Venki
On Friday 26 March 2004 13:07, venkatesh wrote:
> Do you have patch for that. What version of Apache you are using? As I
> learned from that issue entry, there is no working patch available yet.
> Infact I can grep for the same error output, in mod_ssl sources of Apache
> 2.0.48.
>
> If you have patch for that, I am interested in getting that & use it in my
> environment ;). Thanks.
perhaps I am just using a workaround, but I have got it working in 2.0.47-10
binary rpm install on Fedora Core 1.
My OpenCA client authentication directories in /etc/httpd/conf.d/ssl.conf look
like this:
<Directory /var/www/secure/development_ra/ra>
SSLVerifyClient require
SSLVerifyDepth 5
SSLOptions +FakeBasicAuth +OptRenegotiate
SSLRequireSSL
SSLRequire %{SSL_CLIENT_S_DN_OU} eq "Trustcenter"
</Directory>
and my other client authentication directories for php look like this:
<Directory /var/www/secure/development>
SSLVerifyClient require
SSLVerifyDepth 5
SSLOptions +OptRenegotiate
</Directory>
It is the +OptRenegotiate commands that have got it working and are the
difference from my old Apache 1.3 httpd.conf.
Chris...
-------------------------------------------------------
This SF.Net email is sponsored by: IBM Linux Tutorials
Free Linux tutorial presented by Daniel Robbins, President and CEO of
GenToo technologies. Learn everything from fundamentals to system
administration.http://ads.osdn.com/?ad_id�70&alloc_id638&op=click
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/openca-users
