Your "common name" must match the url (ie "something.barak-online.net"). For your purposes, if you're going to do several hostnames, you can make the certificate: " *.barak-online.net " It will still error with Netscape 4x and a couple others, but it is mostly accepted.
I guess you could put redirects in the security.ini [hostredirect] *barak-online.net = https://barak-online.net or www.barak-online.net = https://www.barak-online.net If you want to be more dynamic, make an index.stm & redirect them that way. ----- Original Message ----- From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Sunday, December 01, 2002 11:26 AM Subject: [sambar] [ml] generate a temporary certificate {03} > hi, > i have generated the keys. > in order to go to my site the user goes to > http://something.barak.net.il > something of course is not www > the common name i put was barak.net.il > is this ok ? > > now...everytime i brouse to https://something.barak.net.il > i get this windows: > > the name on the security certificate is invalid or does not match the name > of the site > > what should i do ? > > > another question. > so i take it that till beta3, i will have to close the port 80 inorder to make sure that the link is crypted right ? > isnt there anything i can do in the security.ini file to redirect anybody comming into a certian folder to the https ? > thanks > > thanks very much > Moti Landes > > > > From: "James Wright" <[EMAIL PROTECTED]> > > Date: 2002/12/01 Sun PM 07:49:01 GMT+02:00 > > To: <[EMAIL PROTECTED]> > > Subject: [sambar] [ml] generate a temporary certificate {02} > > > > > > > > > > i receive this: > > > error on line 6 of ..\config\openssl.cnf > > > 1972:error:0E065068:configuration file routines:STR_COPY: > > > variable has no value:..\crypto\conf\conf_def.c.595:line 6 > > > > > > > what happens if you comment out line 6? > > (what is line 6?) > > > > > another question: > > > can i serve pages on 80 and 443 ? > > > > > > > Yes. and vis versa > > > > > another question: > > > what prevents a user to brouse to http://myserver/index.stm > > > instead of https://myserver/index.stm if bothe are saved on the same page. > > > > > > > Nothing. But when beta 3 is released there will be a new option: > > - Added HTACCESS configuration option <B>RedirectSSL</B> to restrict > > access to SSL-only. > > > > You can currently restrict logins to ssl only in the config.ini > > ------------------------------------------------------- > > To unsubscribe please go to http://www.sambar.ch/list/ > > > > > ------------------------------------------------------- > To unsubscribe please go to http://www.sambar.ch/list/ > > > ------------------------------------------------------- To unsubscribe please go to http://www.sambar.ch/list/
