Re[2]: How do I check to see if it works?

Mon, 18 Feb 2002 04:51:20 -0800 

Monday, February 18, 2002, 12:04:31 PM, Mads wrote:

MT> On Mon, Feb 18, 2002 at 10:28:49AM +0100, Søren Neigaard wrote:
>> I'm having some problems with my router, so I'm not sure where my
>> problem is, in the router or in my httpd.conf
>> 
MT> First look in your error_log from apache.

It doesn't get hit. Should I not be able to connect to my SSL site by
trying ssl.duketech.net in my browser?


>> If I do a portscan of my machine, port 443 return stealth. But it
>> should be open. Can port 443 return stealth because there is no server
>> listening, or is it because it is closed?
>> 
MT> netstat -an|grep 443 locally on the machine or

Returns nothing.


MT> openssl s_client -connect 192.168.1.4:443

Gives:

connect: Connection refused
connect:errno=61



>> Anyway I have attached a snippet from my httpd.conf, where I have
>> tried to adjust the example to my needs. Now I was hoping you guys
>> could tell me if it look ok. It looks like this:
>> 
>> <IfDefine SSL>
>> <VirtualHost 192.168.1.4:443>
>> DocumentRoot "/usr/local/www/data"
>> ServerName ssl.duketech.net
>> ServerAdmin [EMAIL PROTECTED]
>> ErrorLog /var/log/httpd-error.log
>> TransferLog /var/log/httpd-access.log
>> SSLEngine on
>> SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
>> <Files ~ "\.(cgi|shtml|phtml|php3?)$">
>>     SSLOptions +StdEnvVars
>> </Files>
>> <Directory "/usr/local/www/cgi-bin">
>>     SSLOptions +StdEnvVars
>> </Directory>
>> SetEnvIf User-Agent ".*MSIE.*" \
>>          nokeepalive ssl-unclean-shutdown \
>>          downgrade-1.0 force-response-1.0
>> CustomLog /var/log/ssl_request_log \
>>           "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
>> </VirtualHost>                                  
>> </IfDefine>
>> 
MT> You need the SSLCertificateFile and SSLCertificateKeyFile directives too -
Ok I have those now.

--
Med venlig hilsen/Best regards,
 Søren Neigaard mailto:[EMAIL PROTECTED]

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to