Seems i am having trouble with the GET passing of MOD_SSL. I'm running
Apache 1.3.20-11 with the latest MOD_SSL 2.8.4-1.3.20 and OpenSSL
0.9.5a-4 on RedHat 6.2.
Seems that the SSL handshake is successful. (see below) but somewhere
between the client and the apache server, the GET statement is getting
lost/corrupted. Notice the escaped control chars in the logged %r
section of the ssl log file. seems not to be random either.
[MMDIAG1]/var/www/logs#>less ssl_request_log
[21/Aug/2001:12:34:15 -0400] 127.0.0.1 TLSv1 EDH-RSA-DES-CBC3-SHA
"^W^C^A" -
[21/Aug/2001:12:41:20 -0400] 127.0.0.1 TLSv1 EDH-RSA-DES-CBC3-SHA
"^W^C^A" -
[21/Aug/2001:12:48:09 -0400] 127.0.0.1 TLSv1 EDH-RSA-DES-CBC3-SHA
"^W^C^A" -
[21/Aug/2001:12:59:12 -0400] 127.0.0.1 TLSv1 EDH-RSA-DES-CBC3-SHA
"^W^C^A" -
are there bugs in this version of MOD_SSL that would attribute to this?
Or am i doing something wrong? I've tried recompiling several times of
openssl, apache, modssl, mm, etc... doesn't seem to affect results.
Any help would be appreciated.
Thanks,
Karl Grindley
-----------------
[MMDIAG1]/root#>openssl s_client -connect localhost:443
CONNECTED(00000003)
depth=0 /C=US/ST=Massachusetts/L=Waltham/O=Terra
[EMAIL PROTECTED]
verify error:num=18:self signed certificate
verify return:1
depth=0 /C=US/ST=Massachusetts/L=Waltham/O=Terra
[EMAIL PROTECTED]
verify return:1
---
Certificate chain
0 s:/C=US/ST=Massachusetts/L=Waltham/O=Terra
[EMAIL PROTECTED]
i:/C=US/ST=Massachusetts/L=Waltham/O=Terra
[EMAIL PROTECTED]
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=/C=US/ST=Massachusetts/L=Waltham/O=Terra
[EMAIL PROTECTED]
issuer=/C=US/ST=Massachusetts/L=Waltham/O=Terra
[EMAIL PROTECTED]
---
No client certificate CA names sent
---
SSL handshake has read 1236 bytes and written 320 bytes
---
New, TLSv1/SSLv3, Cipher is EDH-RSA-DES-CBC3-SHA
Server public key is 1024 bit
SSL-Session:
Protocol : TLSv1
Cipher : EDH-RSA-DES-CBC3-SHA
Session-ID:
Session-ID-ctx:
Master-Key:
39C8440392FAD89040DDB86FB13759B587460AA9CF9A5FF2D47648521B9A7DFA4A091797D0F5B35A25D22384755B92AE
Key-Arg : None
Start Time: 998412461
Timeout : 300 (sec)
Verify return code: 18 (self signed certificate)
---
GET /some/url/that/doesnt/exsist HTTP/1.0
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<HTML><HEAD>
<TITLE>501 Method Not Implemented</TITLE>
</HEAD><BODY>
<H1>Method Not Implemented</H1>
to /index.html not supported.<P>
Invalid method in request <P>
<HR>
<ADDRESS>Unknown/0.0 Server at mmdiag1.mm.org Port 443</ADDRESS>
</BODY></HTML>
closed
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
