You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@httpd.apache.org by kulkarni veena <ve...@yahoo.com> on 2003/05/12 18:21:46 UTC
[users@httpd] https not working for MSIE.
Hello,
I was wondering what steps are to be taken to make
https work for both MSIE and Netscape for a
self-signed certficate.
Should both the ca.cert and server.crt created using
openssl be converted to DER format and use only DER
format certs and disregard 'pem' certs?
NOTE: Currently everything is working fine for
Netscape but not for MSIE.
Thanks in advance.
-veena
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Mac Serve <ma...@ns.sympatico.ca>.
The test page you listed didnt work both ways, but this does:
https://ecs.csus.edu/ ... strange..
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Hi,
Even though I have this code in the ssl.conf i see
that MSIE is trying to use http1.1 , TLS protocol.
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
Hence i forced internet explorer to use only http 1.0
and SSLv2, but still https does not seem to work.
This makes me wonder if the problem is due to
"keepalive" facility?
Do I need to do something else for SetEnvIf to work?
Note: i also tried adding this:
BrowserMatch MSIE[4-5] nokeepalive downgrade-1.0 force
response-1.0
which also did not help to make it work on MSIE.
Thanks in advance.
--veena
--- kulkarni veena <ve...@yahoo.com> wrote:
> hello,
>
> I added the 'BrowserMatch" directive but still the
> client connection keeps dying down after finalisng
> the
> ssl handshake.
>
> But i don't know why the client connection si dying
> down.
>
> Also, i'm sorry about the testpage link, i realised
> it
> is just intranet accessible.
>
>
> -veena
>
> --- Sander Holthaus - Orange XL <in...@orangexl.com>
> wrote:
> > OK, from what I can see, try putting this in your
> > httpd.conf:
> >
> > BrowserMatch \bMSIE [4-5] nokeepalive
> downgrade-1.0
> > force-response-1.0
> > BrowserMatch \bMSIE ssl-unclean-shutdown
> >
> > (should be there though not in an optmial or 100%
> > working form. The above
> > lines solved problems for me).
> >
> > But, https://ecs.csus.edu/ worked here perfectly
> in
> > MSIE 6, though the
> > certificate is not valid.
> >
> > Kind Regards,
> > Sander Holthaus
> >
> >
> > -----Original Message-----
> > From: kulkarni veena [mailto:veenacsus@yahoo.com]
> > Sent: woensdag 14 mei 2003 21:03
> > To: users@httpd.apache.org
> > Subject: Re: [users@httpd] https not working for
> > MSIE.
> >
> >
> > Hello,
> >
> > I do not see any entry for ssl connection in
> > access_log, error_log nor ssl_request_log.
> >
> > But i do see request for http connection . Here is
> > the
> > access_log:
> >
> > Access log is:
> >
> > [**MSIE]
> > 130.86.72.20 - - [13/May/2003:13:20:00 -0700]
> > "GET / HTTP/1.1" 304 0
> > 130.86.72.20 - - [13/May/2003:13:20:00 -0700] "GET
> > /apache_pb2.gif HTTP/1.1"
> > 304 0 130.86.72.20 - - [13/May/2003:13:20:07
> -0700]
> > "GET /about.htm
> > HTTP/1.1" 304 0
> >
> > [**NETSCAPE]
> > 130.86.71.139 - - [13/May/2003:13:23:48
> > -0700] "GET / HTTP/1.0" 304 0
> > 130.86.71.139 - - [13/May/2003:13:23:51 -0700]
> "GET
> > /
> > HTTP/1.0" 304 0
> > 130.86.71.139 - - [13/May/2003:13:23:51 -0700]
> "GET
> > /apache_pb2.gif
> > HTTP/1.0" 304 0 130.86.71.139 - -
> > [13/May/2003:13:23:58 -0700] "GET
> > /login.htm HTTP/1.0" 200 289 130.86.71.139 - -
> > [13/May/2003:13:23:59 -0700]
> > "GET /apache_pb2.gif HTTP/1.0" 200 2414
> > 130.86.71.139 - -
> > [13/May/2003:13:24:03 -0700] "GET /newuser.htm
> > HTTP/1.0" 200 339
> > 130.86.71.139 - - [13/May/2003:13:24:10 -0700]
> "GET
> > /about.htm HTTP/1.0" 304
> > 0
> >
> > My testpage URL once again is:
> >
> > http://hawk.ecs.csus.edu
> > https://hawk.ecs.csus.edu
> >
> > --veena
> >
> >
> > --- Joseph A Nagy Jr
> <jo...@charter.net>
> > wrote:
> > > Sander Holthaus - Orange XL wrote:
> > > > It SHOULD in the ssl-log. If it isn't, then
> this
> > > is probably not an
> > > > Apache-issue.
> > > >
> > > > Kind regards,
> > > > Sander Holthaus
> > > <snip>
> > >
> > > I agree, but I wasn't able to connect with Opera
> 6
> > (Identifing as MSIE
> > > 5.0) or Mozilla1.3, so I'm not so sure this is
> > > entirely a client side
> > > issue (the link I was sent was http and not
> https
> > > though)
> > >
> > >
> > >
> > >
> >
>
---------------------------------------------------------------------
> > > The official User-To-User support forum of the
> > > Apache HTTP Server Project.
> > > See <URL:http://httpd.apache.org/userslist.html>
> > for
> > > more info.
> > > To unsubscribe, e-mail:
> > > users-unsubscribe@httpd.apache.org
> > > " from the digest:
> > > users-digest-unsubscribe@httpd.apache.org
> > > For additional commands, e-mail:
> > > users-help@httpd.apache.org
> > >
> >
> >
> > __________________________________
> > Do you Yahoo!?
> > The New Yahoo! Search - Faster. Easier. Bingo.
> > http://search.yahoo.com
> >
> >
>
---------------------------------------------------------------------
> > The official User-To-User support forum of the
> > Apache HTTP Server Project.
> > See <URL:http://httpd.apache.org/userslist.html>
> for
> > more info.
> > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> > users-help@httpd.apache.org
> >
> >
> >
>
---------------------------------------------------------------------
> > The official User-To-User support forum of the
> > Apache HTTP Server Project.
> > See <URL:http://httpd.apache.org/userslist.html>
> for
> > more info.
> > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> > users-help@httpd.apache.org
> >
>
>
> __________________________________
> Do you Yahoo!?
> The New Yahoo! Search - Faster. Easier. Bingo.
> http://search.yahoo.com
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
hello,
I added the 'BrowserMatch" directive but still the
client connection keeps dying down after finalisng the
ssl handshake.
But i don't know why the client connection si dying
down.
Also, i'm sorry about the testpage link, i realised it
is just intranet accessible.
-veena
--- Sander Holthaus - Orange XL <in...@orangexl.com>
wrote:
> OK, from what I can see, try putting this in your
> httpd.conf:
>
> BrowserMatch \bMSIE [4-5] nokeepalive downgrade-1.0
> force-response-1.0
> BrowserMatch \bMSIE ssl-unclean-shutdown
>
> (should be there though not in an optmial or 100%
> working form. The above
> lines solved problems for me).
>
> But, https://ecs.csus.edu/ worked here perfectly in
> MSIE 6, though the
> certificate is not valid.
>
> Kind Regards,
> Sander Holthaus
>
>
> -----Original Message-----
> From: kulkarni veena [mailto:veenacsus@yahoo.com]
> Sent: woensdag 14 mei 2003 21:03
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] https not working for
> MSIE.
>
>
> Hello,
>
> I do not see any entry for ssl connection in
> access_log, error_log nor ssl_request_log.
