On Wed, Nov 10, 1999, [EMAIL PROTECTED] wrote:
> Thanks to all who responded! This:
>
> On 10-Nov-99 Ralf S. Engelschall wrote:
> > On Tue, Nov 09, 1999, [EMAIL PROTECTED] wrote:
> >
> >> You have not mentioned where you put your private key by using the
> >> directive SSLCertificateKeyFile. Have you placed your keyfile to an
> >> appropriate place and pointed SSLCertificateKeyFile to this file.
>
> was the answer. I copied the key from where it was to where it needed to be
> and added an "SSLCertificateKeyFile" directive to the apache config. After the
> mandatory forgetting that a passphrase would be demanded followed by the
> mandatory forgetting of the passphrase, my little self-signed system seems to
> be working.
>
> Since the message about "no start line" seems to pop up in newbies' message
> regularly, I nominate it for the FAQ. Another one for the FAQ (unless it's been
> obviated in later versions than I have) is the somewhat non-obvious message
> sequence that happens if the passphrase isn't being read properly (or at all):
>
> [Wed Nov 10 14:46:37 1999] [crit] (5)Input/output error: mod_ssl: Failed to
> read private key file /etc/httpd/mykey.pem
> [Wed Nov 10 14:46:37 1999] [error] SSLeay: error:0906406D:PEM
> routines:DEF_CALLBACK:problems getting password
> [Wed Nov 10 14:46:37 1999] [error] SSLeay: error:0906A068:PEM
> routines:PEM_do_header:bad password read
>
> It looks like a file problem, but isn't.
For mod_ssl 2.4.9 I've now added two more entries to the logfile
annotation structure:
{ "*no start line*", "Bad file contents or format - or even just a forgotten
SSLCertificateKeyFile?" },
{ "*bad password read*", "You entered an incorrect pass phrase!?" },
This way the OpenSSL messages are at least a little bit annotated with more hints.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
