> > Problem is: > > When I try to connect to https://secure.mydomain.pl nothing happend > > What does "nothing happened" mean? - timeout?, connection refused?, > error 404? nothing = HTTP 404 LOGS [10/Oct/2001 13:10:42 12536] [info] Seeding PRNG with 1160 bytes of entropy [10/Oct/2001 13:10:42 12536] [info] Connection: Client IP: 217.96.20.2, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits) [10/Oct/2001 13:10:42 12536] [info] Initial (No.1) HTTPS request received for child 2 (server secure.mydomain.pl:443) [10/Oct/2001 13:10:42 12536] [info] Connection to child 2 closed with unclean shutdown (server secure.mydomain.pl:443, client 217.96.20.2)
> Does secure.mydomain.pl resolve to IP_first in DNS? YES host -v secure.mydomain.pl show secure.mydomain.pl 172800 IN A IP_first Do you have "Listen 443" somewhere? ====cut httpd.conf=== Listen 80 Listen 443 ====cut=== > > > but when I try to connect to https://test.mydomain.pl or > https://IP_firs it > > works fine. > > Are you sure you have only one SSL VH in your httpd.conf? It looks like > you have a VH on port 443 with "test" as the docroot. no!! <VirtualHost IP_first:443> # General setup for the virtual host DocumentRoot "/home/www/panel/site" ServerName secure.mydomain.pl ErrorLog /var/log/httpd/panelssl-error_log TransferLog /var/log/httpd/panelss-access_log SSLEngine on SSLCipherSuite ALL:!ADH:!EXP56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL SSLCertificateFile /usr/local/ssl/bin/secure.mydomain.pl.crt SSLCertificateKeyFile /usr/local/ssl/bin/secure.mydomain.pl.key <Files ~ "\.(cgi|shtml|phtml|php3?)$"> SSLOptions +StdEnvVars </Files> <Directory "/usr/local/apache/cgi-bin"> SSLOptions +StdEnvVars </Directory> SetEnvIf User-Agent ".*MSIE.*" \ nokeepalive ssl-unclean-shutdown \ downgrade-1.0 force-response-1.0 CustomLog /usr/local/apache/logs/ssl_request_log \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" </VirtualHost> > > Remember you must only have ONE SSL VH per IP address. yes! grep test httpd.conf # local testing and development, you may use 127.0.0.1 as the server name. # pass phrase. Note that a kill -HUP will prompt again. A test fo sure :-)) ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
