You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by Asif Iqbal <va...@gmail.com> on 2011/04/20 16:37:33 UTC
[users@httpd] Re: failing to access ssl port
On Tue, Apr 19, 2011 at 11:27 PM, Asif Iqbal <va...@gmail.com> wrote:
> I am getting this error while trying to connect to https port. There
> is only this log in the error log
>
> http://goo.gl/IeTnV
>
> Here is the error log
>
> [Tue Apr 19 22:34:36 2011] [info] [client 192.168.0.248] Connection to
> child 1 established (server www.example.net:8443)
> [Tue Apr 19 22:34:36 2011] [info] Seeding PRNG with 136 bytes of entropy
> [Tue Apr 19 22:34:36 2011] [info] [client 192.168.0.248] (70014)End of
> file found: SSL handshake interrupted by system [Hint: Stop button
> pressed in browser?!]
> [Tue Apr 19 22:34:36 2011] [info] [client 192.168.0.248] Connection
> closed to child 1 with abortive shutdown (server www.example.net:8443)
>
> Here is my apache version
>
> [Tue Apr 19 23:13:32 2011] [info] mod_ssl/2.2.17 compiled against
> Server: Apache/2.2.17, Library: OpenSSL/0.9.8e
>
> I am using +sslv3 in the cipher suite as shown in my conf/extra/httpd-ssl.conf
>
> SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv3:+EXP:+eNULL
>
> openssl ciphers -v
> 'ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv3:+EXP:+eNULL'
> shows sslv2 and sslv3 in there
>
> Any suggestion?
If I take the same certificate and start openssl s_server like below
openssl s_server -cert conf/server.crt -key conf/server.key -port 8443
and then try to connect to it from the same FF broswer I do the usual
"This Connection is Untrusted.."
That is what I expected when apache2 was running.
so obviously apache2 is not configured to handle request like openssl
s_server can.
>
> --
> Asif Iqbal
> PGP Key: 0xE62693C5 KeyServer: pgp.mit.edu
> A: Because it messes up the order in which people normally read text.
> Q: Why is top-posting such a bad thing?
>
--
Asif Iqbal
PGP Key: 0xE62693C5 KeyServer: pgp.mit.edu
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org