>
> But i do see request for http connection . Here is
> the
> access_log:
>
> Access log is:
>
> [**MSIE]
> 130.86.72.20 - - [13/May/2003:13:20:00 -0700]
> "GET / HTTP/1.1" 304 0
> 130.86.72.20 - - [13/May/2003:13:20:00 -0700] "GET
> /apache_pb2.gif HTTP/1.1"
> 304 0 130.86.72.20 - - [13/May/2003:13:20:07 -0700]
> "GET /about.htm
> HTTP/1.1" 304 0
>
> [**NETSCAPE]
> 130.86.71.139 - - [13/May/2003:13:23:48
> -0700] "GET / HTTP/1.0" 304 0
> 130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET
> /
> HTTP/1.0" 304 0
> 130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET
> /apache_pb2.gif
> HTTP/1.0" 304 0 130.86.71.139 - -
> [13/May/2003:13:23:58 -0700] "GET
> /login.htm HTTP/1.0" 200 289 130.86.71.139 - -
> [13/May/2003:13:23:59 -0700]
> "GET /apache_pb2.gif HTTP/1.0" 200 2414
> 130.86.71.139 - -
> [13/May/2003:13:24:03 -0700] "GET /newuser.htm
> HTTP/1.0" 200 339
> 130.86.71.139 - - [13/May/2003:13:24:10 -0700] "GET
> /about.htm HTTP/1.0" 304
> 0
>
> My testpage URL once again is:
>
> http://hawk.ecs.csus.edu
> https://hawk.ecs.csus.edu
>
> --veena
>
>
> --- Joseph A Nagy Jr <jo...@charter.net>
> wrote:
> > Sander Holthaus - Orange XL wrote:
> > > It SHOULD in the ssl-log. If it isn't, then this
> > is probably not an
> > > Apache-issue.
> > >
> > > Kind regards,
> > > Sander Holthaus
> > <snip>
> >
> > I agree, but I wasn't able to connect with Opera 6
> (Identifing as MSIE
> > 5.0) or Mozilla1.3, so I'm not so sure this is
> > entirely a client side
> > issue (the link I was sent was http and not https
> > though)
> >
> >
> >
> >
>
---------------------------------------------------------------------
> > The official User-To-User support forum of the
> > Apache HTTP Server Project.
> > See <URL:http://httpd.apache.org/userslist.html>
> for
> > more info.
> > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> > users-help@httpd.apache.org
> >
>
>
> __________________________________
> Do you Yahoo!?
> The New Yahoo! Search - Faster. Easier. Bingo.
> http://search.yahoo.com
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by Sander Holthaus - Orange XL <in...@orangexl.com>.
OK, from what I can see, try putting this in your httpd.conf:
BrowserMatch \bMSIE [4-5] nokeepalive downgrade-1.0 force-response-1.0
BrowserMatch \bMSIE ssl-unclean-shutdown
(should be there though not in an optmial or 100% working form. The above
lines solved problems for me).
But, https://ecs.csus.edu/ worked here perfectly in MSIE 6, though the
certificate is not valid.
Kind Regards,
Sander Holthaus
-----Original Message-----
From: kulkarni veena [mailto:veenacsus@yahoo.com]
Sent: woensdag 14 mei 2003 21:03
To: users@httpd.apache.org
Subject: Re: [users@httpd] https not working for MSIE.
Hello,
I do not see any entry for ssl connection in
access_log, error_log nor ssl_request_log.
But i do see request for http connection . Here is the
access_log:
Access log is:
[**MSIE]
130.86.72.20 - - [13/May/2003:13:20:00 -0700]
"GET / HTTP/1.1" 304 0
130.86.72.20 - - [13/May/2003:13:20:00 -0700] "GET /apache_pb2.gif HTTP/1.1"
304 0 130.86.72.20 - - [13/May/2003:13:20:07 -0700] "GET /about.htm
HTTP/1.1" 304 0
[**NETSCAPE]
130.86.71.139 - - [13/May/2003:13:23:48
-0700] "GET / HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET /
HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET /apache_pb2.gif
HTTP/1.0" 304 0 130.86.71.139 - - [13/May/2003:13:23:58 -0700] "GET
/login.htm HTTP/1.0" 200 289 130.86.71.139 - - [13/May/2003:13:23:59 -0700]
"GET /apache_pb2.gif HTTP/1.0" 200 2414 130.86.71.139 - -
[13/May/2003:13:24:03 -0700] "GET /newuser.htm HTTP/1.0" 200 339
130.86.71.139 - - [13/May/2003:13:24:10 -0700] "GET /about.htm HTTP/1.0" 304
0
My testpage URL once again is:
http://hawk.ecs.csus.edu
https://hawk.ecs.csus.edu
--veena
--- Joseph A Nagy Jr <jo...@charter.net>
wrote:
> Sander Holthaus - Orange XL wrote:
> > It SHOULD in the ssl-log. If it isn't, then this
> is probably not an
> > Apache-issue.
> >
> > Kind regards,
> > Sander Holthaus
> <snip>
>
> I agree, but I wasn't able to connect with Opera 6 (Identifing as MSIE
> 5.0) or Mozilla1.3, so I'm not so sure this is
> entirely a client side
> issue (the link I was sent was http and not https
> though)
>
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Hello,
I do not see any entry for ssl connection in
access_log, error_log nor ssl_request_log.
But i do see request for http connection . Here is the
access_log:
Access log is:
[**MSIE]
130.86.72.20 - - [13/May/2003:13:20:00 -0700]
"GET / HTTP/1.1" 304 0
130.86.72.20 - - [13/May/2003:13:20:00 -0700] "GET
/apache_pb2.gif HTTP/1.1" 304 0
130.86.72.20 - - [13/May/2003:13:20:07 -0700] "GET
/about.htm HTTP/1.1" 304 0
[**NETSCAPE]
130.86.71.139 - - [13/May/2003:13:23:48
-0700] "GET / HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET /
HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET
/apache_pb2.gif HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:58 -0700] "GET
/login.htm HTTP/1.0" 200 289
130.86.71.139 - - [13/May/2003:13:23:59 -0700] "GET
/apache_pb2.gif HTTP/1.0" 200 2414
130.86.71.139 - - [13/May/2003:13:24:03 -0700] "GET
/newuser.htm HTTP/1.0" 200 339
130.86.71.139 - - [13/May/2003:13:24:10 -0700] "GET
/about.htm HTTP/1.0" 304 0
My testpage URL once again is:
http://hawk.ecs.csus.edu
https://hawk.ecs.csus.edu
--veena
--- Joseph A Nagy Jr <jo...@charter.net>
wrote:
> Sander Holthaus - Orange XL wrote:
> > It SHOULD in the ssl-log. If it isn't, then this
> is probably not an
> > Apache-issue.
> >
> > Kind regards,
> > Sander Holthaus
> <snip>
>
> I agree, but I wasn't able to connect with Opera 6
> (Identifing as MSIE
> 5.0) or Mozilla1.3, so I'm not so sure this is
> entirely a client side
> issue (the link I was sent was http and not https
> though)
>
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Hello,
This is what is logged in the log file when i set the
loglevel to "debug"
[Fri May 16 15:44:28 2003] [info] Connection to child
3 established (server hawk.ecs.csus.edu:443, client
130.86.72.20)
[Fri May 16 15:44:28 2003] [info] Seeding PRNG with
136 bytes of entropy
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1757): OpenSSL: Handshake: start
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop:
before/accept initialization
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 11/11 bytes from
BIO#13aa78 [mem: 16f648] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 80 61 01 03 01 00 48
00-00 00 10 .a....H.... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 88/88 bytes from
BIO#13aa78 [mem: 16f653] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 8f 80 01 80 00 03 80
00-01 81 00 01 81 00 03 82 ................ |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0010: 00 01 00 00 04 00 00
05-00 00 0a 83 00 04 84 80 ................ |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0020: 40 01 00 80 07 00 c0
03-00 80 00 00 09 06 00 40 @..............@ |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0030: 00 00 64 00 00 62 00
00-03 00 00 06 83 00 04 84 ..d..b.......... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0040: 28 40 02 00 80 04 00
80-84 c8 38 e5 4a b1 e2 5c (@........8.J..\ |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0050: e6 6c c4 30 10 d4 e9
51- .l.0...Q |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 read
client hello A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 write
server hello A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 write
certificate A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 write
server done A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 flush
data
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 5/5 bytes from
BIO#13aa78 [mem: 16f648] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 16 03 01 00 86
..... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 134/134 bytes
from BIO#13aa78 [mem: 16f64d] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 10 00 00 82 00 80 96
a0-ec df a7 74 69 c5 c7 bd ...........ti... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0010: 85 3d 08 01 62 4c da
e0-d6 f0 48 1f 71 1a 4d 05 .=..bL....H.q.M. |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0020: 6a f0 f3 0f a9 c3 e4
3d-e4 a5 3f f8 21 44 2d 71 j......=..?.!D-q |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0030: b1 b7 19 ca ea dd 72
e2-73 73 26 a6 3d 7c 0d 20 ......r.ss&.=|. |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0040: 8e 60 1a da 03 69 84
a1-98 f4 bb 0c 14 1c b0 f9 .`...i.......... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0050: d4 90 d0 21 ea b5 02
6e-70 6c 0f af 81 2f 03 4d ...!...npl.../.M |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0060: 3c da 46 18 6c 33 08
9f-31 ef b0 8c a4 a5 79 33 <.F.l3..1.....y3 |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0070: 91 aa 23 97 e8 53 95
c6-32 e1 e5 63 fa 91 94 93 ..#..S..2..c.... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0080: 07 4b 34 9e a6 ed
.K4... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 read
client key exchange A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 5/5 bytes from
BIO#13aa78 [mem: 16f648] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 14 03 01 00 01
..... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 1/1 bytes from
BIO#13aa78 [mem: 16f64d] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 01
. |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 5/5 bytes from
BIO#13aa78 [mem: 16f648] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 16 03 01
... |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1454): | 0005 - <SPACES/NULS>
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1478): OpenSSL: read 32/32 bytes from
BIO#13aa78 [mem: 16f64d] (BIO dump follows)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1425):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0000: 01 c9 17 35 f7 53 50
f8-03 33 60 a7 48 65 a9 c4 ...5.SP..3`.He.. |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1450): | 0010: f5 99 57 66 c2 ef d5
ce-6b 17 c6 41 02 63 83 6f ..Wf....k..A.c.o |
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1456):
+-------------------------------------------------------------------------+
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 read
finished A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 write
change cipher spec A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 write
finished A
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1765): OpenSSL: Loop: SSLv3 flush
data
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1603): Inter-Process Session
Cache: request=SET status=OK
id=77B85AF7051A91B72258C3415EB18F4C0E4EB0C4EE999C767D185A1EC0CC4A07
timeout=300s (session caching)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1761): OpenSSL: Handshake: done
[Fri May 16 15:44:28 2003] [info] Connection: Client
IP: 130.86.72.20, Protocol: TLSv1, Cipher: RC4-MD5
(128/128 bits)
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_io.c(1489): OpenSSL: I/O error, 5 bytes
expected to read on BIO#13aa78 [mem: 16f648]
[Fri May 16 15:44:28 2003] [info] (70014)End of file
found: SSL input filter read failed.
