Hello,
I have recently installed modssl-2.3.5 (built with Apache 1.3.6 and OpenSSL
9.9.3a), so first let me say thanks to Ralph for a very well integrated
module, plus excellent documentation, not only on modssl, but also on
OpenSSL.
I have one SSL site currently running (on Solaris 2.6), using an
OpenSSL-generated certificate that was signed by our own private CA (which
was also generated with OpenSSL), and it appears to work fine. Certainly I
have never had any problems accessing it, from either Netscape or IE4, but
the errors file for that virtual host shows a constant stream of such error
messages:
[Mon Jul 5 15:59:02 1999] [error] mod_ssl: SSL handshake interrupted by
system
[Mon Jul 5 16:00:02 1999] [error] mod_ssl: SSL handshake interrupted by
system
[Mon Jul 5 16:01:03 1999] [error] mod_ssl: SSL handshake interrupted by
system
Does anybody else see this ?
The ssl_engine_log logfile has more detail. Below are 3 consecutive
interruption errors (by the way, the site is password-protected, and has to
remain so).
I thought at first it might be caused by a timeout, when clients don't
complete the handshake, eg. they might not continue, when warned that the
cert was signed by an unknown CA.
However, the interruption is instant, and it looks to me as if the server
has not even presented its dodgy certificate yet.
[08/Jul/1999 18:31:41] [info] Connection to child 2 established (server
managed-services.equant-web.net:443)
[08/Jul/1999 18:31:41] [trace] Seeding PRNG with 1032 bytes of entropy
[08/Jul/1999 18:31:41] [trace] OpenSSL: Handshake: start
[08/Jul/1999 18:31:41] [trace] OpenSSL: Loop: before/accept initialization
[08/Jul/1999 18:31:41] [debug] OpenSSL: read 0/7 bytes from BIO#001FED20
[mem: 0
0215318] (BIO dump follows)
+-------------------------------------------------------------------------+
+-------------------------------------------------------------------------+
[08/Jul/1999 18:31:41] [error] SSL handshake interrupted by system
[08/Jul/1999 18:32:41] [info] Connection to child 2 established (server
managed-services.equant-web.net:443)
[08/Jul/1999 18:32:41] [trace] Seeding PRNG with 1032 bytes of entropy
[08/Jul/1999 18:32:41] [trace] OpenSSL: Handshake: start
[08/Jul/1999 18:32:41] [trace] OpenSSL: Loop: before/accept initialization
[08/Jul/1999 18:32:41] [debug] OpenSSL: read 0/7 bytes from BIO#001FED20
[mem: 0
0215318] (BIO dump follows)
+-------------------------------------------------------------------------+
+-------------------------------------------------------------------------+
[08/Jul/1999 18:32:41] [error] SSL handshake interrupted by system
[08/Jul/1999 18:33:41] [info] Connection to child 2 established (server
managed-services.equant-web.net:443)
[08/Jul/1999 18:33:41] [trace] Seeding PRNG with 1032 bytes of entropy
[08/Jul/1999 18:33:41] [trace] OpenSSL: Handshake: start
[08/Jul/1999 18:33:41] [trace] OpenSSL: Loop: before/accept initialization
[08/Jul/1999 18:33:41] [debug] OpenSSL: read 0/7 bytes from BIO#001FED20
[mem: 0
0215318] (BIO dump follows)
+-------------------------------------------------------------------------+
+-------------------------------------------------------------------------+
[08/Jul/1999 18:33:41] [error] SSL handshake interrupted by system
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
