SSL_CLIENT_CERT env var empty?

SSL_CLIENT_CERT env var empty?

am 01.10.2002 15:23:38 von marvin

Hello,

short and simple question: is the SSL_CLIENT_CERT environment
variable supposed to have some content? According to the mod_ssl
reference, it should be the raw string of PEM-encoded client
certificate. Everything else SSL_CLIENT_* is set and correct (the
client auth is working ok), except the damn SSL_CLIENT_CERT. Neither
the SSL_SERVER_CERT but i'm not interested in that. The playground is
RedHat 7.2 Linux with mod_ssl 2.8.4 on Apache 1.3.20 combination
which is a default of the distribution. If none of the SSL_CLIENT_*
env vars would be set, i would be hacking around with versions,
apache setup, suspecting RedHat etc. but it basically works and i
have no other problem, except that SSL_CLIENT_CERT is empty :-(

Best regards,

Pavel Z.


____________________________________________________________ __________
Reklama:
Kam do kina ci divadla? http://kultura.seznam.cz
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: SSL_CLIENT_CERT env var empty?

am 01.10.2002 15:46:29 von Mads Toftum

On Tue, Oct 01, 2002 at 03:23:38PM +0200, Pavel Zdenek wrote:
> Hello,
>
> short and simple question: is the SSL_CLIENT_CERT environment
> variable supposed to have some content? According to the mod_ssl
> reference, it should be the raw string of PEM-encoded client
> certificate. Everything else SSL_CLIENT_* is set and correct (the
> client auth is working ok), except the damn SSL_CLIENT_CERT. Neither
> the SSL_SERVER_CERT but i'm not interested in that. The playground is
> RedHat 7.2 Linux with mod_ssl 2.8.4 on Apache 1.3.20 combination
> which is a default of the distribution. If none of the SSL_CLIENT_*
> env vars would be set, i would be hacking around with versions,
> apache setup, suspecting RedHat etc. but it basically works and i
> have no other problem, except that SSL_CLIENT_CERT is empty :-(
>
Make sure that you have the following set in the right context:
SSLOptions +ExportCertData

See also http://www.modssl.org/docs/2.8/ssl_reference.html#ToC21

vh

Mads Toftum
--
`Darn it, who spiked my coffee with water?!' - lwall

____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org