[Fri May 16 15:44:28 2003] [debug]
ssl_engine_kernel.c(1775): OpenSSL: Write: SSL
negotiation finished successfully
[Fri May 16 15:44:28 2003] [info] Connection to child
3 closed with standard shutdown(server
hawk.ecs.csus.edu:443, client 130.86.72.20)
#
--- Joseph A Nagy Jr <jo...@charter.net>
wrote:
> Sander Holthaus - Orange XL wrote:
> > It SHOULD in the ssl-log. If it isn't, then this
> is probably not an
> > Apache-issue.
> >
> > Kind regards,
> > Sander Holthaus
> <snip>
>
> I agree, but I wasn't able to connect with Opera 6
> (Identifing as MSIE
> 5.0) or Mozilla1.3, so I'm not so sure this is
> entirely a client side
> issue (the link I was sent was http and not https
> though)
>
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Joseph A Nagy Jr <jo...@charter.net>.
Sander Holthaus - Orange XL wrote:
> It SHOULD in the ssl-log. If it isn't, then this is probably not an
> Apache-issue.
>
> Kind regards,
> Sander Holthaus
<snip>
I agree, but I wasn't able to connect with Opera 6 (Identifing as MSIE
5.0) or Mozilla1.3, so I'm not so sure this is entirely a client side
issue (the link I was sent was http and not https though)
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by Sander Holthaus - Orange XL <in...@orangexl.com>.
It SHOULD in the ssl-log. If it isn't, then this is probably not an
Apache-issue.
Kind regards,
Sander Holthaus
-----Original Message-----
From: Joseph A Nagy Jr [mailto:joseph_a_nagy_jr@charter.net]
Sent: woensdag 14 mei 2003 17:38
To: users@httpd.apache.org
Subject: Re: [users@httpd] https not working for MSIE.
Sander Holthaus - Orange XL wrote:
> Could you please post a sample from your SSL-log and error-log when
> you are trying to connect with MSIE to your server?
>
> Kind Regards,
> Sander Holthaus
<snip>
Kulkarni says that IE doesn't make any entries into the error-log or
access-log.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info. To
unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Joseph A Nagy Jr <jo...@charter.net>.
Sander Holthaus - Orange XL wrote:
> Could you please post a sample from your SSL-log and error-log when you are
> trying to connect with MSIE to your server?
>
> Kind Regards,
> Sander Holthaus
<snip>
Kulkarni says that IE doesn't make any entries into the error-log or
access-log.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by Sander Holthaus - Orange XL <in...@orangexl.com>.
Could you please post a sample from your SSL-log and error-log when you are
trying to connect with MSIE to your server?
Kind Regards,
Sander Holthaus
-----Original Message-----
From: Joseph A Nagy Jr [mailto:joseph_a_nagy_jr@charter.net]
Sent: woensdag 14 mei 2003 17:10
To: users@httpd.apache.org
Subject: Re: [users@httpd] https not working for MSIE.
kulkarni veena wrote:
> Hello,
>
> MY SSL.conf config is as follows:
>
> Listen 443
> Listen 130.86.71.139:443
> SSLSessionCache
> dbm:/var/apache/logs/ssl_scache
> SSLSessionCacheTimeout 300
> SSLMutex file:/var/apache/logs/ssl_mutex
> <VirtualHost hawk.ecs.csus.edu:443>
> SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
> SetEnvIf User-Agent ".*MSIE.*" \
> nokeepalive ssl-unclean-shutdown \
> downgrade-1.0 force-response-1.0
>
> Also, my Document root for http and ssl is different.
> and my certificates are in PEM code.
>
> It is mostly the same as default except for few
> changes.
>
> --veena
>
>
> --- Zac Stevens <zt...@cryptocracy.com> wrote:
>
>>Hi Veena,
>>
>>On Tue, May 13, 2003 at 09:44:55PM -0700, kulkarni
>>veena wrote:
>>
>>>Thanks. i did try all of the options given in the
>>
>>faq
>>
>>>except for trying out different openssl version
>>
>>(i'm
>>
>>>using 0.9.7a).
>>>
>>>Nothing so has worked, i will try changing openssl
>>>version.
>>
>>That being the case, what are the browser-specific
>>SSL options you
>>currently have in your configuration for MSIE
>>clients?
>>
>>You should definitely be using OpenSSL 0.9.7a - it's
>>the latest recommended
>>version.
>>
>>
>>>The weird thing is https works with all Netscape
>>>versions but with NONE MSIE (5.x & 6.X).
>>
>>As per the FAQ entry I pointed at, it's not weird at
>>all. MSIE has a lot
>>of quirks in its SSL implmentation - some related to
>>its support for
>>particular ciphers, others to nonstandard behaviour
>>it expects to find when
>>talking to the server.
>>
>>I would go so far as to claim that it is not
>>possible for a "vanilla" SSL
>>configuration (ie, one without user-agent specific
>>options) to work with
>>a "vanilla" IE installation - so the exact
>>configuration you are running is
>>quite important.
>>
>>Cheers,
>>
>>
>>Zac
Why do I get the feeling that kulkarni is still looking for a server
side solution to a client side problem?
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info. To
unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Joseph A Nagy Jr <jo...@charter.net>.
kulkarni veena wrote:
> Hello,
>
> MY SSL.conf config is as follows:
>
> Listen 443
> Listen 130.86.71.139:443
> SSLSessionCache
> dbm:/var/apache/logs/ssl_scache
> SSLSessionCacheTimeout 300
> SSLMutex file:/var/apache/logs/ssl_mutex
> <VirtualHost hawk.ecs.csus.edu:443>
> SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
> SetEnvIf User-Agent ".*MSIE.*" \
> nokeepalive ssl-unclean-shutdown \
> downgrade-1.0 force-response-1.0
>
> Also, my Document root for http and ssl is different.
> and my certificates are in PEM code.
>
> It is mostly the same as default except for few
> changes.
