Hi, I have a small problem with SSL and Apache2.
It works fine when I use a Linux WEB client as Mozilla or Konqueror. But it dosn't work with MSIE (Microsoft Internet Explorer) 6.x. I've tried to disable SSLv3 and TLS in MSIE, so that I only use SSLv2, but without luck. As you can se in the config below, I've maked sure that it is backward compatible with older MSIE's with the following line: "SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0" I've generede my own server certificate and CA as describe on HTTP://www.apache.org: http://httpd.apache.org/docs-2.0/ssl/ssl_faq.html#realcert My .conf look like this: <IfDefine SSL> <IfDefine !NOSSL> <VirtualHost *:443> DocumentRoot "/srv/www/vhosts/mail.mydomain.com" ServerName mail.mydomain.com ServerAdmin [EMAIL PROTECTED] ErrorLog /var/log/apache2/mail.mydomain.com-error_log TransferLog /var/log/apache2/mail.mydomain.com-access_log SSLEngine on SSLCertificateFile /etc/apache2/ssl.crt/server.crt SSLCertificateKeyFile /etc/apache2/ssl.key/server.key SSLCACertificateFile /etc/apache2/ssl.crt/ca.crt SSLCACertificatePath /etc/apache2/ssl.crt SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP SSLOptions +FakeBasicAuth +ExportCertData +CompatEnvVars +StrictRequire SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0 CustomLog /var/log/apache2/mydomain.com.ssl_request_log \ "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b" LogLevel Debug </VirtualHost> <Directory "/srv/www/vhosts/mail.mydomain.com"> Options Indexes FollowSymLinks AllowOverride None Order allow,deny Allow from all </Directory> </IfDefine> </IfDefine> Hope somebody can help me. Thanks in advance :o) Cheers, Torben Grisell ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
