There is an bug in BQ, that makes loading of SSL Certificate Authorities
fail.
When loading a CA from "Security" --> "SSL" --> "Manage Certificate
Authorities" the line:
SSLCACertificateFile /etc/admserv/certs/ca-certs
is written to the file; /etc/admserv/conf/ssl.conf, instead of being
written to the correct file; /etc/admserv/conf.d/ssl.conf - this means
that the CA is not loaded in Apache, and checking the certificate fails,
when logging in using "Secure connect".
To fix this, I am pretty sure that this is what should be changed:
In the file; /usr/sausalito/handlers/base/ssl/ca-certs.pl change:
# FIXME: this is totally wrong for this to have to know about
# the fact that apache is the underlying server, but this isn't easy
# to fix and for the forseeable future it isn't going to change.
my $ssl_conf = '/etc/admserv/conf/ssl.conf';
to:
# FIXME: this is totally wrong for this to have to know about
# the fact that apache is the underlying server, but this isn't easy
# to fix and for the forseeable future it isn't going to change.
my $ssl_conf = '/etc/admserv/conf.d/ssl.conf';
and restart admserv with:
service admserv restart
I have not tested this, but I am almost certain that this will fix it.
Could Hisao San put this in an official update?
Best regards,
Jes Kasper Klittum
http://www.enavn.dk
jes (at mark) enavn.com