diff options
author | Aldo Cortesi <aldo@nullcube.com> | 2011-03-18 14:48:43 +1300 |
---|---|---|
committer | Aldo Cortesi <aldo@nullcube.com> | 2011-03-18 14:48:43 +1300 |
commit | 3fbf343985cd1a957514ebcc54fee067c18b99ea (patch) | |
tree | d7086ad33d79fd965827b19f1b6ba28854996026 /libmproxy/resources/ca.cnf | |
parent | 907536503c399af888af2eed8bc6dca76b39ab1d (diff) | |
download | mitmproxy-3fbf343985cd1a957514ebcc54fee067c18b99ea.tar.gz mitmproxy-3fbf343985cd1a957514ebcc54fee067c18b99ea.tar.bz2 mitmproxy-3fbf343985cd1a957514ebcc54fee067c18b99ea.zip |
Tweak CA and cert setup to be nice to Windows.
For some reason Satan's Operating System doesn't join up the certification path
if the key identifiers are set to hash. This took a few hours of trial and
error to figure out.
Diffstat (limited to 'libmproxy/resources/ca.cnf')
-rw-r--r-- | libmproxy/resources/ca.cnf | 4 |
1 files changed, 0 insertions, 4 deletions
diff --git a/libmproxy/resources/ca.cnf b/libmproxy/resources/ca.cnf index c65c66c8..b1f93f92 100644 --- a/libmproxy/resources/ca.cnf +++ b/libmproxy/resources/ca.cnf @@ -9,8 +9,6 @@ organizationName = mitmproxy commonName = mitmproxy [ v3_ca ] -subjectKeyIdentifier=hash -authorityKeyIdentifier=keyid:always,issuer basicConstraints = critical,CA:true keyUsage = cRLSign, keyCertSign extendedKeyUsage=serverAuth,clientAuth,emailProtection,timeStamping,msCodeInd,msCodeCom,msCTLSign,msSGC,msEFS,nsSGC @@ -27,8 +25,6 @@ basicConstraints = CA:false keyUsage = nonRepudiation, digitalSignature, keyEncipherment extendedKeyUsage=serverAuth,clientAuth,emailProtection,timeStamping,msCodeInd,msCodeCom,msCTLSign,msSGC,msEFS,nsSGC nsCertType = server -subjectKeyIdentifier=hash -authorityKeyIdentifier=keyid:always,issuer [ v3_cert_req ] basicConstraints = CA:false |