Full_Name: Mathew Butler Version: 2.0.13 OS: Linux/Redhat 5.1 Submission from: proxy2.insight.com (198.187.200.39) According to the 'Additional Environment Variables' section of the mod_ssl documentation, the SSL_SERVER_I_(x509|DN) is supposed to be the information of the issuer of the signature on the site certificate. Included is the output from the printenv cgi-bin script, with the cert generated by 'make certificate': SSL_SERVER_ICN = Snake Oil CA SERVER_SOFTWARE = Apache/1.3.3 (Unix) mod_ssl/2.0.13 SSLeay/0.9.0b GATEWAY_INTERFACE = CGI/1.1 DOCUMENT_ROOT = /usr/local/apache/share/htdocs REMOTE_ADDR = 172.17.200.9 SSL_SSLEAY_VERSION = SSLeay 0.9.0b 29-Jun-1998 SSL_PROTOCOL_VERSION = SSLv3 REQUEST_METHOD = GET SSL_SERVER_C = US QUERY_STRING = HTTPS_CIPHER = RC4-MD5 HTTP_ACCEPT = image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/vnd.ms-excel, application/msword, application/vnd.ms-powerpoint, */* REMOTE_PORT = 2866 HTTP_ACCEPT_LANGUAGE = en-us SSL_SERVER_L = Tempe SSL_SERVER_IC = XY HTTPS = on SSL_SERVER_IOU = Certificate Authority HTTP_ACCEPT_ENCODING = gzip, deflate SCRIPT_FILENAME = /usr/local/apache/share/cgi-bin/printenv SSL_SERVER_O = Tempe SSL_SERVER_IST = Snake Desert SERVER_NAME = core90.hq.insight.com SSL_SERVER_CN = core90.hq.insight.com SERVER_PORT = 8443 SSL_SERVER_IL = Snake Town HTTPS_SECRETKEYSIZE = 128 SSL_SERVER_IO = Snake Oil, Ltd SERVER_ADMIN = [EMAIL PROTECTED] SSL_SERVER_IDN = /C=XY/ST=Snake Desert/L=Snake Town/O=Snake Oil, Ltd/OU=Certificate Authority/CN=Snake Oil [EMAIL PROTECTED] SERVER_PROTOCOL = HTTP/1.1 SERVER_SIGNATURE = Apache/1.3.3 Server at core90.hq.insight.com Port 8443 SSL_SERVER_OU = Internal Testing HTTP_USER_AGENT = Mozilla/4.0 (compatible; MSIE 4.01; Windows NT) SSL_CIPHER = RC4-MD5 PATH = /usr/local/bin:/bin:/usr/bin:/usr/X11R6/bin:/home/mbutler/bin SSL_SERVER_ST = Arizona HTTP_CONNECTION = Keep-Alive SSL_SERVER_EMAIL = [EMAIL PROTECTED] SCRIPT_NAME = /cgi-bin/printenv HTTPS_KEYSIZE = 128 REQUEST_URI = /cgi-bin/printenv SSL_SERVER_IEMAIL = [EMAIL PROTECTED] SSL_SERVER_DN = /C=US/ST=Arizona/L=Tempe/O=Tempe/OU=Internal [EMAIL PROTECTED] HTTP_HOST = core90:8443 --- As you can see, the last _ in the SSL_SERVER_I_* gets silently left out. I assume it's supposed to be behaving the way it's documented, not the way it currently is. -Mat Butler ______________________________________________________________________ Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/ Official Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
