Full_Name: Rolf Haberrecker Version: 2.2.8 OS: SuSE Linux 6.1 Submission from: charybdis.suse.de (194.112.123.201) Hello, I'm trying to make mod_ssl-2.2.8-1.3.6 run with Apache 1.3.6 and openssl-0.9.2b. When using Netscape 4.51 (and 4.05) SSLv3 the following messages can be found in the ssl_engine_log: +-------------------------------------------------------------------------+ [17/May/1999 19:18:48] [debug] OpenSSL: read 2/2 bytes from BIO#081C2868 [mem: 081C822D] (BIO dump follows) +-------------------------------------------------------------------------+ | 0000: 02 2a .* | +-------------------------------------------------------------------------+ [17/May/1999 19:18:48] [trace] OpenSSL: Read: SSLv3 read client certificate A [17/May/1999 19:18:48] [trace] OpenSSL: Exit: failed in SSLv3 read client certificate A [17/May/1999 19:18:48] [error] SSL handshake failed (client 10.0.0.18, server neumann.suse.de:443) (OpenSSL library error follows) [17/May/1999 19:18:48] [error] OpenSSL: error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate [Hint: Subject CN in certificate not server name!?] This also happened when using ssleay, but SSLv2 used to work before. When running SSLv2 I get the following: [17/May/1999 19:20:35] [trace] OpenSSL: Loop: SSLv2 read client master key A [17/May/1999 19:20:35] [trace] OpenSSL: Loop: SSLv2 server start encryption [17/May/1999 19:20:35] [debug] OpenSSL: write 35/35 bytes to BIO#081BC838 [mem: 081D7349] (BIO dump follows) +-------------------------------------------------------------------------+ | 0000: 80 21 b6 a1 1a b8 f1 66-4a 7d fa 72 e7 e9 4b 28 .!.....fJ}.r..K( | | 0010: 47 56 1a e1 be 9a 15 c6-7c 2b 7d 81 47 b6 f4 e3 GV......|+}.G... | | 0020: 8f 3b 97 .;. | +-------------------------------------------------------------------------+ [17/May/1999 19:20:35] [trace] OpenSSL: Loop: SSLv2 write server verify A [17/May/1999 19:20:35] [debug] OpenSSL: I/O error, 2 bytes expected to read on BIO#081BC838 [mem: 081CF340] [17/May/1999 19:20:35] [trace] OpenSSL: Exit: error in SSLv2 read client finished A [17/May/1999 19:20:35] [trace] OpenSSL: Exit: error in SSLv2 read client finished A [17/May/1999 19:20:35] [error] SSL handshake interrupted by system (System error follows) [17/May/1999 19:20:35] [error] System: Connection reset by peer (errno: 104) and Netscape comes up with an error message. I'd really like to switch to the newer and well maintained version of SSL instead of ssleay, but it has to work, of course. Any help is appreciated ! Rolf Haberrecker ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