>
> --veena
>
>
> --- Zac Stevens <zt...@cryptocracy.com> wrote:
>
>>Hi Veena,
>>
>>On Tue, May 13, 2003 at 09:44:55PM -0700, kulkarni
>>veena wrote:
>>
>>>Thanks. i did try all of the options given in the
>>
>>faq
>>
>>>except for trying out different openssl version
>>
>>(i'm
>>
>>>using 0.9.7a).
>>>
>>>Nothing so has worked, i will try changing openssl
>>>version.
>>
>>That being the case, what are the browser-specific
>>SSL options you
>>currently have in your configuration for MSIE
>>clients?
>>
>>You should definitely be using OpenSSL 0.9.7a - it's
>>the latest recommended
>>version.
>>
>>
>>>The weird thing is https works with all Netscape
>>>versions but with NONE MSIE (5.x & 6.X).
>>
>>As per the FAQ entry I pointed at, it's not weird at
>>all. MSIE has a lot
>>of quirks in its SSL implmentation - some related to
>>its support for
>>particular ciphers, others to nonstandard behaviour
>>it expects to find when
>>talking to the server.
>>
>>I would go so far as to claim that it is not
>>possible for a "vanilla" SSL
>>configuration (ie, one without user-agent specific
>>options) to work with
>>a "vanilla" IE installation - so the exact
>>configuration you are running is
>>quite important.
>>
>>Cheers,
>>
>>
>>Zac
Why do I get the feeling that kulkarni is still looking for a server
side solution to a client side problem?
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Hello,
MY SSL.conf config is as follows:
Listen 443
Listen 130.86.71.139:443
SSLSessionCache
dbm:/var/apache/logs/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:/var/apache/logs/ssl_mutex
<VirtualHost hawk.ecs.csus.edu:443>
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
Also, my Document root for http and ssl is different.
and my certificates are in PEM code.
It is mostly the same as default except for few
changes.
--veena
--- Zac Stevens <zt...@cryptocracy.com> wrote:
> Hi Veena,
>
> On Tue, May 13, 2003 at 09:44:55PM -0700, kulkarni
> veena wrote:
> > Thanks. i did try all of the options given in the
> faq
> > except for trying out different openssl version
> (i'm
> > using 0.9.7a).
> >
> > Nothing so has worked, i will try changing openssl
> > version.
>
> That being the case, what are the browser-specific
> SSL options you
> currently have in your configuration for MSIE
> clients?
>
> You should definitely be using OpenSSL 0.9.7a - it's
> the latest recommended
> version.
>
> > The weird thing is https works with all Netscape
> > versions but with NONE MSIE (5.x & 6.X).
>
> As per the FAQ entry I pointed at, it's not weird at
> all. MSIE has a lot
> of quirks in its SSL implmentation - some related to
> its support for
> particular ciphers, others to nonstandard behaviour
> it expects to find when
> talking to the server.
>
> I would go so far as to claim that it is not
> possible for a "vanilla" SSL
> configuration (ie, one without user-agent specific
> options) to work with
> a "vanilla" IE installation - so the exact
> configuration you are running is
> quite important.
>
> Cheers,
>
>
> Zac
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Zac Stevens <zt...@cryptocracy.com>.
Hi Veena,
On Tue, May 13, 2003 at 09:44:55PM -0700, kulkarni veena wrote:
> Thanks. i did try all of the options given in the faq
> except for trying out different openssl version (i'm
> using 0.9.7a).
>
> Nothing so has worked, i will try changing openssl
> version.
That being the case, what are the browser-specific SSL options you
currently have in your configuration for MSIE clients?
You should definitely be using OpenSSL 0.9.7a - it's the latest recommended
version.
> The weird thing is https works with all Netscape
> versions but with NONE MSIE (5.x & 6.X).
As per the FAQ entry I pointed at, it's not weird at all. MSIE has a lot
of quirks in its SSL implmentation - some related to its support for
particular ciphers, others to nonstandard behaviour it expects to find when
talking to the server.
I would go so far as to claim that it is not possible for a "vanilla" SSL
configuration (ie, one without user-agent specific options) to work with
a "vanilla" IE installation - so the exact configuration you are running is
quite important.
Cheers,
Zac
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] Can ProxyPass/Rewrite add a Host header?
Posted by Joshua Slive <jo...@slive.ca>.
On Tue, 13 May 2003, Garth Winter Webb wrote:
> What I'd like to do is set up a proxy server on a separate machine that
> will proxy pass to 1.2.3.4 so that I can get everything working properly
> on their servers and then flip the DNS switch. However since they seem
> to do name base virtual hosting, I also need to pass along the Host
> header to let it know what domain I intend to access with 1.2.3.4.
In 2.0 you have ProxyPreserveHost:
http://httpd.apache.org/docs-2.0/mod/mod_proxy.html#proxypreservehost
In 1.3 you might by able to mess with the DNS resolution on your proxy to
make it believe that the origin has a different name than its real name.
Joshua.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
[users@httpd] Can ProxyPass/Rewrite add a Host header?
Posted by Garth Winter Webb <ga...@perijove.com>.
Hi, I'm currently moving a website from one hosting company to another.
After I paid for the service I realized that they do not provide a
static IP address. Rather, you update your domain name do use their DNS
servers. Right now, if I ask their domain name servers what IP my
domain has, it returns an IP for one of their servers (say, 1.2.3.4),
while bringing up my domain in a web browser brings me to my current
site.
What I'd like to do is set up a proxy server on a separate machine that
will proxy pass to 1.2.3.4 so that I can get everything working properly
on their servers and then flip the DNS switch. However since they seem
to do name base virtual hosting, I also need to pass along the Host
header to let it know what domain I intend to access with 1.2.3.4.
ProxyPass and friends don't seem to have any options for this, and
Rewrite offers the [E] flag for setting environment variables, but I'm
not sure if this will do what I want. Any suggestions, or pointers to
something I've missed? If this is not possible I'll probably end up
buying a new domain name to use before the transition and point it at
the new hosting servers.
Note that the new hosting company offers access to their servers pre-dns
switch via a URL like:
http://hosting.server.com/~clientname
but for reasons that are not relevant to this question, this will not
work for me.
Thanks!
--
Garth Winter Webb <ga...@perijove.com>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Zac,
Thanks. i did try all of the options given in the faq
except for trying out different openssl version (i'm
using 0.9.7a).
Nothing so has worked, i will try changing openssl
version.
The weird thing is https works with all Netscape
versions but with NONE MSIE (5.x & 6.X).
--veena
--- Zac Stevens <zt...@cryptocracy.com> wrote:
> On Tue, May 13, 2003 at 03:40:58PM -0500, Joseph A
> Nagy Jr wrote:
> > Sorry, past adjusting IE's settings, I don't know.
> If it works in NS it
> > should work in IE. The only thing I can think of
> is a bug with IE. Toss
> > me the url and I'll see if I can't retrieve the
> https with Opera (which
> > will be set to identify as IE)
>
> Yes, it's a number of bugs with IE. Which is why
> there is an entry in the
> SSL FAQ dealing with precisely this issue - the URL
> was included in my
> earlier reply:
>
>
http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#msie
>
>
> Zac
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Zac Stevens <zt...@cryptocracy.com>.
On Tue, May 13, 2003 at 03:40:58PM -0500, Joseph A Nagy Jr wrote:
> Sorry, past adjusting IE's settings, I don't know. If it works in NS it
> should work in IE. The only thing I can think of is a bug with IE. Toss
> me the url and I'll see if I can't retrieve the https with Opera (which
> will be set to identify as IE)
Yes, it's a number of bugs with IE. Which is why there is an entry in the
SSL FAQ dealing with precisely this issue - the URL was included in my
earlier reply:
http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#msie
Zac
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Joseph A Nagy Jr <jo...@charter.net>.
kulkarni veena wrote:
> Thanks. The testpage link is:
>
> http://hawk.ecs.csus.edu
>
> My certificates are in PEM format( created using
> Openssl), If I change it to DER format , Netscape doe
> s not work. is there some way i can have both type of
> certificates?
>
> --veena
<snip>
While that's odd, I'm not sure. I've not worked with HTTPS (yet) on my
server (no need really).
Also, I cannot connect to the link provided. Opera and Mozilla 1.3 just
sit there trying to resolve. Sorry I couldn't help more. :(
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Thanks. The testpage link is:
http://hawk.ecs.csus.edu
My certificates are in PEM format( created using
Openssl), If I change it to DER format , Netscape doe
s not work. is there some way i can have both type of
certificates?
