[squid-users] Alert unknown CA

Yuri Voinov yvoinov at gmail.com
Tue Feb 3 14:26:35 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Hi gents,

I think, will be good to add advanced debug options to ssl_crtd to avoid
this:

2015/02/03 20:21:37 kid1| clientNegotiateSSL: Error negotiating SSL
connection on FD 28: error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1
alert unknown ca (1/0)

Now we have no one tools to diagnose the situations above. Excluding own
eyes and brains. And - telepathy.

Amos,

is it possible to get more informative diagnostics? URL will be enough.

WBR, Yuri

PS. Now I've added over 50 root and intermediate CA's. Still without
completely avoid this messages. It appears on site I do not know and can
not know.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
 
iQEcBAEBAgAGBQJU0NqbAAoJENNXIZxhPexGWScH/0kzTf+ogwYsscr6qUChmnIC
oHH2tJWxC2CLK51XTWkS5LmPTEIS/yt+v6bxzghq0MFG+rdFN/8Wg/KFBZi3WayR
1UjRDbVt1U9vENSvAwkvL4n8bbuaTZCSlKCJAjN9V1wT7+FtJ5ZrTtsaS85e1zGV
xrmRygLtjcMnHYuakmK+CZjdlikSYFEQ3vfrPjvsnXVJcBDkJ+deVDikevsxuBP0
O2G1TNNVe6AUtjDNLhwpGde/T7tf5Vej4J9syzt7HIjcKL2ysoePRHb79BtNWjMs
OHE1A52ZRH4hIJ9aRa8pGw7BFDopnSaNuj6UxYT1VY10NZ08XfkD2RQt4EoaZxg=
=ArlJ
-----END PGP SIGNATURE-----



More information about the squid-users mailing list