RE: SSL confusion http works ssl won't

jorge . jo Fri, 08 Jun 2001 00:35:30 -0700
I re-configured my Linux system to have a server name of "MyServerName", and
the domain to "MyCompanyName.com" gave it an IP address of "127.0.0.1" and
disconnected the LAN cable from the NIC. Also made a certificate to reflect
"MyServerName.MyCompanyName.com", and disabled the manual proxy from
Netscape and used "direct internet connection". Then launched with "netscape
https://MyServerName.MyCompanyName.com " and the default secure web page of
Open_SSL came up (for the first time!). Netscape complained about the
certificate but "OK'ing" the warnings allowed me to see the secure web page.
I was able to consistently get the secure web page. I powered down the
computer and went home. The next day, I booted the system up and could no
longer get the secure web page: Netscape gives the message "Netscape network
connection refused by the server MyServerName.MyCompanyName.com The server
may not be accepting connections or may be busy. Try connecting again
later". However, if I use http instead of https, I can get the non-secure
web page, so looks like both the Netscape and the server are working on
non-secured mode. Once the non-secure page is up, I add the "s" to http and
I get the above refusal message.

Can anyone suggest how to simplify this further? Or possibly suggest a set
of defaults? My goal is to be able to display a secure web page on the same
server machine.

Thanks in advance.

Jorge



-----Original Message-----
From: McCaffity, Ray [mailto:[EMAIL PROTECTED]]
Sent: Saturday, June 02, 2001 9:59 AM
To: '[EMAIL PROTECTED]'
Cc: [EMAIL PROTECTED]
Subject: RE: SSL confusion http works ssl won't


You don't have to put both the https and the :443  It does the same thing.
This might be what is causing the problem?
Also it sounds like you need to set up your proxy configuration in your
browser.
Finally it looks like https://MyServerName.local does not match
https://MyServerName.MyCompanyName.com this depends a lot on DNS, so make
sure
the certificate you create can be resolved bt DNS.

-----Original Message-----
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Sent: Friday, June 01, 2001 10:30 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: SSL confusion http works ssl won't


Hello,

I have installed SuSE linux 7.0, then downloaded and installed
apache 1.3.12,
openssl 0.9.5a,
mod_ssl 2.6.6, following instructions given in the mod_ssl.org site.
Every step worked fine, including the Snake Oil CA, until the actual test.

I then try
/usr/local/apache/bin/apachectl -DSSL, and it outputs to the screen,
"Server MyServerName.local:443"
and asks me for the pass phrase, which I type in and it says,
"Pass Phrase Dialog Successful"

However, when I type,
netscape https://MyServerName.local:443, the browser launches and 
just hangs with "Connect: Looking up host: MyServerName.local...

I've also tried, https://MyServerName.MyCompanyName.com:443 with same 
results. Trying the above on a different computer, connected to the company 
LAN, I get:

"Error
------------------------------------------------------------
The requested operation could not be performed by the proxy.
Connect to MyServerName.MyCompanyName.com:443 failed (Connection refused)
------------------------------------------------------------
Proxy server at InternalNet.MyCompanyName.com on port 74"

On the other hand, if I try  http://MyServerName.MyCompanyName.com, I get 
my non-secure target web page and I can do this on the server computer, or
on any computer connected to the company LAN.

So why can't I display the secure sample page? How can I tell the secure 
server *is* running. After I launch the secure server with,
/usr/local/apache/bin/apachectl -DSSL, and I try to stop it with,
/usr/local/apache/bin/apachectl stop, it comes back saying,
"httpd (no pid file) not running". So how can it not be running right after
what appears a successful launch? Is there a special way to name or
configure 
the server IP address, name, or maybe use in DHCP mode? Is the netscape
proxy 
an issue?

Any help is most welcome. Thanks in advance.

Jorge



______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]

______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [EMAIL PROTECTED]
Automated List Manager                            [EMAIL PROTECTED]
RE: SSL confusion http works ssl won't

Reply via email to
