Re: Question regarding client certificates

From: Soeren Gerlach <soeren_at_all-about-shift.com>
Date: 2004-10-14 08:10:40 CEST

Am Do, den 14.10.2004 schrieb Kevin Bentley um 5:18:
> On Wed, 13 Oct 2004 21:20:56 +0200, Soeren Gerlach
> <soeren@all-about-shift.com> wrote:
> > <Location /curves>
> > DAV svn
> > SVNPath /storage/svn/curves
> >
> > # Use SSL and require our self signed CA certificates
> > SSLRequireSSL
> > SSLCACertificateFile /etc/apache2/ssl.crt/quanteam_CA.crt
> > SSLVerifyClient require
>
> Try adding a global directive (outside of the Location block) like this:
>
> SSLVerifyClient optional
>
> I believe this is needed due to a bug in mod_ssl. As long as you have
> a directive inside your Location block to only allow the certificates
> you want to allow, your users will still need a certificate to access
> your server.

Kevin,

100 points! That solved the problem perfectly - although I don't know yet why...probably need to read through their mailing list what's behind this bug.

Many thanks!
Soeren

---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@subversion.tigris.org
For additional commands, e-mail: users-help@subversion.tigris.org
Received on Thu Oct 14 08:11:13 2004

This message: [ Message body ]
Next message: Holger Rauch: "Re: Lock-Modify-Unlock vs Copy-Modify-Merge"
Previous message: Kevin Bentley: "Re: Question regarding client certificates"
In reply to: Kevin Bentley: "Re: Question regarding client certificates"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]