--veena
--- Joseph A Nagy Jr <jo...@charter.net>
wrote:
> kulkarni veena wrote:
> > Hello,
> >
> > It does not work for IE even after adjusting the
> > settings.
> <snip>
>
> Sorry, past adjusting IE's settings, I don't know.
> If it works in NS it
> should work in IE. The only thing I can think of is
> a bug with IE. Toss
> me the url and I'll see if I can't retrieve the
> https with Opera (which
> will be set to identify as IE)
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Joseph A Nagy Jr <jo...@charter.net>.
kulkarni veena wrote:
> Hello,
>
> It does not work for IE even after adjusting the
> settings.
<snip>
Sorry, past adjusting IE's settings, I don't know. If it works in NS it
should work in IE. The only thing I can think of is a bug with IE. Toss
me the url and I'll see if I can't retrieve the https with Opera (which
will be set to identify as IE)
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Hello,
It does not work for IE even after adjusting the
settings.
Request for SSL connection from IE is not logged in
any of the logs, only http is logged.
Access log is:
[**MSIE] 130.86.72.20 - - [13/May/2003:13:20:00 -0700]
"GET / HTTP/1.1" 304 0
130.86.72.20 - - [13/May/2003:13:20:00 -0700] "GET
/apache_pb2.gif HTTP/1.1" 304 0
130.86.72.20 - - [13/May/2003:13:20:07 -0700] "GET
/about.htm HTTP/1.1" 304 0
[**NETSCAPE] 130.86.71.139 - - [13/May/2003:13:23:48
-0700] "GET / HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET /
HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:51 -0700] "GET
/apache_pb2.gif HTTP/1.0" 304 0
130.86.71.139 - - [13/May/2003:13:23:58 -0700] "GET
/login.htm HTTP/1.0" 200 289
130.86.71.139 - - [13/May/2003:13:23:59 -0700] "GET
/apache_pb2.gif HTTP/1.0" 200 2414
130.86.71.139 - - [13/May/2003:13:24:03 -0700] "GET
/newuser.htm HTTP/1.0" 200 339
130.86.71.139 - - [13/May/2003:13:24:10 -0700] "GET
/about.htm HTTP/1.0" 304 0
MY SSL.conf config is as follows:
Listen 443
Listen 130.86.71.139:443
SSLSessionCache
dbm:/var/apache/logs/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:/var/apache/logs/ssl_mutex
<VirtualHost hawk.ecs.csus.edu:443>
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
Also, my Document root for http and ssl is different.
and my certificates are in PEM code.
Any input will help.
--veena
--- Joseph A Nagy Jr <jo...@charter.net>
wrote:
> kulkarni veena wrote:
> <snip>
> > difficulties, or you may need to adjust your
> browser
> > settings.
> <snip>
>
> Have you tried adjusting IE's settings? If it
> displayes correctly in one
> browser, it should in the other. The only reason it
> should show a
> message about the cert is if it's not valid.
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Joseph A Nagy Jr <jo...@charter.net>.
kulkarni veena wrote:
<snip>
> difficulties, or you may need to adjust your browser
> settings.
<snip>
Have you tried adjusting IE's settings? If it displayes correctly in one
browser, it should in the other. The only reason it should show a
message about the cert is if it's not valid.
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
here are the details:
apache2.0.45/on Solaris OS.
openssl 0.9.7a
mod-ssl started as DSO.
Server certificate is self signed.
Netscape: Http and Https works ok.
Internet explorer: Http is ok, https NOT ok.
when I access a https file from IE a dialog box saying
that now it change to secure mode appears but no
Certificate is shown or prompted to view for.
Error displayed by IE is a generic one:
The page cannot be displayed
The page you are looking for is currently unavailable.
The Web site might be experiencing technical
difficulties, or you may need to adjust your browser
settings.
--------------------------------------------------------------------------------
Please try the following:
Click the Refresh button, or try again later.
If you typed the page address in the Address bar, make
sure that it is spelled correctly.
To check your connection settings, click the Tools
menu, and then click Internet Options. On the
Connections tab, click Settings. The settings should
match those provided by your local area network (LAN)
administrator or Internet service provider (ISP).
If your Network Administrator has enabled it,
Microsoft Windows can examine your network and
automatically discover network connection settings.
If you would like Windows to try and discover them,
click Detect Network Settings
Some sites require 128-bit connection security. Click
the Help menu and then click About Internet Explorer
to determine what strength security you have
installed.
If you are trying to reach a secure site, make sure
your Security settings can support it. Click the Tools
menu, and then click Internet Options. On the Advanced
tab, scroll to the Security section and check settings
for SSL 2.0, SSL 3.0, TLS 1.0, PCT 1.0.
Click the Back button to try another link.
Cannot find server or DNS Error
Internet Explorer
--veena
--- Zac Stevens <zt...@cryptocracy.com> wrote:
> On Mon, May 12, 2003 at 09:21:46AM -0700, kulkarni
> veena wrote:
> > NOTE: Currently everything is working fine for
> > Netscape but not for MSIE.
>
> In future, you'll find that it's easier for people
> to help if you supply
> the details of your problem - versions of the
> software you're using, and
> the actual error messages from both the client and
> the error_log.
>
> That having been said, the problem you're having is
> probably the one
> addressed in this FAQ entry:
>
>
http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#msie
>
>
> Cheers,
>
>
> Zac
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Zac Stevens <zt...@cryptocracy.com>.
On Mon, May 12, 2003 at 09:21:46AM -0700, kulkarni veena wrote:
> NOTE: Currently everything is working fine for
> Netscape but not for MSIE.
In future, you'll find that it's easier for people to help if you supply
the details of your problem - versions of the software you're using, and
the actual error messages from both the client and the error_log.
That having been said, the problem you're having is probably the one
addressed in this FAQ entry:
http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#msie
Cheers,
Zac
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
Http connection is ok, i.e IE accesses http files but
NOT HTTPS.
-veena
--- Himanshu Soni <hi...@pk3i.com> wrote:
> Hmm..
> I guess you already tried to check MSIE's proxy
> settings, and whether
> you can surf other external or intranet sites.
> To debug, you can tail the apache access_log on the
> server to see if the
> the browser is contacting the server at all.
>
> H.
>
>
> > -----Original Message-----
> > From: kulkarni veena [mailto:veenacsus@yahoo.com]
> > Sent: Monday, May 12, 2003 1:10 PM
> > To: users@httpd.apache.org
> > Subject: RE: [users@httpd] https not working for
> MSIE.
> >
> >
> > It does no pop any dialog box. The error that it
> says
> > is:
> >
> > Cannot find server or DNS Error
> > Internet Explorer
> >
> > Note: But everything is working fine with Netscape
> > browser.
> >
> > -veena
> > --- Himanshu Soni <hi...@pk3i.com> wrote:
> > > Cert not being present in the root store will
> > > normally cause a dialog
> > > box to appear in MSIE indicating that the server
> > > certificate issuer is
> > > untrusted. Are you seeing that? If possible,
> post
> > > the error message that
> > > says page cannot be displayed. There might be
> more
> > > information near the
> > > end of that error message.
> > >
> > > H.
> > >
> > >
> > >
> > > > -----Original Message-----
> > > > From: kulkarni veena
> [mailto:veenacsus@yahoo.com]
> > > > Sent: Monday, May 12, 2003 12:21 PM
> > > > To: users@httpd.apache.org
> > > > Subject: RE: [users@httpd] https not working
> for
> > > MSIE.
> > > >
> > > >
> > > > No , I have not added the certificate.
> > > >
> > > > When I try to access my https://whatever.com ,
> > > > all that IE does is say that it is accessing
> and
> > > > secure site and then says that page cannot be
> > > > displayed.
> > > >
> > > > -veena
> > > >
> > > > --- Himanshu Soni <hi...@pk3i.com> wrote:
> > > > > Did you explicitly add the self signed cert
> to
> > > win32
> > > > > trusted root store?
> > > > >
> > > > > > -----Original Message-----
> > > > > > From: kulkarni veena
> > > [mailto:veenacsus@yahoo.com]
> > > > > > Sent: Monday, May 12, 2003 10:40 AM
> > > > > > To: users@httpd.apache.org
> > > > > > Subject: Re: [users@httpd] https not
> working
> > > for
> > > > > MSIE.
