openldap might yeild a clue too -- Eric Covener covener@xxxxxxxxx --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|