Chinaunix首页 | 论坛 | 博客
  • 博客访问: 126542
  • 博文数量: 95
  • 博客积分: 316
  • 博客等级: 二等列兵
  • 技术积分: 635
  • 用 户 组: 普通用户
  • 注册时间: 2011-11-23 17:41
文章分类

全部博文(95)

文章存档

2014年(1)

2013年(1)

2012年(93)

我的朋友

分类: LINUX

2012-01-16 14:14:36

http://blog.toshsoft.de/index.php?/archives/6-Adding-the-new-Push-Notification-CA-Trust-to-your-Linux-Server.html

Apple issued a notice to all Developers today that the Production Apple Push Notification service will use a 2048-bit TLS/SSL CA Certificate from entrust from the 22 of December onwards. That means, that all Servers using the Push notification Service have to update the trust on the new CA.

And here is how:

  1.  
  2. wget https:///downloads/binary/entrust_2048_ca.cer --no-check-certificate
  3. cp entrust_2048_ca.cer /path/to/certs/
  4. cd /path/to/certs
  5. ln -s entrust_2048_ca.cer `openssl x509 -hash -noout -in entrust_2048_ca.cer`.0
  6. openssl verify -CApath /path/to/certs entrust_2048_ca.cer
  7.  

To use and trust the Certificate in your code use the following function:

  1.  
  2. SSL_CTX_load_verify_locations(ctx, NULL, "/path/to/certs")
  3.  
阅读(960) | 评论(0) | 转发(0) |
给主人留下些什么吧!~~