> > > > > >
> > > > > >
> > > > > >
> > > > > > it recognizes as a secure site not the
> > > > > certificate.
> > > > > >
> > > > > > -veena
> > > > > >
> > > > > > --- Joseph A Nagy Jr
> > > > > <jo...@charter.net>
> > > > > > wrote:
> > > > > > > kulkarni veena wrote:
> > > > > > > > Hello,
> > > > > > > >
> > > > > > > > I was wondering what steps are to be
> taken
> > > to
> > > > > make
> > > > > > > > https work for both MSIE and Netscape
> for
> > > a
> > > > > > > > self-signed certficate.
> > > > > > > >
> > > > > > > > Should both the ca.cert and
> server.crt
> > > > > created
> > > > > > > using
> > > > > > > > openssl be converted to DER format and
> use
> > > > > only
> > > > > > > DER
> > > > > > > > format certs and disregard 'pem'
> certs?
> > > > > > > >
> > > > > > > > NOTE: Currently everything is working
> fine
> > > for
> > > > > > > > Netscape but not for MSIE.
> > > > > > > >
> > > > > > > > Thanks in advance.
> > > > > > > >
> > > > > > > > -veena
> > > > > > >
> > > > > > > What do you mean by it's not working for
> > > MSIE?
> > > > > Is IE
> > > > > > > not recognizing the
> > > > > > > site as being HTTPS? Or is IE just not
> > > accepting
> > > > > the
> > > > > > > certificate? If
> > > > > > > it's not accepting the certificate,
> perhaps
> > > it's
> > > > > an
> > > > > > > IE thing and not an
> > > > > > > Apache thing (e.g. check your IE
> settings)
> > > > > > >
> > > > > > > HtH
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
>
---------------------------------------------------------------------
> > > > > > > The official User-To-User support forum
> of
> > > the
> > > > > > > Apache HTTP Server Project.
> > > > > > > See
> > > <URL:http://httpd.apache.org/userslist.html>
> > > > > for
> > > > > > > more info.
> > > > > > > To unsubscribe, e-mail:
> > > > > > > users-unsubscribe@httpd.apache.org
> > > > > > > " from the digest:
> > > > > > >
> users-digest-unsubscribe@httpd.apache.org
> > > > > > > For additional commands, e-mail:
> > > > > > > users-help@httpd.apache.org
> > > > > > >
> > > > > >
> > > > > >
> > > > > > __________________________________
> > > > > > Do you Yahoo!?
> > > > > > The New Yahoo! Search - Faster. Easier.
> Bingo.
> > > > > > http://search.yahoo.com
> > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
>
---------------------------------------------------------------------
> > > > > > The official User-To-User support forum of
> the
> > > > > Apache HTTP
> > > > > > Server Project.
> > > > > > See
> > > <URL:http://httpd.apache.org/userslist.html>
> > > > > for more info.
> > > > > > To unsubscribe, e-mail:
> > > > > users-unsubscribe@httpd.apache.org
> > > > > > " from the digest:
> > > > > users-digest-unsubscribe@httpd.apache.org
> > > > > > For additional commands, e-mail:
> > > > > users-help@httpd.apache.org
> > > > > >
> > > > > >
> > > > >
> > > > >
> > > > >
> > > >
>
=== message truncated ===
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by Himanshu Soni <hi...@pk3i.com>.
Hmm..
I guess you already tried to check MSIE's proxy settings, and whether
you can surf other external or intranet sites.
To debug, you can tail the apache access_log on the server to see if the
the browser is contacting the server at all.
H.
> -----Original Message-----
> From: kulkarni veena [mailto:veenacsus@yahoo.com]
> Sent: Monday, May 12, 2003 1:10 PM
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] https not working for MSIE.
>
>
> It does no pop any dialog box. The error that it says
> is:
>
> Cannot find server or DNS Error
> Internet Explorer
>
> Note: But everything is working fine with Netscape
> browser.
>
> -veena
> --- Himanshu Soni <hi...@pk3i.com> wrote:
> > Cert not being present in the root store will
> > normally cause a dialog
> > box to appear in MSIE indicating that the server
> > certificate issuer is
> > untrusted. Are you seeing that? If possible, post
> > the error message that
> > says page cannot be displayed. There might be more
> > information near the
> > end of that error message.
> >
> > H.
> >
> >
> >
> > > -----Original Message-----
> > > From: kulkarni veena [mailto:veenacsus@yahoo.com]
> > > Sent: Monday, May 12, 2003 12:21 PM
> > > To: users@httpd.apache.org
> > > Subject: RE: [users@httpd] https not working for
> > MSIE.
> > >
> > >
> > > No , I have not added the certificate.
> > >
> > > When I try to access my https://whatever.com ,
> > > all that IE does is say that it is accessing and
> > > secure site and then says that page cannot be
> > > displayed.
> > >
> > > -veena
> > >
> > > --- Himanshu Soni <hi...@pk3i.com> wrote:
> > > > Did you explicitly add the self signed cert to
> > win32
> > > > trusted root store?
> > > >
> > > > > -----Original Message-----
> > > > > From: kulkarni veena
> > [mailto:veenacsus@yahoo.com]
> > > > > Sent: Monday, May 12, 2003 10:40 AM
> > > > > To: users@httpd.apache.org
> > > > > Subject: Re: [users@httpd] https not working
> > for
> > > > MSIE.
> > > > >
> > > > >
> > > > >
> > > > > it recognizes as a secure site not the
> > > > certificate.
> > > > >
> > > > > -veena
> > > > >
> > > > > --- Joseph A Nagy Jr
> > > > <jo...@charter.net>
> > > > > wrote:
> > > > > > kulkarni veena wrote:
> > > > > > > Hello,
> > > > > > >
> > > > > > > I was wondering what steps are to be taken
> > to
> > > > make
> > > > > > > https work for both MSIE and Netscape for
> > a
> > > > > > > self-signed certficate.
> > > > > > >
> > > > > > > Should both the ca.cert and server.crt
> > > > created
> > > > > > using
> > > > > > > openssl be converted to DER format and use
> > > > only
> > > > > > DER
> > > > > > > format certs and disregard 'pem' certs?
> > > > > > >
> > > > > > > NOTE: Currently everything is working fine
> > for
> > > > > > > Netscape but not for MSIE.
> > > > > > >
> > > > > > > Thanks in advance.
> > > > > > >
> > > > > > > -veena
> > > > > >
> > > > > > What do you mean by it's not working for
> > MSIE?
> > > > Is IE
> > > > > > not recognizing the
> > > > > > site as being HTTPS? Or is IE just not
> > accepting
> > > > the
> > > > > > certificate? If
> > > > > > it's not accepting the certificate, perhaps
> > it's
> > > > an
> > > > > > IE thing and not an
> > > > > > Apache thing (e.g. check your IE settings)
> > > > > >
> > > > > > HtH
> > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > >
> > > >
> > >
> >
> ---------------------------------------------------------------------
> > > > > > The official User-To-User support forum of
> > the
> > > > > > Apache HTTP Server Project.
> > > > > > See
> > <URL:http://httpd.apache.org/userslist.html>
> > > > for
> > > > > > more info.
> > > > > > To unsubscribe, e-mail:
> > > > > > users-unsubscribe@httpd.apache.org
> > > > > > " from the digest:
> > > > > > users-digest-unsubscribe@httpd.apache.org
> > > > > > For additional commands, e-mail:
> > > > > > users-help@httpd.apache.org
> > > > > >
> > > > >
> > > > >
> > > > > __________________________________
> > > > > Do you Yahoo!?
> > > > > The New Yahoo! Search - Faster. Easier. Bingo.
> > > > > http://search.yahoo.com
> > > > >
> > > > >
> > > >
> > >
> >
> ---------------------------------------------------------------------
> > > > > The official User-To-User support forum of the
> > > > Apache HTTP
> > > > > Server Project.
> > > > > See
> > <URL:http://httpd.apache.org/userslist.html>
> > > > for more info.
> > > > > To unsubscribe, e-mail:
> > > > users-unsubscribe@httpd.apache.org
> > > > > " from the digest:
> > > > users-digest-unsubscribe@httpd.apache.org
> > > > > For additional commands, e-mail:
> > > > users-help@httpd.apache.org
> > > > >
> > > > >
> > > >
> > > >
> > > >
> > >
> >
> ---------------------------------------------------------------------
> > > > The official User-To-User support forum of the
> > > > Apache HTTP Server Project.
