Client authnetication

Hello guys,

I have been using client authentication for a while now to verify the ide=
ntity=20
of users at our web site. We run our own CA and point to the certificate =
file=20
in SSLCACertificateFile in httpd.conf.

Now this all seems to work fine, but have the following errors in=20
/var/log/httpd/error_log

[Mon Jan 27 18:35:19 2003] [error] mod_ssl: Re-negotiation handshake fail=
ed:=20
Not accepted by client!?
[Mon Jan 27 18:35:19 2003] [error] mod_ssl: SSL error on writing data (Op=
enSSL=20
library error follows)
[Mon Jan 27 18:35:19 2003] [error] OpenSSL:=20
error:1409E0E5:lib(20):func(158):reason(229)

It seems strange as it seems to work.

I have looked through the archives and have seen reference to similar mes=
sages=20
but they don't seem to explain what the problem is.

I am running RedHat 7.2, mod_ssl 2.8.12-2, apache 1.3.27-1.7.2 (these are=
=20
RedHat rpm versions).

I have stmbled accross this error as I want to also authenticate clients =
whose=20
certificates are signed by a different CA. That is another issue as I am=20
getting strange results with that too. I thought I had better sort this o=
ne=20
out first.

Please can anyone shead some light on where I can find out what this err=
or is=20
all about.

Many thanks

Chris Covell
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org