SSLEngine on -- not working?

SSLEngine on -- not working?

am 08.04.2003 18:51:06 von Michael McLagan

Hello,

In this saga of trying to figure out what's going on with our SSL
setup here, I tried to access port 443 with telnet and with lynx using
http on port 443. Both produced appropriate apache log & output results
for a standard http port! I was expecting the "Trying to talk HTTP to an
HTTPS port" error message.

Our config has always looked like:



SSLCertificateFile ~/cert
SSLCertificateKeyFile ~/key
SSLEngine on



I thought the IfModule might be the problem so I commented it out and
left the SSL commands intact. When I load/add the SSL module, I get no
errors but no SSL functionality. When I don't load/add SSL, apache
complains about unknown directives and refuses to start. Clearly it's
being loaded and it's processing the config options but it doesn't seem
to be intercepting traffic.

Anybody seen anything like this? I'm wide open to suggestions, I've
already spent 3 days on this to no avail! :(

Michael


____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: SSLEngine on -- not working?

am 08.04.2003 19:00:20 von Mads Toftum

On Tue, Apr 08, 2003 at 12:51:06PM -0400, Michael McLagan wrote:
> Hello,
>
> In this saga of trying to figure out what's going on with our SSL
> setup here, I tried to access port 443 with telnet and with lynx using
> http on port 443. Both produced appropriate apache log & output results
> for a standard http port! I was expecting the "Trying to talk HTTP to an
> HTTPS port" error message.
>
> Our config has always looked like:
>
>
>
> SSLCertificateFile ~/cert
> SSLCertificateKeyFile ~/key
> SSLEngine on
>
>
>
> I thought the IfModule might be the problem so I commented it out and
> left the SSL commands intact. When I load/add the SSL module, I get no
> errors but no SSL functionality. When I don't load/add SSL, apache
> complains about unknown directives and refuses to start. Clearly it's
> being loaded and it's processing the config options but it doesn't seem
> to be intercepting traffic.
>
> Anybody seen anything like this? I'm wide open to suggestions, I've
> already spent 3 days on this to no avail! :(
>
There's nothing in the error_log? I would definetely suggest using the full
file path instead of ~/cert and ~/key.
Are you sure this isn't wrapped in something like ?

vh

Mads Toftum
--
`Darn it, who spiked my coffee with water?!' - lwall

____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: SSLEngine on -- not working?

am 08.04.2003 19:18:33 von Michael McLagan

On Tue, 8 Apr 2003 19:00:20 +0200, Mads Toftum wrote:

>There's nothing in the error_log? I would definetely suggest using the full
>file path instead of ~/cert and ~/key.

There are no messages in /var/log/httpd/error other than nice happy
startup messages.

I do have full paths, I just changed it for the email (lazy, security).

>Are you sure this isn't wrapped in something like ?

Definitely. I don't use IfDefine anywhere and I commented out the
IfModule to see if things worked better.

Michael


____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org