SSL not available, for no apparent reason

SSL not available, for no apparent reason

am 18.08.2004 02:41:27 von ssl

Good Day:

I am running Debian stable, with the included packages.
Apache version 1.3.26; mod-ssl version 2.8.9-2.4.

I am using a self-signed certificate for now, until testing proves successful.

If I use openssl, with the s_client and s_server options, I can make a
successful connection through the local host.

However, apache, while it serves on port 80, does not appear to be serving SSL
documents.

Here are the contents of a couple files:

== ssl.log ==
[17/Aug/2004 06:25:02 28275] [info] Init: 10nd restart round (already
detached)
[17/Aug/2004 06:25:02 28275] [info] Init: Reinitializing OpenSSL library
[17/Aug/2004 06:25:02 28275] [info] Init: Seeding PRNG with 23689 bytes of
entropy
[17/Aug/2004 06:25:02 28275] [info] Init: Configuring temporary RSA private
keys (512/1024 bits)
[17/Aug/2004 06:25:02 28275] [info] Init: Configuring temporary DH parameters
(512/1024 bits)
[17/Aug/2004 06:25:02 28275] [info] Init: Initializing (virtual) servers for
SSL
[17/Aug/2004 06:25:02 28275] [info] Init: Configuring server
www.placeholder.com:443 for SSL protocol
[17/Aug/2004 06:25:02 28275] [warn] Init: (www.placeholder.com:443) RSA server
certificate is a CA certificate (BasicConstraints: CA == TRUE !?)

== httpd.conf extracts ==
[.]
Timeout 300
KeepAlive On
MaxKeepAliveRequests 100
KeepAliveTimeout 15
MinSpareServers 5
MaxSpareServers 10
StartServers 5
MaxClients 150
MaxRequestsPerChild 100

listen 80
listen 443

[.]
LoadModule unique_id_module /usr/lib/apache/1.3/mod_unique_id.so
LoadModule setenvif_module /usr/lib/apache/1.3/mod_setenvif.so
LoadModule jk_module /usr/lib/apache/1.3/mod_jk.so
LoadModule php4_module /usr/lib/apache/1.3/libphp4.so
LoadModule ssl_module /usr/lib/apache/1.3/mod_ssl.so
ExtendedStatus On
Port 80
User www-data
Group www-data
ServerAdmin webmaster@placeholder.com
ServerName www.placeholder.com
[.]
ServerSignature On
[.]


AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl


SSLPassPhraseDialog builtin
SSLSessionCache dbm:/var/run/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:/var/run/ssl_mutex
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
SSLRandomSeed startup file:/dev/urandom 512
SSLRandomSeed connect file:/dev/urandom 512
SSLLog /var/log/apache/ssl.log
SSLLogLevel info

Include /etc/phpmyadmin/apache.conf
Include /etc/horde/apache.conf
port 80
ServerName atlas.placeholder.com
NameVirtualHost *

DocumentRoot /usr/share/horde/imp
ServerName webmail.placeholder.com
ServerAlias *.webmail.placeholder.com


servername www.placeholder.com
documentroot /var/www/placeholder.com-ssl

sslengine on
sslcertificatefile /etc/apache/placeholder.com.crt
sslcertificatekeyfile /etc/apache/placeholder.com.key
setenvif User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown



DocumentRoot /var/www/placeholder.com
ServerName placeholder.com
ServerAlias *.placeholder.com


I'm not sure what else to examine here, or what I might have screwed up.

Luke
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org