netscape warning message

am 01.04.2003 22:51:39 von ACONGER

This is a multi-part message in MIME format.

------_=_NextPart_001_01C2F890.7E5C4330
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Hi All,
=20
When I view my ssl pages in Netscape 7.x, I am getting a, Website =
Certified by an Unknown Authority, popup message.
I am using Apache/2.0.43 and mod_ssl with openssl 0.9.6g running under =
Solaris 8.
=20
I am assuming its a configuration issue as the certificate is signed by =
Verisign and it works fine in IE. I am using virtual hosts with =
separate IPs.
=20
What could be causing this to occur? What errors might my httpd.conf =
file contain?
=20
Thanks,
=20
Austin
=20
=20
Some of my httpd configuration is as follows:
=20
Listen 10.0.0.26:80
Listen 10.0.0.27:80

ServerName 10.0.0.26:80

Include conf/ssl.conf

NameVirtualHost 10.0.0.27
=20

DocumentRoot /site/htdocs/vhost
RewriteEngine On
RewriteRule ^/.* /site/htdocs/vhost/index.html

=20

ServerName www.domain2.com
ServerPath /domain2/
DocumentRoot /site/htdocs/domain2
RewriteEngine On
RewriteRule ^(/domain2/.*) /site/vhost$1

=20

ServerName www.domain3.com
ServerPath /domain3/
DocumentRoot /site/htdocs/domain3
RewriteEngine On
RewriteRule ^(/domain3/.*) /site/vhost$1

=20

DocumentRoot /site/htdocs/
ServerName www.domain.com
ServerAdmin admin@domain.com
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log
=20
SSLEngine on
SSLCipherSuite =
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL
=20
SSLCertificateFile /usr/local/ssl/certs/verisigned.cert
=20
SSLCertificateKeyFile /usr/local/ssl/private/domain.key
=20
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
=20
CustomLog /site/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

=20
And the this is my ssl.conf file:
=20
=20

Listen 10.0.0.26:443

AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl

SSLPassPhraseDialog builtin

SSLSessionCache dbm:logs/ssl_scache
SSLSessionCacheTimeout 300

SSLMutex file:logs/ssl_mutex

SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
=20

DocumentRoot "/site/htdocs"
ServerName www.domain.com
ServerAdmin a dmin@domain.com =20
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log

SSLEngine on
=20
SSLCipherSuite =
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL

SSLCertificateFile /usr/local/ssl/certs/verisigned.cert

SSLCertificateKeyFile /usr/local/ssl/private/domain.key
=20
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

CustomLog /site/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
=20

------_=_NextPart_001_01C2F890.7E5C4330
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

charset=3Diso-8859-1">

Hi=20
All,

class=3D222312620-01042003>

When I =
view my ssl=20
pages in Netscape 7.x, I am getting a, Website Certified by an Unknown=20
Authority, popup message.

I am =
using=20
Apache/2.0.43 and mod_ssl with openssl 0.9.6g running under Solaris=20
8.

class=3D222312620-01042003>

I am =
assuming its a=20
configuration issue as the certificate is signed by Verisign and it =
works fine=20
in IE. I am using virtual hosts with separate =
IPs.

class=3D222312620-01042003>

What =
could be=20
causing this to occur? What errors might my httpd.conf file=20
contain?

class=3D222312620-01042003>

class=3D222312620-01042003>Thanks,

class=3D222312620-01042003>

class=3D222312620-01042003>Austin

class=3D222312620-01042003>

Some =
of my httpd=20
configuration is as follows:

class=3D222312620-01042003>

Listen =

10.0.0.26:80

Listen =

10.0.0.27:80

class=3D222312620-01042003>ServerName=20
10.0.0.26:80

class=3D222312620-01042003>
<IfModule=20
mod_ssl.c>
Include=20
conf/ssl.conf
</IfModule>

