[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: SVN via https certification chain ignored

From: Florian <aeon512_at_gmail.com>
Date: Fri, 16 Sep 2011 22:22:48 +0200

Hi again,

> On Sep 16, 2011, at 8:28 PM, Florian wrote:
>
> Why is Mac OS X Lion not capable to checking the certificates
> correctly? To me it seems like it ignores the intermediate
> certificates served from Apache. Or is there something wrong in my
> configuration?

It did some more testing. Once I download the root certificate
AddTrustExternalCARoot from Comodo, and specify this root certificate
explicitly with 'ssl-authority-files' in my .subversion/servers
everything work without any warnings.

This root certificate is however included in the Mac OS X Keychain and
valid, which leads to the conclusion that the command line version of
svn does not check the root CAs in the Keychain at all. Is this
intended behavior?

Thanks
/Florian
Received on 2011-09-16 22:23:22 CEST

This is an archived mail posted to the Subversion Users mailing list.

This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.