[CentOS] Re: self signed ssl cert on C5

Tom Diehl tdiehl at rogueind.com
Thu Oct 25 23:10:25 UTC 2007

On Thu, 25 Oct 2007, Kenneth Porter wrote:

> --On Thursday, October 25, 2007 2:54 PM -0400 Tom Diehl <tdiehl at rogueind.com> 
> wrote:
> Isn't that for when you need the client to prove who he his? Are you 
> requiring client SSL certs? It looks like the client is failing to provide a 
> good cert.

Well not on purpose!! I set SSLVerifyClient to optional and it now works. It
looks like the default is different between c-4 and c-5. I looked at my ssl.conf
on a c-4 machine and the line is commented out. It was also commented out on the
c-5 machine and I was getting the errors above. When I changed it to optional
things started working.

The documentation states that the default is none but it looks like the default
is require. Is there a way to verify what the defaults are?

Thanks for the help.


Tom Diehl		tdiehl at rogueind.com		Spamtrap address mtd123 at rogueind.com

More information about the CentOS mailing list