Board index Linux Security

Problem with SSLVerifyClient in httpd.conf

Problem with SSLVerifyClient in httpd.conf

Post by RTA » Thu, 17 Aug 2000 04:00:00



I've made a self signed server certificate, and a server signed client
certificate using openssl (followed instructions from www.apache-ssl.org),
and then set SSLVerifyClient require, and SSLVerifiDepht 2.

Which should allow only known client certificates, signed by the server,
access to the server.

... But :(  It dosen't work.... unknown certificates are still allowed
access.

Any suggestions???

I'm pretty new on Linux, but i followed the detailed instructions on
Apaches/mod_ssl homepages.
Maybe i'ts not running proberly, any ideas as to how i determine if the
installation is correctly made???

Any help are welcome

Regards Ruben Tandrup

 
 
 
Top

Problem with SSLVerifyClient in httpd.conf

Post by Luke Voge » Fri, 18 Aug 2000 04:00:00



> I've made a self signed server certificate, and a server signed client
> certificate using openssl (followed instructions from www.apache-ssl.org),
> and then set SSLVerifyClient require, and SSLVerifiDepht 2.

> Which should allow only known client certificates, signed by the server,
> access to the server.

> ... But :(  It dosen't work.... unknown certificates are still allowed
> access.

> Any suggestions???

> I'm pretty new on Linux, but i followed the detailed instructions on
> Apaches/mod_ssl homepages.
> Maybe i'ts not running proberly, any ideas as to how i determine if the
> installation is correctly made???

> Any help are welcome

> Regards Ruben Tandrup


Try
comp.infosystems.www.servers.unix
--
Regards
Luke
PLEASE NOTE: Spamgard (tm) installed.
----
When the only tool you own is a hammer,
all problems begin to resemble nails.
----
http://www.bell-bird.com.au

----

 
 
 
Top

1. Test httpd.conf setup - using variables in httpd.conf

I'm often testing Apache httpd.conf setups using a parallel
DocumentRoots.  I'd like to be able to use variables in httpd.conf file,
such that:

   $dir = 'test_dir';

   DocumentRoot /usr/local/web/$dir
   <Directory /urs/local/web/$dir/some_dir>

And when ready to use on live data just change:

   $dir = 'live_data';

or some such thing.

Any tricks for doing this?

--

pls note the one line sig, not counting this one.

2. linux to win95

3. Can I define srm.conf, access.conf in httpd.conf ?

4. Using message queues from kernel land, and other stuff...

5. redhat-config-httpd doesn't write to httpd.conf

6. Boot-Problems

7. how to determine httpd.conf and httpd daemon for my webserver?

8. line printing w/ NT

9. cern-httpd - proxy-cache - httpd.conf WANTED ???!!!

10. translator from CERN httpd configuration rules to Apache httpd conf?

11. HTTPd 1.5 dumps core when httpd.conf has "Group #-1"

12. ScriptAlias in httpd.conf versus srm.conf

13. APACHE 1.1.1 httpd.conf and the "httpd -f ..." option


All times are UTC
Board index