Howdy, In an earlier post I wote how a client (linux-netscape) is being asked for authentication by the SSL enabled server (Has a CA signed cert) constantly on every link. (I havent even got to IE clients yet) Tailing the ssl_engine_log here is the following: INITIAL CONNECTION: [date] [info] Connection to child 1 established (server bleh.bleh.com:443, client 1.2.3.4) [date] [info] Seeding PRNG with 1160 bytes of entropy [date] [info] Connection: Client IP: 1.2.3.4 Protocol: SSL:v3, Cipher: RC4-MD5 (128/128 bits) [date] [info] Initial (No.1) HTTPS request received for child 1 (server bleh.bleh.com:443) Now Click some links that dont take you out of the root dir [date][info] Subsequent (No. 2) HTTPS request received for child 1 (server bleh.bleh.com:443) [date][info] Subsequent (No. 3) HTTPS request received for child 1 (server bleh.bleh.com:443) ..... find and dandy there. Now click a link to some other different directory, in this case a directory off root called /usr/local/www/data/test [date] [info] Subsequent (No. 4) HTTPS request received for child 1 (server bleh.bleh.com:443) [date] [info] Connection to child 1 closed with standard shutdown (server bleh.bleh.com:443, client 1.2.3.4) Resubmit or keep clicking links to directories outside of root, and the connection to child "ALWAYS" shuts down. This is the problem. Is there a solution? Robert Robert Buckley Security Administration Synapse Group, Inc. Four High Ridge Park Stamford, CT 06902 (203) 614-3279 (phone) ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
