From: Massimiliano P. <mas...@po...> - 2005-11-24 17:12:06
|
A-CERT Zertifizierungsservice wrote: > I hate replying to my own emails, but I've found the issue. It is not really a > bug in OCSPd: My B.pem file contained the PEM encoded certificate for B as > well as the PEM encoded certificate for A. OCSPd obviously chose to use A as > the CA for both entries. > My advise is that OCSPd should print a warning to syslog if there is more > than one certificate in the file pointed to by ca_url, to prevent others from > making the same error as I did. Ok, I will add the warning shortly (Or should we add the DN of the Certs that are loaded to syslog also in non-verbose mode ?). -- Best Regards, Massimiliano Pala --o------------------------------------------------------------------------ Massimiliano Pala [OpenCA Project Manager] mas...@po... Tel.: +39 (0)11 564 7081 http://security.polito.it Fax: +39 178 270 2077 Mobile: +39 (0)347 7222 365 Politecnico di Torino (EuroPKI) Certification Authority Informations: Authority Access Point http://ca.polito.it Authority's Certificate: http://ca.polito.it/ca_cert/en_index.html Certificate Revocation List: http://ca.polito.it/crl02/crl.crl --o------------------------------------------------------------------------ |