ssl for nginx, old browsers

Igor Sysoev is at
Tue Oct 6 18:34:07 MSD 2009

On Tue, Oct 06, 2009 at 10:19:50AM -0400, eternity wrote:

> But, this chain was automatically detected by chrome. Why chrome thinks that it is not broken?

A browser might get the signed RBC certificate from another site.
In this case the browser stores the certificate and trusts it in another
sessions. I'm not able to see certificates in Chrome, but in Firefox
such certificate is marked as "Software Security Device" as opposite to
"Builtin Object Token".

Igor Sysoev

More information about the nginx mailing list