Anyone using it ? ('SSLVerifyClient require')
Seems the implementation isn't all that good. The same for CRL handling.
It's too bad though. Hate to dish out a million bucks for something
commercial that'l do the job.
-Jon
On Wed, Feb 28, 2001 at 09:41:00AM +0100, John Espen Hetty wrote:
Anyone using it ? ('SSLVerifyClient require')
Yes.
Seems the implementation isn't all that good. The same for CRL handling.
What are you talking about - except having to restart Apache when loading
new CRL's, I've had no
Just wanted to know if anyone else was using this option.
Regarding our trouble with two-way authentication; is seems that the server
sometimes freezes, or that it sometimes insists on asking for the user
sertificate (re-negotiation) on every request. There are some keep-alive
problems as well. I
On Wed, Feb 28, 2001 at 10:17:59AM +0100, John Espen Hetty wrote:
Just wanted to know if anyone else was using this option.
Check the list archive - quite a few people are using that feature.
I had some three or four thousand users (previous job).
Regarding our trouble with two-way
Regarding our trouble with two-way authentication; is seems that
the server
sometimes freezes, or that it sometimes insists on asking for the
user
sertificate (re-negotiation) on every request. There are some
keep-alive
problems as well. I really haven't
Hi, I'm using modssl 2.8.0 and apache 1.3.17 with php 4.0.4pl1 and SSL
doesn't work. Port 443 is open and Apache is configured properly but it has
something to do with PHP because when I remove the PHP module, everything
works properly. I was told that this problem is caused by
Really interested in this - we're trying to build the
same environment. So far no joywe've got oracle
and mysql in the mix as well...
Any input greatly appreciated!
-Arthur.
-Original Message-
From: Malay Shah [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 28, 2001 8:17 AM
I don't use PHP myself but have you checked the FAQ ?
http://www.modssl.org/docs/2.8/ssl_faq.html#ToC10 relates to PHP3 and may be
similar.
If this doesn't help, please post more details of what happens when "it doesn't
work" your hardware/OS configuration.
HTH,
Simon.
Please
On Tue, 27 Feb 2001, Michelle Govender wrote:
normally that error means your private key and certificate file does not
match.
To test it try using these commands:
for the private key:
$ openssl rsa -noout -text -in keyfile -modulus
for the certficate file:
$ openssl x509 -noout -text -in
Hi all. What is the most common setup for having a normal server and
a secure server on the same machine? Should I just have one instance
of Apache running with a virtual domain that handles the https://
connections? or should I actually start a separate httpd process
that handles the https://
Jay A. Stoltenberg
Mgr. Networks and PC Applications
Stoltenberg Consulting Inc.
[EMAIL PROTECTED]
(412)-854-5688
-Original Message-
From: Dan Delaney [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, February 28, 2001 10:47 AM
To: [EMAIL PROTECTED]
Subject: Most common setup?
Hi all.
Sorry, double-clicked reply. Set up a virtual host in the ssl section
for the default port, thenset up a virtual host to listen to port 443,
and set your documentroot to the directory where you store your html
files.
Jay A. Stoltenberg
Mgr. Networks and PC Applications
Stoltenberg Consulting
Does anyone know about a workaround/fix for the below problem? We'd
like to use a wildcard certificate ...
I tested the "wildcard" test-certificate offered by www.thawte.com
The test:
I control the DNS, so I put a "*.gmoney.com" entry in my DNS file,
and ping tested multiple names, ie.
Dan Delaney wrote:
Hi all. What is the most common setup for having a normal server and
a secure server on the same machine? Should I just have one instance
of Apache running with a virtual domain that handles the https://
connections? or should I actually start a separate httpd process
that
On Wed, Feb 28, 2001 at 08:20:29AM -0800, Ladd Angelius wrote:
Win98 IE5 clients report "hostname matches the certificate."
Win2K IE5 clients report "hostname does not match the certificate."
At some point M$ decided that they no longer wanted to accept
wildcard certs, and "fixed" it in one
15 matches
Mail list logo