Multiple self signed crt on virtual hosts

Fri, 30 Jun 2000 07:03:34 -0700 

I have some problems getting self signed crt (Intranet use) on multiple
Virtual hosts running.

The first one runs fine, but the second, signed in the same way (openssl
0.9.5a) will not run...

Using:
openssl s_client -connect <FQDN>:443 -state -debug

I get:
CONNECTED(00000003)
SSL_connect:before/connect initialization
write to 081323F0 [08132448] (130 bytes => 130 (0x82))
0000 - 80 80 01 03 01 00 57 00-00 00 20 00 00 16 00 00   ......W...
.....
0010 - 13 00 00 0a 07 00 c0 00-00 66 00 00 07 00 00 05  
.........f......
0020 - 00 00 04 05 00 80 03 00-80 01 00 80 08 00 80 00  
................
0030 - 00 65 00 00 64 00 00 63-00 00 62 00 00 61 00 00  
.e..d..c..b..a..
0040 - 60 00 00 15 00 00 12 00-00 09 06 00 40 00 00 14  
`...........@...
0050 - 00 00 11 00 00 08 00 00-06 00 00 03 04 00 80 02  
................
0060 - 00 80 fb 59 bb 61 69 1f-56 38 7a 2e a4 e6 19 e8  
...Y.ai.V8z.....
0070 - e6 47 c5 5c 7e 97 c0 f0-85 8d 8d 32 3f bb 2e 9c  
.G.\~......2?...
0080 - 78 a9                                             x.
SSL_connect:SSLv2/v3 write client hello A
read from 081323F0 [081379A8] (7 bytes => 7 (0x7))
0000 - 3c 21 44 4f 43 54 59                              <!DOCTY
SSL_connect:error in SSLv2/v3 read server hello A
12797:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown
protocol:s23_clnt.c:458:
13:00:08 (105)
[root]                                                                       

I set up httpd.conf (here only SSL entrys for VHost):

<VirtualHost <IP>:443>
SSLEngine on
SSLCertificateFile    /dir/<hostname>.crt
SSLCertificateKeyFile /dir/<hostname>.key
# Logging zum Testen - debug
SSLLogLevel debug                                              :443>
</VirtualHost>

The logfile gives me no clue wahts wrong. And I'm starting to wonder
cause it works like a charm for another VirtualHost running on the same
Apache, Port 80 an 443.

Is it not possible to have multiple SSL-VHosts on one Apache (Server
Version: Apache/1.3.12 (Unix) mod_perl/1.22 PHP/3.0.16 mod_ssl/2.6.3
OpenSSL/0.9.5a)?

Thanks in advance

Michael

Work:
http://www.heimwerker.de
Privat:
http://www.heiming.de
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to