Hi
All,
When I view my ssl
pages in Netscape 7.x, I am getting a, Website Certified by an Unknown
Authority, popup message.
I am using
Apache/2.0.43 and mod_ssl with openssl 0.9.6g running under Solaris
8.
I am assuming its a
configuration issue as the certificate is signed by Verisign and it works fine
in IE. I am using virtual hosts with separate IPs.
What could be
causing this to occur? What errors might my httpd.conf file
contain?
Thanks,
Austin
Some of my httpd
configuration is as follows:
Listen
10.0.0.26:80
Listen
10.0.0.27:80
ServerName
10.0.0.26:80
<IfModule mod_ssl.c>
Include conf/ssl.conf
</IfModule>
NameVirtualHost
10.0.0.27
<VirtualHost
10.0.0.27>
DocumentRoot /site/htdocs/vhost
RewriteEngine On
RewriteRule ^/.* /site/htdocs/vhost/index.html
</VirtualHost>
DocumentRoot /site/htdocs/vhost
RewriteEngine On
RewriteRule ^/.* /site/htdocs/vhost/index.html
</VirtualHost>
<VirtualHost
10.0.0.27>
ServerName www.domain2.com
ServerPath /domain2/
DocumentRoot /site/htdocs/domain2
RewriteEngine On
RewriteRule ^(/domain2/.*) /site/vhost$1
</VirtualHost>
ServerName www.domain2.com
ServerPath /domain2/
DocumentRoot /site/htdocs/domain2
RewriteEngine On
RewriteRule ^(/domain2/.*) /site/vhost$1
</VirtualHost>
<VirtualHost
10.0.0.27>
ServerName www.domain3.com
ServerName www.domain3.com
ServerPath /domain3/
DocumentRoot /site/htdocs/domain3
RewriteEngine On
RewriteRule ^(/domain3/.*) /site/vhost$1
</VirtualHost>
DocumentRoot /site/htdocs/domain3
RewriteEngine On
RewriteRule ^(/domain3/.*) /site/vhost$1
</VirtualHost>
<VirtualHost
_default_:443>
DocumentRoot /site/htdocs/
ServerName www.domain.com
ServerAdmin [EMAIL PROTECTED]
DocumentRoot /site/htdocs/
ServerName www.domain.com
ServerAdmin [EMAIL PROTECTED]
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log
TransferLog /site/logs/access_log
SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /usr/local/ssl/certs/verisigned.cert
SSLCertificateKeyFile /usr/local/ssl/private/domain.key
SetEnvIf User-Agent ".*MSIE.*"
\
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog /site/logs/ssl_request_log
\
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
And the this is my
ssl.conf file:
<IfDefine
SSL>
Listen
10.0.0.26:443
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
SSLPassPhraseDialog builtin
SSLSessionCache dbm:logs/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:logs/ssl_mutex
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
<VirtualHost
10.0.0.26:443>
DocumentRoot "/site/htdocs"
ServerName www.domain.com
ServerAdmin a[EMAIL PROTECTED]
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /usr/local/ssl/certs/verisigned.cert
SSLCertificateKeyFile /usr/local/ssl/private/domain.key
SetEnvIf User-Agent
".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog /site/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
</IfDefine>
