[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Certificate has expired or is not yet valid

----- Original Message -----
From: Gerald Waugh <gwaugh@xxxxxxxxxxxxxxxxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Wednesday, September 11, 2002 3:49 PM
Subject: Re: [cobalt-users] Certificate has expired or is not yet valid


> On Wed, 11 Sep 2002, Achieve Website Design wrote:
>
> > I'm beginning to answer my own query. Just received this from Geotrust.
> >
> > These instructions address the "certificate expired" warning experienced
by
> > some Equifax SSL certificate servers that chain to the older Equifax
root
> > (which expires 6/9/2002) rather than to the new Equifax root (which
expires
> > 6/9/2003). The newer root is attached. (See attached Root CA in both
.txt
> > and .crt formats)
> >
> >
> >
> > Since you are running Apache, you need to do three things:
> >
> > 1) Find the existing Equifax root, probably in your /conf/ssl.crt or
similar
> > directory as "equifaxca2";
> >
> > Replace this Equifax root with the one attached to this message, below.
> >
> > Note - there may be more than one in your system.2) Verify that your
> > HTTPD.CONF directive (specifically
> >
> > "SSLCACertificateFile..." and
> >
> > "SSLCACertificatePath...") point to this Equifax root.
> >
> > 3) Stop, then Start (for example, "apachectl stop" then "apachectl
> > startssl") your server.
> >
>
> #3 you do realize that cobalt does not use apachectl
>    /etc/rc.d/init.d/httpd restart will do
>    and there is no startssl, as httpd.conf setss ssl up.
>
> Gerald
> --
> http://frontstreetnetworks.com | http://raqware.com
> 229 Front Street, Ste. C, New Haven, CT. 06513-3203
> Phone: +1 203-785-0699
>
>

Yeah,
I realise that, and uploaded new cert to /etc/httpd/conf etc. Still have
same problem though. Has anybody been here before?
Thanks,
Declan.