SSS error

Tue, 17 Oct 2000 09:10:11 -0700 


 Hi,

  I have a RedHat Linux 6.2 with apache-1.3.12-2 and openssl-0.9.5-2
  
  I purchased a cryptographic key from Verisign for the site
  www.superobra.com.
  
  Configured httpd.conf.ssl and put the site at production.
  It works, transactions are made adequatedly most times, but
  eventualy occurs an error at the client (browser),
  showing the message:
  
        "This page contains some items that are not secure"
        "Do you want to exhibit it?"
  
  Answering yes, returns: "The page cant be exhibited" that is the error
  message of file "dnserror.htm"
  Answering no, returns: Navigation canceled"
  
  
  In the error file configured  at the VirtualHost entry of httpd.conf.ssl

  the following messages are recorded:
  
  
        "mod_ssl: SSL error on reading data (OpenSSL library error
  follows)"
  
        "OpenSSL: error 0D067007: asn1 encoding
  routines:ASN1_COLLATE_PRIMITIVE:expecting an asn1 sequence"
 
 
  It often appears also the register: 
  
        "mod_ssl: SSL handshake failed (server www.superobra.com:443,
  client <IP do cliente>)  (OpenSSL library error follows)"
  
        "OpenSSL: error 0D067007: asn1 encoding
  routines:ASN1_COLLATE_PRIMITIVE:expecting an asn1 sequence"> 
 
  
  OBS.: Deactivating the SSL configuration and using only http
        transactions occur with no error, always.
  
  The VirtualHost entry of th httpd.conf.ssl file
  for this site is:

  <VirtualHost 200.202.32.226:443>
        ServerName www.superobra.com
        DocumentRoot /home/httpd/html/superobra
        ScriptAlias /cgi-bin/ "/home/httpd/html/superobra/cgi-bin/"
        ErrorLog /home/httpd/html/superobra/log/ssl-error.log
        TransferLog /home/httpd/html/superobra/log/ssl-trans.log
        Action cachedoc /home/httpd/html/superobra/cgi-bin/zwebeng
        AddHandler cachedoc cwl
        SSLEngine on
        SSLCipherSuite
ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
        SSLCertificateFile /etc/httpd/conf/chave_so
        SSLCertificateKeyFile /etc/httpd/conf/server.key
        SSLVerifyClient none
        SSLVerifyDepth  10
        Options ExecCgi
</VirtualHost>
 
  If anybody can help-me solve this problem I'll be grateful for that.
  

  Thanks

  Hasenclever Tolentino
  
  Support Analist
  Webmaster
  
 

-- 
Tecnisys - http://www.tecnisys.com.br

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to