W3C home > Mailing lists > Public > public-xg-webid@w3.org > December 2011

unit test site - test root

From: Peter Williams <home_pw@msn.com>
Date: Fri, 9 Dec 2011 18:56:58 -0800
Message-ID: <SNT143-W2536A3C556658EC91BA61392BE0@phx.gbl>
To: "public-xg-webid@w3.org" <public-xg-webid@w3.org>




http://secure.alphassl.com/cacert/AlphaSSLdv1.crt  please make this URL work. the server cert of the test site identifies its parent using a URI, and its not resolvable. Windows automatically walks the linked data network (of X.509 certs) based on following the URI references in the SSL cert. The graph walking fails. To make windows verify the SSL server cert (without warning) I had to use knowhow that will be beyond the typical user (or IT admin). Its not hard to use standard knowhow, by distributing the self-signed root cert (presumably) referenced by the URI, above. Users can load the self-signed cert in their trust store, or certain windows configs will follow de-reference the authority URI in the server cert (to said - presumably self-signed - cert).   		 	   		  
Received on Saturday, 10 December 2011 02:57:36 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Saturday, 10 December 2011 02:57:37 GMT