> > > > See <URL:http://httpd.apache.org/userslist.html>
> > for
> > > > more info.
> > > > To unsubscribe, e-mail:
> > > > users-unsubscribe@httpd.apache.org
> > > > " from the digest:
> > > > users-digest-unsubscribe@httpd.apache.org
> > > > For additional commands, e-mail:
> > > > users-help@httpd.apache.org
> > > >
> > >
> > >
> > > __________________________________
> > > Do you Yahoo!?
> > > The New Yahoo! Search - Faster. Easier. Bingo.
> > > http://search.yahoo.com
> > >
> > >
> >
> ---------------------------------------------------------------------
> > > The official User-To-User support forum of the
> > Apache HTTP
> > > Server Project.
> > > See <URL:http://httpd.apache.org/userslist.html>
> > for more info.
> > > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > > For additional commands, e-mail:
> > users-help@httpd.apache.org
> > >
> > >
> >
> >
> >
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the
> > Apache HTTP Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for
> > more info.
> > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> > users-help@httpd.apache.org
> >
>
>
> __________________________________
> Do you Yahoo!?
> The New Yahoo! Search - Faster. Easier. Bingo.
> http://search.yahoo.com
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
It does no pop any dialog box. The error that it says
is:
Cannot find server or DNS Error
Internet Explorer
Note: But everything is working fine with Netscape
browser.
-veena
--- Himanshu Soni <hi...@pk3i.com> wrote:
> Cert not being present in the root store will
> normally cause a dialog
> box to appear in MSIE indicating that the server
> certificate issuer is
> untrusted. Are you seeing that? If possible, post
> the error message that
> says page cannot be displayed. There might be more
> information near the
> end of that error message.
>
> H.
>
>
>
> > -----Original Message-----
> > From: kulkarni veena [mailto:veenacsus@yahoo.com]
> > Sent: Monday, May 12, 2003 12:21 PM
> > To: users@httpd.apache.org
> > Subject: RE: [users@httpd] https not working for
> MSIE.
> >
> >
> > No , I have not added the certificate.
> >
> > When I try to access my https://whatever.com ,
> > all that IE does is say that it is accessing and
> > secure site and then says that page cannot be
> > displayed.
> >
> > -veena
> >
> > --- Himanshu Soni <hi...@pk3i.com> wrote:
> > > Did you explicitly add the self signed cert to
> win32
> > > trusted root store?
> > >
> > > > -----Original Message-----
> > > > From: kulkarni veena
> [mailto:veenacsus@yahoo.com]
> > > > Sent: Monday, May 12, 2003 10:40 AM
> > > > To: users@httpd.apache.org
> > > > Subject: Re: [users@httpd] https not working
> for
> > > MSIE.
> > > >
> > > >
> > > >
> > > > it recognizes as a secure site not the
> > > certificate.
> > > >
> > > > -veena
> > > >
> > > > --- Joseph A Nagy Jr
> > > <jo...@charter.net>
> > > > wrote:
> > > > > kulkarni veena wrote:
> > > > > > Hello,
> > > > > >
> > > > > > I was wondering what steps are to be taken
> to
> > > make
> > > > > > https work for both MSIE and Netscape for
> a
> > > > > > self-signed certficate.
> > > > > >
> > > > > > Should both the ca.cert and server.crt
> > > created
> > > > > using
> > > > > > openssl be converted to DER format and use
> > > only
> > > > > DER
> > > > > > format certs and disregard 'pem' certs?
> > > > > >
> > > > > > NOTE: Currently everything is working fine
> for
> > > > > > Netscape but not for MSIE.
> > > > > >
> > > > > > Thanks in advance.
> > > > > >
> > > > > > -veena
> > > > >
> > > > > What do you mean by it's not working for
> MSIE?
> > > Is IE
> > > > > not recognizing the
> > > > > site as being HTTPS? Or is IE just not
> accepting
> > > the
> > > > > certificate? If
> > > > > it's not accepting the certificate, perhaps
> it's
> > > an
> > > > > IE thing and not an
> > > > > Apache thing (e.g. check your IE settings)
> > > > >
> > > > > HtH
> > > > >
> > > > >
> > > > >
> > > > >
> > > >
> > >
> >
>
---------------------------------------------------------------------
> > > > > The official User-To-User support forum of
> the
> > > > > Apache HTTP Server Project.
> > > > > See
> <URL:http://httpd.apache.org/userslist.html>
> > > for
> > > > > more info.
> > > > > To unsubscribe, e-mail:
> > > > > users-unsubscribe@httpd.apache.org
> > > > > " from the digest:
> > > > > users-digest-unsubscribe@httpd.apache.org
> > > > > For additional commands, e-mail:
> > > > > users-help@httpd.apache.org
> > > > >
> > > >
> > > >
> > > > __________________________________
> > > > Do you Yahoo!?
> > > > The New Yahoo! Search - Faster. Easier. Bingo.
> > > > http://search.yahoo.com
> > > >
> > > >
> > >
> >
>
---------------------------------------------------------------------
> > > > The official User-To-User support forum of the
> > > Apache HTTP
> > > > Server Project.
> > > > See
> <URL:http://httpd.apache.org/userslist.html>
> > > for more info.
> > > > To unsubscribe, e-mail:
> > > users-unsubscribe@httpd.apache.org
> > > > " from the digest:
> > > users-digest-unsubscribe@httpd.apache.org
> > > > For additional commands, e-mail:
> > > users-help@httpd.apache.org
> > > >
> > > >
> > >
> > >
> > >
> >
>
---------------------------------------------------------------------
> > > The official User-To-User support forum of the
> > > Apache HTTP Server Project.
> > > See <URL:http://httpd.apache.org/userslist.html>
> for
> > > more info.
> > > To unsubscribe, e-mail:
> > > users-unsubscribe@httpd.apache.org
> > > " from the digest:
> > > users-digest-unsubscribe@httpd.apache.org
> > > For additional commands, e-mail:
> > > users-help@httpd.apache.org
> > >
> >
> >
> > __________________________________
> > Do you Yahoo!?
> > The New Yahoo! Search - Faster. Easier. Bingo.
> > http://search.yahoo.com
> >
> >
>
---------------------------------------------------------------------
> > The official User-To-User support forum of the
> Apache HTTP
> > Server Project.
> > See <URL:http://httpd.apache.org/userslist.html>
> for more info.
> > To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> > " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> users-help@httpd.apache.org
> >
> >
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by Himanshu Soni <hi...@pk3i.com>.
Cert not being present in the root store will normally cause a dialog
box to appear in MSIE indicating that the server certificate issuer is
untrusted. Are you seeing that? If possible, post the error message that
says page cannot be displayed. There might be more information near the
end of that error message.
H.
> -----Original Message-----
> From: kulkarni veena [mailto:veenacsus@yahoo.com]
> Sent: Monday, May 12, 2003 12:21 PM
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] https not working for MSIE.
>
>
> No , I have not added the certificate.
>
> When I try to access my https://whatever.com ,
> all that IE does is say that it is accessing and
> secure site and then says that page cannot be
> displayed.
>
> -veena
>
> --- Himanshu Soni <hi...@pk3i.com> wrote:
> > Did you explicitly add the self signed cert to win32
> > trusted root store?
> >
> > > -----Original Message-----
> > > From: kulkarni veena [mailto:veenacsus@yahoo.com]
> > > Sent: Monday, May 12, 2003 10:40 AM
> > > To: users@httpd.apache.org
> > > Subject: Re: [users@httpd] https not working for
> > MSIE.
> > >
> > >
> > >
> > > it recognizes as a secure site not the
> > certificate.
> > >
> > > -veena
> > >
> > > --- Joseph A Nagy Jr
> > <jo...@charter.net>
> > > wrote:
> > > > kulkarni veena wrote:
> > > > > Hello,
> > > > >
> > > > > I was wondering what steps are to be taken to
> > make
> > > > > https work for both MSIE and Netscape for a
> > > > > self-signed certficate.
> > > > >
> > > > > Should both the ca.cert and server.crt
> > created
> > > > using
> > > > > openssl be converted to DER format and use
> > only
> > > > DER
> > > > > format certs and disregard 'pem' certs?
> > > > >
> > > > > NOTE: Currently everything is working fine for
> > > > > Netscape but not for MSIE.
