Re: certificate problems and 403 Forbidden for svn 0.25.0

From: Martin v. Löwis <martin_at_v.loewis.de>
Date: 2003-07-21 06:59:52 CEST

Garret Wilson <garret@globalmentor.com> writes:

> This also requires that I install some CA file on my web server, so
> maybe neon has some problems with this extra CA step---but it works
> fine with every browser I've used.
>
> So I shouldn't even see the prompts in the first place. What's wrong?

I think you are missing a number of points here. Neon, by itself, does
not trust any CA, neither Comodo Class 3 Security Services CA, nor GTE
Cybertrust. You actively have to *configure* which certificates neon
trust, and you have to do that on the client side.

So you have to save both the Comodo certificate and the GTE
certificate into a PEM file, and list this PEM file as
ssl-authorities-file.

Alternatively, you can have openssl trust these CAs by default - you
would have to find out where openssl stores it CA certs and verify
that the two certificates are listed there.

What CAs your browsers trust is completely irrelevant.

Regards,
Martin

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Mon Jul 21 07:01:07 2003

This message: [ Message body ]
Next message: Leandro Lucarella: "Does checkout needs write permissions on the repository?"
Previous message: Steve Williams: "Corrupt repository on large commit (was Re: svn+ssh on Win32)"
In reply to: Garret Wilson: "Re: certificate problems and 403 Forbidden for svn 0.25.0"
Next in thread: Joe Orton: "Re: certificate problems and 403 Forbidden for svn 0.25.0"
Reply: Joe Orton: "Re: certificate problems and 403 Forbidden for svn 0.25.0"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]