class=3D222312620-01042003>NameVirtualHost=20
10.0.0.27

class=3D222312620-01042003><VirtualHost=20
10.0.0.27>
    DocumentRoot=20
/site/htdocs/vhost
    RewriteEngine =
On
   =20
RewriteRule ^/.*=20
/site/htdocs/vhost/index.html
</VirtualHost>

class=3D222312620-01042003><VirtualHost=20
10.0.0.27>
    ServerName href=3D"http://www.domain2.com">www.domain2.com
   =
=20
ServerPath /domain2/
    DocumentRoot=20
/site/htdocs/domain2
    RewriteEngine=20
On
    RewriteRule ^(/domain2/.*)=20
/site/vhost$1
</VirtualHost>

class=3D222312620-01042003><VirtualHost=20
10.0.0.27>
ServerName href=3D"http://www.domain3.com">www.domain3.com

class=3D222312620-01042003>   =20
ServerPath /domain3/
    DocumentRoot=20
/site/htdocs/domain3
    RewriteEngine=20
On
    RewriteRule ^(/domain3/.*)=20
/site/vhost$1
</VirtualHost>

class=3D222312620-01042003>

class=3D222312620-01042003><VirtualHost=20
_default_:443>
    DocumentRoot=20
/site/htdocs/
    ServerName href=3D"http://www.domain.com">www.domain.com
   =20
ServerAdmin href=3D"mailto:admin@domain.com">admin@domain.com

class=3D222312620-01042003> =20
ErrorLog /site/logs/error_log
TransferLog=20
/site/logs/access_log

class=3D222312620-01042003> =20
SSLEngine on
SSLCipherSuite=20
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL FONT>

class=3D222312620-01042003> =20
SSLCertificateFile =
/usr/local/ssl/certs/verisigned.cert

class=3D222312620-01042003> =20
SSLCertificateKeyFile =
/usr/local/ssl/private/domain.key

class=3D222312620-01042003>   =20
SetEnvIf User-Agent ".*MSIE.*"=20
\
         nokeepalive=20
ssl-unclean-shutdown =
\
        =20
downgrade-1.0 force-response-1.0

class=3D222312620-01042003> =20
CustomLog /site/logs/ssl_request_log=20
\
"%t %h=20
%{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\"=20
%b"
</VirtualHost>

class=3D222312620-01042003>

And =
the this is my=20
ssl.conf file:

class=3D222312620-01042003>

class=3D222312620-01042003><IfDefine=20
SSL>

Listen =

10.0.0.26:443

class=3D222312620-01042003>
AddType=20
application/x-x509-ca-cert .crt
AddType=20
application/x-pkcs7-crl .crl

class=3D222312620-01042003>
SSLPassPhraseDialog =20
builtin

class=3D222312620-01042003>
SSLSessionCache &nb=
sp; =20
dbm:logs/ssl_scache
SSLSessionCacheTimeout =
300

class=3D222312620-01042003>
SSLMutex =20
file:logs/ssl_mutex

class=3D222312620-01042003>
SSLRandomSeed=20
startup builtin
SSLRandomSeed connect builtin

class=3D222312620-01042003>

class=3D222312620-01042003><VirtualHost=20
10.0.0.26:443>

class=3D222312620-01042003>
DocumentRoot=20
"/site/htdocs"
ServerName href=3D"http://www.domain.com">www.domain.com
ServerAdmin a href=3D"mailto:admin@domain.com">dmin@domain.com
ErrorLog=20
/site/logs/error_log
TransferLog =
/site/logs/access_log

class=3D222312620-01042003>
SSLEngine=20
on

class=3D222312620-01042003>SSLCipherSuite=20
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL FONT>

class=3D222312620-01042003>
SSLCertificateFile=20
/usr/local/ssl/certs/verisigned.cert

class=3D222312620-01042003>
SSLCertificateKeyFile=20
/usr/local/ssl/private/domain.key

class=3D222312620-01042003>SetEnvIf User-Agent=20
".*MSIE.*" \
=
nokeepalive=20
ssl-unclean-shutdown =
\
=20
downgrade-1.0 force-response-1.0

class=3D222312620-01042003>
CustomLog=20
/site/logs/ssl_request_log=20
\
"%t %h=20
%{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

class=3D222312620-01042003></VirtualHost>

class=3D222312620-01042003></IfDefine>

Y>

------_=_NextPart_001_01C2F890.7E5C4330--
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