> > > > >
> > > > > Thanks in advance.
> > > > >
> > > > > -veena
> > > >
> > > > What do you mean by it's not working for MSIE?
> > Is IE
> > > > not recognizing the
> > > > site as being HTTPS? Or is IE just not accepting
> > the
> > > > certificate? If
> > > > it's not accepting the certificate, perhaps it's
> > an
> > > > IE thing and not an
> > > > Apache thing (e.g. check your IE settings)
> > > >
> > > > HtH
> > > >
> > > >
> > > >
> > > >
> > >
> >
> ---------------------------------------------------------------------
> > > > The official User-To-User support forum of the
> > > > Apache HTTP Server Project.
> > > > See <URL:http://httpd.apache.org/userslist.html>
> > for
> > > > more info.
> > > > To unsubscribe, e-mail:
> > > > users-unsubscribe@httpd.apache.org
> > > > " from the digest:
> > > > users-digest-unsubscribe@httpd.apache.org
> > > > For additional commands, e-mail:
> > > > users-help@httpd.apache.org
> > > >
> > >
> > >
> > > __________________________________
> > > Do you Yahoo!?
> > > The New Yahoo! Search - Faster. Easier. Bingo.
> > > http://search.yahoo.com
> > >
> > >
> >
> ---------------------------------------------------------------------
> > > The official User-To-User support forum of the
> > Apache HTTP
> > > Server Project.
> > > See <URL:http://httpd.apache.org/userslist.html>
> > for more info.
> > > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > > For additional commands, e-mail:
> > users-help@httpd.apache.org
> > >
> > >
> >
> >
> >
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the
> > Apache HTTP Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for
> > more info.
> > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> > users-help@httpd.apache.org
> >
>
>
> __________________________________
> Do you Yahoo!?
> The New Yahoo! Search - Faster. Easier. Bingo.
> http://search.yahoo.com
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
No , I have not added the certificate.
When I try to access my https://whatever.com ,
all that IE does is say that it is accessing and
secure site and then says that page cannot be
displayed.
-veena
--- Himanshu Soni <hi...@pk3i.com> wrote:
> Did you explicitly add the self signed cert to win32
> trusted root store?
>
> > -----Original Message-----
> > From: kulkarni veena [mailto:veenacsus@yahoo.com]
> > Sent: Monday, May 12, 2003 10:40 AM
> > To: users@httpd.apache.org
> > Subject: Re: [users@httpd] https not working for
> MSIE.
> >
> >
> >
> > it recognizes as a secure site not the
> certificate.
> >
> > -veena
> >
> > --- Joseph A Nagy Jr
> <jo...@charter.net>
> > wrote:
> > > kulkarni veena wrote:
> > > > Hello,
> > > >
> > > > I was wondering what steps are to be taken to
> make
> > > > https work for both MSIE and Netscape for a
> > > > self-signed certficate.
> > > >
> > > > Should both the ca.cert and server.crt
> created
> > > using
> > > > openssl be converted to DER format and use
> only
> > > DER
> > > > format certs and disregard 'pem' certs?
> > > >
> > > > NOTE: Currently everything is working fine for
> > > > Netscape but not for MSIE.
> > > >
> > > > Thanks in advance.
> > > >
> > > > -veena
> > >
> > > What do you mean by it's not working for MSIE?
> Is IE
> > > not recognizing the
> > > site as being HTTPS? Or is IE just not accepting
> the
> > > certificate? If
> > > it's not accepting the certificate, perhaps it's
> an
> > > IE thing and not an
> > > Apache thing (e.g. check your IE settings)
> > >
> > > HtH
> > >
> > >
> > >
> > >
> >
>
---------------------------------------------------------------------
> > > The official User-To-User support forum of the
> > > Apache HTTP Server Project.
> > > See <URL:http://httpd.apache.org/userslist.html>
> for
> > > more info.
> > > To unsubscribe, e-mail:
> > > users-unsubscribe@httpd.apache.org
> > > " from the digest:
> > > users-digest-unsubscribe@httpd.apache.org
> > > For additional commands, e-mail:
> > > users-help@httpd.apache.org
> > >
> >
> >
> > __________________________________
> > Do you Yahoo!?
> > The New Yahoo! Search - Faster. Easier. Bingo.
> > http://search.yahoo.com
> >
> >
>
---------------------------------------------------------------------
> > The official User-To-User support forum of the
> Apache HTTP
> > Server Project.
> > See <URL:http://httpd.apache.org/userslist.html>
> for more info.
> > To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> > " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> users-help@httpd.apache.org
> >
> >
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
RE: [users@httpd] https not working for MSIE.
Posted by Himanshu Soni <hi...@pk3i.com>.
Did you explicitly add the self signed cert to win32 trusted root store?
> -----Original Message-----
> From: kulkarni veena [mailto:veenacsus@yahoo.com]
> Sent: Monday, May 12, 2003 10:40 AM
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] https not working for MSIE.
>
>
>
> it recognizes as a secure site not the certificate.
>
> -veena
>
> --- Joseph A Nagy Jr <jo...@charter.net>
> wrote:
> > kulkarni veena wrote:
> > > Hello,
> > >
> > > I was wondering what steps are to be taken to make
> > > https work for both MSIE and Netscape for a
> > > self-signed certficate.
> > >
> > > Should both the ca.cert and server.crt created
> > using
> > > openssl be converted to DER format and use only
> > DER
> > > format certs and disregard 'pem' certs?
> > >
> > > NOTE: Currently everything is working fine for
> > > Netscape but not for MSIE.
> > >
> > > Thanks in advance.
> > >
> > > -veena
> >
> > What do you mean by it's not working for MSIE? Is IE
> > not recognizing the
> > site as being HTTPS? Or is IE just not accepting the
> > certificate? If
> > it's not accepting the certificate, perhaps it's an
> > IE thing and not an
> > Apache thing (e.g. check your IE settings)
> >
> > HtH
> >
> >
> >
> >
> ---------------------------------------------------------------------
> > The official User-To-User support forum of the
> > Apache HTTP Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for
> > more info.
> > To unsubscribe, e-mail:
> > users-unsubscribe@httpd.apache.org
> > " from the digest:
> > users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail:
> > users-help@httpd.apache.org
> >
>
>
> __________________________________
> Do you Yahoo!?
> The New Yahoo! Search - Faster. Easier. Bingo.
> http://search.yahoo.com
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP
> Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> " from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by kulkarni veena <ve...@yahoo.com>.
it recognizes as a secure site not the certificate.
-veena
--- Joseph A Nagy Jr <jo...@charter.net>
wrote:
> kulkarni veena wrote:
> > Hello,
> >
> > I was wondering what steps are to be taken to make
> > https work for both MSIE and Netscape for a
> > self-signed certficate.
> >
> > Should both the ca.cert and server.crt created
> using
> > openssl be converted to DER format and use only
> DER
> > format certs and disregard 'pem' certs?
> >
> > NOTE: Currently everything is working fine for
> > Netscape but not for MSIE.
> >
> > Thanks in advance.
> >
> > -veena
>
> What do you mean by it's not working for MSIE? Is IE
> not recognizing the
> site as being HTTPS? Or is IE just not accepting the
> certificate? If
> it's not accepting the certificate, perhaps it's an
> IE thing and not an
> Apache thing (e.g. check your IE settings)
>
> HtH
>
>
>
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
> " from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
>
__________________________________
Do you Yahoo!?
The New Yahoo! Search - Faster. Easier. Bingo.
http://search.yahoo.com
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org
Re: [users@httpd] https not working for MSIE.
Posted by Joseph A Nagy Jr <jo...@charter.net>.
kulkarni veena wrote:
> Hello,
>
> I was wondering what steps are to be taken to make
> https work for both MSIE and Netscape for a
> self-signed certficate.
>
> Should both the ca.cert and server.crt created using
> openssl be converted to DER format and use only DER
> format certs and disregard 'pem' certs?
>
> NOTE: Currently everything is working fine for
> Netscape but not for MSIE.
>
> Thanks in advance.
>
> -veena
What do you mean by it's not working for MSIE? Is IE not recognizing the
site as being HTTPS? Or is IE just not accepting the certificate? If
it's not accepting the certificate, perhaps it's an IE thing and not an
Apache thing (e.g. check your IE settings)
HtH
---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
" from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org