Is the method of certificate/key creation as specified in thsi document: http://www.vanemery.com/Linux/Apache/apache-SSL.html correct?
-----Original Message----- From: Jorey Bump <[EMAIL PROTECTED]> Sent: Aug 10, 2005 2:45 PM To: openssl-users@openssl.org Subject: Re: apachectl startssl started, but viewing https in browser does not [EMAIL PROTECTED] wrote: > These lines are from ssl.conf > > DocumentRoot "/opt/apache/CA" This configuration is simply insane. Sorry, but you really need to disable SSL and get up to speed on basic apache administration. Don't change settings without understanding what they do. Any server administrators on this list are probably sitting in a corner shivering after reading this post. Start here: http://httpd.apache.org/docs/2.0/ Restore your original configuration files (you did make backups, didn't you?). > SSLCertificateFile /opt/apache/CA/192.33.175.160.crt > SSLCertificateKeyFile /opt/apache/CA/192.33.175.160.key > SSLCertificateChainFile /opt/apache/CA/my-ca.crt > SSLCACertificateFile /opt/apache/CA/my-ca.crt > > <Directory "/opt/apache/CA"> > SSLOptions +StdEnvVars > </Directory> > > > These are from httpd.conf > > ServerRoot "/usr/local/apache2" > Listen 80 > DocumentRoot "/opt/apache/htdocs" - This is a second DocumentRoot - the > httpd.conf includes the ssl.conf - could this be causing the problem? > > changed htdocs to CA - still with problem > > Do the .crt and .key files need be in CA? > > The certificates were created by following the steps in this document. > http://www.vanemery.com/Linux/Apache/apache-SSL.html ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
