| View previous topic :: View next topic |
| Author |
Message |
mgladding4423
n00b
Joined: 12 May 2005
Posts: 15
|
 Posted: Tue Oct 11, 2005 9:59 pm Post subject: Apache 2 and Digital Certs |
 |
|
I'm having trouble getting ssl and digital certificates to work under Apache 2 with mod_ssl.
So far I have created a self signed cert, with my own certificate authority (hence self signed...) and I think I have set up everything correctly. I added this to my httpd.conf:
| Code: | SSLVerifyClient none
SSLCACertificateFile etc/ssl/ca.crt
<Location /var/www/localhost/testingssl>
SSLVerifyClient require
SSLVerifyDepth 1
</Location> |
and set up my vhost for this location:
| Code: | NameVirtualHost 192.168.1.32:443
<VirtualHost 192.168.1.32:443>
ServerName testssl.mydomain.net
DocumentRoot /var/www/localhost/testingssl
</VirtualHost> |
I restarted apache after this and it starts just fine.
But when I go to the page via firefox I get:
| Code: | | The connection to testingssl.mydomain.net has terminated unexpectedly. Some data loss may have occured. |
And when I access it via IE it tells me I am entering a secure site and then I get:
| Code: | The page cannot be displayed
The page you are looking for is currently unavailable. The Web site might be experiencing technical difficulties, or you may need to adjust your browser settings.
|
What am I missing here? Did I screw up a step? Anyone know? |
|
| Back to top |
|
 |
nobspangle
Veteran
Joined: 23 Mar 2004
Posts: 1318
Location: Manchester, UK
|
| Posted: Tue Oct 11, 2005 10:05 pm Post subject: |
|
|
add
| Code: | | -D SSL -D SSL_DEFAULT_VHOST |
to your APACHE2_OPTS in /etc/conf.d/apache2
all your vhost and cert information should go in
/etc/apache2/modules.d/40_mod_ssl.conf and /etc/apache2/modules.d/41_mod_ssl.default-vhost.conf |
|
| Back to top |
|
|
mgladding4423
n00b
Joined: 12 May 2005
Posts: 15
|
| Posted: Tue Oct 11, 2005 10:22 pm Post subject: |
|
|
| I did as you suggested and it still comes up with the same problems. Any other ideas? |
|
| Back to top |
|
|
mgladding4423
n00b
Joined: 12 May 2005
Posts: 15
|
| Posted: Wed Oct 12, 2005 3:07 pm Post subject: |
|
|
| anyone? I have still yet to resolve this and could really use some help... would it help if I posted all my config files? |
|
| Back to top |
|
|
velociphile
n00b
Joined: 29 Oct 2003
Posts: 43
Location: Sydney, Australia
|
| Posted: Sat Nov 19, 2005 4:18 pm Post subject: |
|
|
Is this fixed? I see it's been over a month, so for your sake I hope it is.
If not: simplistic stuff, but are you sure Apache is listening on 443 (Listen 443 set in 40_mod_ssl.conf), that you can access port 443 (it's being forwarded by your router or whatever) and that you're accessing the page through 443 not 80?
You can check that 443 is open with nmap:
| Code: |
$ nmap target.host.ip.address -p 443
|
Tom
_________________
"1830: Press Return."
Vista will solve all your problems. People keep telling me so it must be true. |
|
| Back to top |
|
|
|
Networking & Security
