I created a secure site using mod_ssl, and while I can connect no
problem using Netscape 4.7x using 128-bit encryption, IE 5.xx
absolutely refuses to show the secure page - at first I thought it was
becuase I was using the orignal IE with 40-bit encruption, but even
after upgrading to the 128-bit flavour, IE still refuses to show the
page.
I've turned on (and off) all of the basic IE security options, but it
seems to make no difference.
For grins, when I get the ubiquitous page unavailable screen IE brings
up when it has 'problems', I tried checking the network settings using
the 'Detect Network Settings' link. At the bottom of the page, ti
tells me
Cannot find server or DNS error.
Well, DNS error seems extremely unlikely (since everything works
perfectly in unsecure mode), but the 'can't find the server' bit is
more intriguing - I'm point to the secure site (on port 443) using the
following Apache virtualhost directive:
<VirtualHost canuck.dnr.cornell.edu:443>
DocumentRoot /directory/with/pages/I/want/secure
ServerName name.of.server.edu
ServerAdmin [EMAIL PROTECTED]
ErrorLog /usr/local/apache/logs/error_log
TransferLog /usr/local/apache/logs/access_log
# Enable/Disable SSL for this virtual host.
SSLEngine on
SSLCertificateFile /usr/local/apache/conf/ssl.crt/server.crt
# Server Private Key:
SSLCertificateKeyFile /usr/local/apache/conf/ssl.key/server.key
# Server Certificate Chain:
#SSLCertificateChainFile /usr/local/apache/conf/ssl.crt/ca.crt
# Certificate Authority (CA):
#SSLCACertificatePath /usr/local/pkg/apache/conf/ssl.crt
#SSLCACertificateFile /usr/local/pkg/apache/conf/ssl.crt/ca-bundle.crt
# Certificate Revocation Lists (CRL):
#SSLCARevocationPath /usr/local/pkg/apache/conf/ssl.crl
#SSLCARevocationFile /usr/local/pkg/apache/conf/ssl.crl/ca-bundle.crl
# Client Authentication (Type):
#SSLVerifyClient require
#SSLVerifyDepth 10
# Per-Server Logging:
# The home of a custom SSL log file. Use this when you want a
# compact non-error SSL logfile on a virtual host basis.
CustomLog /usr/local/apache/logs/ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
Any suggestions? While I'd like to blame everything on yet another
insidious plot by Micro$oft, I'm guessing the problem lies more in
something I haven't set up properly. ;-)
Thanks in advance!
Evan Cooch
Cornell University
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
