lighttpd/stdin.nl: Explicitly specify a ca-file for https

Without this, the intermediate certificate would not be sent. This only
affected clients that support SNI, since the fallback SSL configuration
(used for non-SNI browsers) did have an explicit ca-file configuration.

diff --git a/etc/lighttpd/vhosts/stdin-nl b/etc/lighttpd/vhosts/stdin-nl
index 56698f97b6193c0b60a8e1cd0b481db83339bd9e..f778be996cfc1cd33e5cabd31d520bd2362f6197 100644 (file)
--- a/etc/lighttpd/vhosts/stdin-nl
+++ b/etc/lighttpd/vhosts/stdin-nl
@@ -24,6 +24,7 @@ $HTTP["host"] =~ ".stdin.nl$" {
        $HTTP["host"] == "mail.stdin.nl" {
                # Specify the certificate for this domain (uses SNI)
                ssl.pemfile = "/etc/lighttpd/ssl/mail.stdin.nl.pem" 
+               ssl.ca-file = "/etc/lighttpd/ssl/ca/startssl-all-ca.pem"
                # Redirect HTTP to HTTPS
                $HTTP["scheme"] == "http" {
                    url.redirect = ( "^(.*)" => "https://mail.stdin.nl$1" )