[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: Built-In CA Certificates for https

From: Mark Phippard <markp_at_softlanding.com>
Date: 2006-06-09 19:42:25 CEST

Eike Herzbach <tigris.aubncisdfh.20.disisit@spamgourmet.com> wrote on
06/09/2006 01:31:12 PM:

> we have set up a svn server with apache2/mod_ssl and bought a ssl
> expecting users would be able to connect without fuss.
> But unfortunately both the current TortoiseSVN aswell as the svn command
> client didn't have that CA built in, which was quite annoying since
_every_ web
> browser I tried (and I tried many, even older ones) knew the CA.
> My question: Why doesn't the svn clients have a current list of the CA
> certificates built in?
> I guess it won't be much more than just integrating the certificates
> http://curl.haxx.se/docs/caextract.html into the build process...?

I thought the default configuration of the servers file, even if OpenSSL
knows about these CA's, is to not trust them. I think Subversion might
already have the default CA's, it is just that it does not trust them.

Go here: http://svn.haxx.se/ and search for: "ssl-trust-default-ca"


Scanned for SoftLanding Systems, Inc. and SoftLanding Europe Plc by IBM Email Security Management Services powered by MessageLabs.

To unsubscribe, e-mail: dev-unsubscribe@tortoisesvn.tigris.org
For additional commands, e-mail: dev-help@tortoisesvn.tigris.org
Received on Fri Jun 9 19:42:38 2006

This is an archived mail posted to the TortoiseSVN Dev mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.