RE: netscape warning message

am 02.04.2003 12:36:18 von John.Airey

Have you restarted the httpd process since you put:

SSLCertificateFile /usr/local/ssl/certs/verisigned.cert

SSLCertificateKeyFile /usr/local/ssl/private/domain.key

In your configuration? If not it will probably still be using the default
configuration, which I think will have a localhost.localdomain cert. I take
it that the above paths are where your key and certificate are?

-
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 John.Airey@rnib.org.uk

Anyone who believes in Evolution as fact just because they were told so at
school seems to have missed the relevance of the renaissance.

-----Original Message-----
From: Austin Conger (IT) [mailto:ACONGER@bordersgroupinc.com]
Sent: 01 April 2003 21:52
To: modssl-users@modssl.org
Subject: netscape warning message

Hi All,

When I view my ssl pages in Netscape 7.x, I am getting a, Website Certified
by an Unknown Authority, popup message.
I am using Apache/2.0.43 and mod_ssl with openssl 0.9.6g running under
Solaris 8.

I am assuming its a configuration issue as the certificate is signed by
Verisign and it works fine in IE. I am using virtual hosts with separate
IPs.

What could be causing this to occur? What errors might my httpd.conf file
contain?

Thanks,

Austin

Some of my httpd configuration is as follows:

Listen 10.0.0.26:80
Listen 10.0.0.27:80

ServerName 10.0.0.26:80

Include conf/ssl.conf

NameVirtualHost 10.0.0.27

DocumentRoot /site/htdocs/vhost
RewriteEngine On
RewriteRule ^/.* /site/htdocs/vhost/index.html

ServerName www.domain2.com
ServerPath /domain2/
DocumentRoot /site/htdocs/domain2
RewriteEngine On
RewriteRule ^(/domain2/.*) /site/vhost$1

ServerName www.domain3.com
ServerPath /domain3/
DocumentRoot /site/htdocs/domain3
RewriteEngine On
RewriteRule ^(/domain3/.*) /site/vhost$1

DocumentRoot /site/htdocs/
ServerName www.domain.com
ServerAdmin admin@domain.com
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log

SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL

SSLCertificateFile /usr/local/ssl/certs/verisigned.cert

SSLCertificateKeyFile /usr/local/ssl/private/domain.key

SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

CustomLog /site/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

And the this is my ssl.conf file:

Listen 10.0.0.26:443

AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl

SSLPassPhraseDialog builtin

SSLSessionCache dbm:logs/ssl_scache
SSLSessionCacheTimeout 300

SSLMutex file:logs/ssl_mutex

SSLRandomSeed startup builtin
SSLRandomSeed connect builtin

DocumentRoot "/site/htdocs"
ServerName www.domain.com
ServerAdmin admin@domain.com
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log

SSLEngine on

SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL

SSLCertificateFile /usr/local/ssl/certs/verisigned.cert

SSLCertificateKeyFile /usr/local/ssl/private/domain.key

SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

CustomLog /site/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

-

NOTICE: The information contained in this email and any attachments is
confidential and may be legally privileged. If you are not the
intended recipient you are hereby notified that you must not use,
disclose, distribute, copy, print or rely on this email's content. If
you are not the intended recipient, please notify the sender
immediately and then delete the email and any attachments from your
system.

