RE: repeatedly asking for authentication

Thu, 05 Apr 2001 13:24:02 -0700 

Thank you for your response, 
If you take a look at a later post, I wrote that a link outside the root, 
will shutdown the connection to the child. This makes the browser think its
a fresh connection to the site. So even if you turned off "Ask Every Time",
the outcome would still be the same. For every "new" connection, you'll need
to identify yourself.
If we could stop the connection from closing on the child, you probably
wouldn't have to authenticate again. 
Again see the later post on the same RE: with New INFO attached.

Thanx again,

Robert

-----Original Message-----
From: Paul [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 05, 2001 10:55 AM
To: [EMAIL PROTECTED]
Subject: RE: repeatedly asking for authenticataion 



--- Robert Buckley <[EMAIL PROTECTED]> wrote:
> Ive created a CA, one server cert and one client cert.
> All works well, however, every time I click a cgi script, it asks for
> authentication.

Are you sure it's the server? Netscape's default behavior for digital
certificates is "Ask Every Time" before sending the cert info. It may
just be that the browser is asking which cert to use every time before
sending the data to the server. You can change that property, though I
tend not to -- I like to see it.

> Even if I authenticate, the script will run, if I "reload" or
> "submit" it will again ask for authentication, every single time on
> every single link to the cgi.
> What is going on here?

On the other hand, maybe it's your SSLSessionCache. Mine has gotten
corrupted a time or two, and then the server had to go through the
motions on every request. Make sure you get a clean SSLSessionCache and
the problem might go away.
 
Good luck.

__________________________________________________
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail. 
http://personal.mail.yahoo.com/
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to