Vaughn R. Baker writes:
> Hi,
>
> I have a sqwebmail implementation running on my server with SSL for login
> enabled, Apache set to UseCannonicalName no and the ServerName matching the
> server using sqwebmail. Login is required two times before entry to the
> maildir is allowed. First login causes a prompt on the client about the SSL
> site certificate (we generated our own) and then displays the Invalid
> Username or Password screen. The second login allows access to the maildir.
> This happens regardless of whether the restrict access to only your IP
> address is checked. The first login is done using an https call to the
> server which I think defeats the purpose of only using SSL during login
> since all subsequent pages are displayed using https.
>
> Any suggestions that allow me to keep the SSL during login only and correct
> the Invalid Username error?
Tell the client to accept the certificate permanently.
--
Sam
