David Peele wrote:
>
> We have a very perplexing problem...
>
> Everything is fine so far ... BUT, when they visit the site which requires
> client certificates, Netscape crashes. Looking at the apache/mod_ssl trace
> logs it appears that the initial SSL handshake completes. The server then
> requests a client cert and no further communication is received. It would
> appear that Netscape is crashing when parsing the certificates to display
> the certificate choices to the user.
>
> If we export the certificate from Netscape and import it into Internet
> Explorer, it works as expected...
>
> Anyone have any ideas??
>
I have seen this kind of thing from time to time. Netscape doesn't like
certain certificates. There's no obvious pattern but things like '&' or
'-' characters in them can stuff things up.
I suggest you try with different CA and/or client certificates. Start
with something simple and see how much it will tolerate.
Keep a PKCS#12 file for a broken certificate though: it may be useful
when there's enough of the communicator security source around to
diagnose some of these things.
Steve.
--
Dr Stephen N. Henson. http://www.drh-consultancy.demon.co.uk/
Personal Email: [EMAIL PROTECTED]
Senior crypto engineer, Celo Communications: http://www.celocom.com/
Core developer of the OpenSSL project: http://www.openssl.org/
Business Email: [EMAIL PROTECTED] PGP key: via homepage.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
