Ping a Specific Port

Question

QWade

Asked: 2010-06-17 16:16:14 +0800 CST2010-06-17 16:16:14 +0800 CST 2010-06-17 16:16:14 +0800 CST

Using wildcard SSL certs (chain certificate) with mod_gnutls

772

I have a wildcard SSL certificate from GoDaddy that has three files:

wildcard.crt gd_bundle.crt wildcard.key

In setting up mod_gnutls to be used with Apache, I can get the site to come up, but it throws a warning that the SSL certificate has not been validated by a CA.

When I use mod_ssl, I can stipulate a SSLCertificateChainFile directive and point it at the bd_bundle.crt file. I do not see how to do this with mod_gnutls.

Any help is appreciated. I also know that mod_ssl supports SNI, so if there is not an easy answer, I will just try that.

Thanks,

QWade

2 Answers

Voted

François Feugeas · Answer 1 · 2010-06-18T04:57:17+08:00

François Feugeas

2010-06-18T04:57:17+08:002010-06-18T04:57:17+08:00

You can concatenate the chain certificate file at the end of your regular certificate file, it works under most implementations.

2

Warner · Answer 2 · 2010-06-17T19:16:11+08:00

Warner

2010-06-17T19:16:11+08:002010-06-17T19:16:11+08:00

I often prefer to update ca-bundle.crt, which is referenced system wide by anything compiled against OpenSSL.

In CentOS, this is stored in /usr/share/ssl/certs. This can differ between distributions.

1

Using wildcard SSL certs (chain certificate) with mod_gnutls

Ping a Specific Port

How do I tell Git for Windows where to find my private RSA key?

How do you restart php-fpm?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?