1) IE4.0+ can access it;
2) AvantGO cannot; error message is "Spurious SSL handshake interrupt[Hint:
Usually just one of those OpenSSL confusions!?]"
3)AvantGO can access IIS on the same machine and same certificate;
4) Netscape3.1 will prompt it cannot recognize the authority who signed the
certificate.
I found differences between IIS and Apache+ModSSL are:
After "client hello", server will send back "Server Hello", "Certificate"
and other things.
IIS:
struct {
HandshakeType msg_type; /* handshake type */
uint24 length; /* bytes in message */
ServerHello;
Certificate;
} Handshake;
Apache:
struct {
HandshakeType msg_type; /* handshake type */
uint24 length; /* bytes in message */
ServerHello;
} Handshake;
struct {
HandshakeType msg_type; /* handshake type */
uint24 length; /* bytes in message */
Certificate;
} Handshake;
Which one is conforming to the spec? I am so confusing!
FYI: maybe it is because of this difference which cause AvantGO cannot
access Apache+ModSSL?
Thanks in advance.
Wei XU
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
