Eike Herzbach <tigris.aubncisdfh.20.disisit@spamgourmet.com> wrote on
06/09/2006 01:31:12 PM:
> we have set up a svn server with apache2/mod_ssl and bought a ssl
certificate,
> expecting users would be able to connect without fuss.
>
> But unfortunately both the current TortoiseSVN aswell as the svn command
line
> client didn't have that CA built in, which was quite annoying since
_every_ web
> browser I tried (and I tried many, even older ones) knew the CA.
>
> My question: Why doesn't the svn clients have a current list of the CA
> certificates built in?
>
> I guess it won't be much more than just integrating the certificates
from
> http://curl.haxx.se/docs/caextract.html into the build process...?
I thought the default configuration of the servers file, even if OpenSSL
knows about these CA's, is to not trust them. I think Subversion might
already have the default CA's, it is just that it does not trust them.
Go here: http://svn.haxx.se/ and search for: "ssl-trust-default-ca"
Mark
_____________________________________________________________________________
Scanned for SoftLanding Systems, Inc. and SoftLanding Europe Plc by IBM Email Security Management Services powered by MessageLabs.
_____________________________________________________________________________
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@tortoisesvn.tigris.org
For additional commands, e-mail: dev-help@tortoisesvn.tigris.org
Received on Fri Jun 9 19:42:38 2006