RNIB has made strenuous efforts to ensure that emails and any
attachments generated by its staff are free from viruses. However, it
cannot accept any responsibility for any viruses which are
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email
and any attachments are those of the author and do not necessarily
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

RE: netscape warning message

am 02.04.2003 16:54:35 von ACONGER

Hi John,

I have restarted the apache process several times since installing the =
new certificate. I did have a self-signed cert installed first. Could =
it be caching it somehow? If so, is there a way to erase this cache?

Yes, these paths are the locations of my key and certificate.

thanks,

Austin

-----Original Message-----
From: John.Airey@rnib.org.uk [mailto:John.Airey@rnib.org.uk]
Sent: Wednesday, April 02, 2003 5:36 AM
To: modssl-users@modssl.org
Subject: RE: netscape warning message

Have you restarted the httpd process since you put:

SSLCertificateFile /usr/local/ssl/certs/verisigned.cert
=20
SSLCertificateKeyFile /usr/local/ssl/private/domain.key

In your configuration? If not it will probably still be using the =
default
configuration, which I think will have a localhost.localdomain cert. I =
take
it that the above paths are where your key and certificate are?

-=20
John Airey, BSc (Jt Hons), CNA, RHCE
Internet systems support officer, ITCSD, Royal National Institute of the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 =
John.Airey@rnib.org.uk=20

Anyone who believes in Evolution as fact just because they were told so =
at
school seems to have missed the relevance of the renaissance.

-----Original Message-----
From: Austin Conger (IT) [mailto:ACONGER@bordersgroupinc.com]
Sent: 01 April 2003 21:52
To: modssl-users@modssl.org
Subject: netscape warning message

Hi All,

When I view my ssl pages in Netscape 7.x, I am getting a, Website =
Certified
by an Unknown Authority, popup message.
I am using Apache/2.0.43 and mod_ssl with openssl 0.9.6g running under
Solaris 8.

I am assuming its a configuration issue as the certificate is signed by
Verisign and it works fine in IE. I am using virtual hosts with =
separate
IPs.

What could be causing this to occur? What errors might my httpd.conf =
file
contain?

Thanks,

Austin

Some of my httpd configuration is as follows:

Listen 10.0.0.26:80
Listen 10.0.0.27:80

ServerName 10.0.0.26:80

Include conf/ssl.conf

NameVirtualHost 10.0.0.27

DocumentRoot /site/htdocs/vhost
RewriteEngine On
RewriteRule ^/.* /site/htdocs/vhost/index.html

ServerName www.domain2.com
ServerPath /domain2/
DocumentRoot /site/htdocs/domain2
RewriteEngine On
RewriteRule ^(/domain2/.*) /site/vhost$1

ServerName www.domain3.com
ServerPath /domain3/
DocumentRoot /site/htdocs/domain3
RewriteEngine On
RewriteRule ^(/domain3/.*) /site/vhost$1

DocumentRoot /site/htdocs/
ServerName www.domain.com
ServerAdmin admin@domain.com
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log

SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL

SSLCertificateFile /usr/local/ssl/certs/verisigned.cert

SSLCertificateKeyFile /usr/local/ssl/private/domain.key

SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

CustomLog /site/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

And the this is my ssl.conf file:

Listen 10.0.0.26:443

AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl

SSLPassPhraseDialog builtin

SSLSessionCache dbm:logs/ssl_scache
SSLSessionCacheTimeout 300

SSLMutex file:logs/ssl_mutex

SSLRandomSeed startup builtin
SSLRandomSeed connect builtin

DocumentRoot "/site/htdocs"
ServerName www.domain.com
ServerAdmin admin@domain.com
ErrorLog /site/logs/error_log
TransferLog /site/logs/access_log

SSLEngine on

SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL

SSLCertificateFile /usr/local/ssl/certs/verisigned.cert

SSLCertificateKeyFile /usr/local/ssl/private/domain.key

SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

CustomLog /site/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

-=20

NOTICE: The information contained in this email and any attachments is=20
confidential and may be legally privileged. If you are not the=20
intended recipient you are hereby notified that you must not use,=20
disclose, distribute, copy, print or rely on this email's content. If=20
you are not the intended recipient, please notify the sender=20
immediately and then delete the email and any attachments from your=20
system.

