Sorry, I'm beginner. I konow, my message was not logical.
uname -a:
#----------------------------------------------------------------------------
OpenBSD hostname 5.8 GENERIC#0 i386
#----------------------------------------------------------------------------
virtual server in httpd.conf:
#----------------------------------------------------------------------------
server "hostname" {
listen on * port 80
listen on * tls port 443
log { access "access.log", error "error.log" }
tls { certificate "/etc/ssl/server.crt" key
"/etc/ssl/private/server.key" }
root "/htdocs/hostname"
}
#----------------------------------------------------------------------------
port 80 end 443 is open:
# netstat -a |grep http
#----------------------------------------------------------------------------
tcp 0 0 localhost.https *.* LISTEN
tcp 0 0 *.https *.* LISTEN
#----------------------------------------------------------------------------
in firefox:
#----------------------------------------------------------------------------
Secure Connection Falied
An error occurred during a connection to my_domain. Cannot communicate
securely whih peer: no common encryption algorithm(s). (Error code:
ssl_error_no_cypher_overlap)
#----------------------------------------------------------------------------
in log from httpd:
#----------------------------------------------------------------------------
httpd: could not parse macro definition SSL
httpd[21336]: server_tls_init: failed to configure TLS - failed to read
private key: Operation not supported by device
#----------------------------------------------------------------------------
Krzysztof Strzeszewski
On 30.11.2015 22:31, Alexander Salmin wrote:
> On 2015-11-30 20:52, Krzysztof Strzeszewski wrote:
>> Hi,
>> whats wrong?:
>>
>> httpd: could not parse macro definition SSL
>> httpd[21336]: server_tls_init: failed to configure TLS - failed to read
>> private key: Operation not supported by device
>>
>>
>> Krzysztof Strzeszewski
> Hey Krzysztof,
>
> Two reasons why you did not receive much feedback on this.
> - You did not supply OpenBSD version (uname -a) so we can't replicate
> with same version.
> - You did not provide httpd.conf(8) so we can't replicate your exact setup.
>
> A key to good free online OpenBSD support is to; "Always provide as much
> information as possible. Try to pin-point the exact problem. Give clear
> instructions on how to reproduce the problem. Try to describe the
> problem with as much accuracy and non-confusing terminology as possible,
> especially if it is not easy to reproduce." //
> http://www.openbsd.org/report.html
>
> Continue to fail this and the world will just lead to sadness and despair.
>
> Alexander
