Is /usr/local/apache/conf/ssl.crt/server.crt indeed the correct filename for the file containing the certificate?
AFAICR the only weirdness I ever saw was that you cannot use the command macro to restart the server in place, you have to stop and then start -- I assumed it was because once the server instance dropped from userid root to userid httpd it wasn't able to read the 200 root-only key file.
jna wrote:
I tried firing up my new ssl enabled apache server and it fails with the following error:
[Sat Oct 18 06:13:35 2003] [error] mod_ssl: Init: Unable to read server certificate from file /usr/local/ apache/conf/ssl.crt/server.crt (OpenSSL library error follows) [Sat Oct 18 06:13:35 2003] [error] OpenSSL: error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag [Sat Oct 18 06:13:35 2003] [error] OpenSSL: error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
I am using
1) Apache 1.3.28 2) open ssl openssl-0.9.7c 3) modssl mod_ssl-2.8.15-1.3.28
I did the make certificate before the make install no luck and even tried the make certificate TYPE=DUMMY before make install and get the above error.
Anyhow know how to correct this? It works fine as long as you dont enable ssl with apachectl startssl.
Thanks, John
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
-- +---------+---------+---------+---------+---------+---------+---------+ Charles B. (Ben) Cranston mailto:[EMAIL PROTECTED] http://www.wam.umd.edu/~zben
______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
