Eckard Wille wrote:
>
> Michael Voucko wrote:
> >
> > Hi *,
> >
> > I searched the archives because of this subject. There were a few posts a little time ago
> > but as far as I got through it there was no clear answer to this question. Is there
> > someone who solved the problem or can say that there's no way to do it.
> >
> > It's because I want to test a security proxy with a running Apache-SSL server and I don't
> > want to change anything with its configuration if possible so the chance to add just a
> > another trusted CA would ease a lot.
> >
> > Thanks in advance
> > Michael
>
> Hi Michael,
>
> adding another trusted CA for the same virtual host is done by
> concatenating the extra CA file to the old CA file , given by the
> directive SSLCACertificateFile. I thought the directive
> SSLCACertificatePath was used to do this, but putting my CAs down
> there and hashlinking them did not do anything. Unfortunately Ben
> did not mention the purpose of this directive anywhere.
Hmmm ... SSLCACertificatePath is _supposed_ to do what you thought. I
haven't tested it recently, though. If someone wants to confirm that it
really doesn't work, I'll try to fix it.
Cheers,
Ben.
--
Ben Laurie |Phone: +44 (181) 735 0686| Apache Group member
Freelance Consultant |Fax: +44 (181) 735 0689|http://www.apache.org/
and Technical Director|Email: ben@algroup.co.uk |
A.L. Digital Ltd, |Apache-SSL author http://www.apache-ssl.org/
London, England. |"Apache: TDG" http://www.ora.com/catalog/apache/
WE'RE RECRUITING! http://www.aldigital.co.uk/recruit/