RNIB has made strenuous efforts to ensure that emails and any=20
attachments generated by its staff are free from viruses. However, it=20
cannot accept any responsibility for any viruses which are=20
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email=20
and any attachments are those of the author and do not necessarily=20
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk=20
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

RE: netscape warning message

am 02.04.2003 17:21:49 von John.Airey

I missed the bit about it working on IE, which indicates that it must have
worked at some point. However, IE has its own unique form of caching which
sometimes takes a deletion of temporary Internet files and a reboot.
Netscape IIRC creates a .netscape/cache directory on Linux machines, but
it's been a long time since I used it on Windows so I don't know where that
would be. It too should have an option to remove them.

You could try deleting temporary Internet files on IE and see if it can
connect. Also check the logs generated by apache to see if there are any
warnings, eg being unable to open your key and certificate files.

John

> -----Original Message-----
> From: Austin Conger (IT) [mailto:ACONGER@bordersgroupinc.com]
> Sent: 02 April 2003 15:55
> To: modssl-users@modssl.org
> Subject: RE: netscape warning message
>
>
> Hi John,
>
> I have restarted the apache process several times since
> installing the new certificate. I did have a self-signed
> cert installed first. Could it be caching it somehow? If
> so, is there a way to erase this cache?
>
> Yes, these paths are the locations of my key and certificate.
>
> thanks,
>
> Austin
>
>
>
> -----Original Message-----
> From: John.Airey@rnib.org.uk [mailto:John.Airey@rnib.org.uk]
> Sent: Wednesday, April 02, 2003 5:36 AM
> To: modssl-users@modssl.org
> Subject: RE: netscape warning message
>
>
> Have you restarted the httpd process since you put:
>
> SSLCertificateFile /usr/local/ssl/certs/verisigned.cert
>
> SSLCertificateKeyFile /usr/local/ssl/private/domain.key
>
> In your configuration? If not it will probably still be using
> the default
> configuration, which I think will have a
> localhost.localdomain cert. I take
> it that the above paths are where your key and certificate are?
>
> -
> John Airey, BSc (Jt Hons), CNA, RHCE
> Internet systems support officer, ITCSD, Royal National
> Institute of the
> Blind,
> Bakewell Road, Peterborough PE2 6XU,
> Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848
> John.Airey@rnib.org.uk
>
> Anyone who believes in Evolution as fact just because they
> were told so at
> school seems to have missed the relevance of the renaissance.
>
>
>
>
>
> -----Original Message-----
> From: Austin Conger (IT) [mailto:ACONGER@bordersgroupinc.com]
> Sent: 01 April 2003 21:52
> To: modssl-users@modssl.org
> Subject: netscape warning message
>
>
> Hi All,
>
> When I view my ssl pages in Netscape 7.x, I am getting a,
> Website Certified
> by an Unknown Authority, popup message.
> I am using Apache/2.0.43 and mod_ssl with openssl 0.9.6g running under
> Solaris 8.
>
> I am assuming its a configuration issue as the certificate is
> signed by
> Verisign and it works fine in IE. I am using virtual hosts
> with separate
> IPs.
>
> What could be causing this to occur? What errors might my
> httpd.conf file
> contain?
>
> Thanks,
>
> Austin
>
>
> Some of my httpd configuration is as follows:
>
> Listen 10.0.0.26:80
> Listen 10.0.0.27:80
>
> ServerName 10.0.0.26:80
>
>
> Include conf/ssl.conf
>
>
> NameVirtualHost 10.0.0.27
>
>
> DocumentRoot /site/htdocs/vhost
> RewriteEngine On
> RewriteRule ^/.* /site/htdocs/vhost/index.html
>
>
>
> ServerName www.domain2.com
> ServerPath /domain2/
> DocumentRoot /site/htdocs/domain2
> RewriteEngine On
> RewriteRule ^(/domain2/.*) /site/vhost$1
>
>
>
> ServerName www.domain3.com
> ServerPath /domain3/
> DocumentRoot /site/htdocs/domain3
> RewriteEngine On
> RewriteRule ^(/domain3/.*) /site/vhost$1
>
>
>
> DocumentRoot /site/htdocs/
> ServerName www.domain.com
> ServerAdmin admin@domain.com
> ErrorLog /site/logs/error_log
> TransferLog /site/logs/access_log
>
> SSLEngine on
> SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL
>
> SSLCertificateFile /usr/local/ssl/certs/verisigned.cert
>
> SSLCertificateKeyFile /usr/local/ssl/private/domain.key
>
> SetEnvIf User-Agent ".*MSIE.*" \
> nokeepalive ssl-unclean-shutdown \
> downgrade-1.0 force-response-1.0
>
> CustomLog /site/logs/ssl_request_log \
> "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
>
>
>
> And the this is my ssl.conf file:
>
>
>
> Listen 10.0.0.26:443
>
> AddType application/x-x509-ca-cert .crt
> AddType application/x-pkcs7-crl .crl
>
> SSLPassPhraseDialog builtin
>
> SSLSessionCache dbm:logs/ssl_scache
> SSLSessionCacheTimeout 300
>
> SSLMutex file:logs/ssl_mutex
>
> SSLRandomSeed startup builtin
> SSLRandomSeed connect builtin
>
>
>
> DocumentRoot "/site/htdocs"
> ServerName www.domain.com
> ServerAdmin admin@domain.com
> ErrorLog /site/logs/error_log
> TransferLog /site/logs/access_log
>
> SSLEngine on
>
> SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+e NULL
>
> SSLCertificateFile /usr/local/ssl/certs/verisigned.cert
>
> SSLCertificateKeyFile /usr/local/ssl/private/domain.key
>
> SetEnvIf User-Agent ".*MSIE.*" \
> nokeepalive ssl-unclean-shutdown \
> downgrade-1.0 force-response-1.0
>
> CustomLog /site/logs/ssl_request_log \
> "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
>
>
>
>
> -
>
> NOTICE: The information contained in this email and any
> attachments is
> confidential and may be legally privileged. If you are not the
> intended recipient you are hereby notified that you must not use,
> disclose, distribute, copy, print or rely on this email's content. If
> you are not the intended recipient, please notify the sender
> immediately and then delete the email and any attachments from your
> system.
>
> RNIB has made strenuous efforts to ensure that emails and any
> attachments generated by its staff are free from viruses. However, it
> cannot accept any responsibility for any viruses which are
> transmitted. We therefore recommend you scan all attachments.
>
> Please note that the statements and views expressed in this email
> and any attachments are those of the author and do not necessarily
> represent those of RNIB.
>
> RNIB Registered Charity Number: 226227
>
> Website: http://www.rnib.org.uk
> ____________________________________________________________ __________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List modssl-users@modssl.org
> Automated List Manager majordomo@modssl.org
> ____________________________________________________________ __________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List modssl-users@modssl.org
> Automated List Manager majordomo@modssl.org
>

-

NOTICE: The information contained in this email and any attachments is
confidential and may be legally privileged. If you are not the
intended recipient you are hereby notified that you must not use,
disclose, distribute, copy, print or rely on this email's content. If
you are not the intended recipient, please notify the sender
immediately and then delete the email and any attachments from your
system.

RNIB has made strenuous efforts to ensure that emails and any
attachments generated by its staff are free from viruses. However, it
cannot accept any responsibility for any viruses which are
transmitted. We therefore recommend you scan all attachments.

Please note that the statements and views expressed in this email
and any attachments are those of the author and do not necessarily
represent those of RNIB.

RNIB Registered Charity Number: 226227

Website: http://www.rnib.org.uk
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org