Hi,
I have Apache asking for x509 Client certificates, I am trying to proxypass the
original request to multiple locations based on the result of the client
authentication
If successfully authenticated, proxypass to authserver
if not, proxypass to noauthserver
Ive tryied a lot of configuratio
2010 14:16:47 +0200
> From: jo...@sanguis.xs4all.nl
> To: users@httpd.apache.org
> Subject: RE: [us...@httpd] strange behaviour: SSLCACertificatePath and
> SSLCACertificateFile not giving the same result?
>
> On Fri, August 6, 2010 13:52, Luis Neves wrote:
> >
> > Im
Im trying as suggested, But what should I look for? I see the SSLv3 traffic
between server and client.
The server send all the CA certificates, the client send all his certificates
as well, then a BAD certificate error is returned by the server
Luis
> Date: Thu, 5 Aug 2010 09:54:34 -0400
>
Hi there
I have seven certificates in /etc/pki/tls/certs/ca-bundle.crt.soosnecessarios
file
I have also, the same seven certificates in /usr/local/apache2/conf/certs
folder, with hashes and the symbolic links:
lrwxrwxrwx 1 root root 15 Aug 4 11:01 37eda7b0.r0 -> ECAutCC0004.pem
lrwxrwxrwx 1
]
[pid 3134] [client 10.15.1.74:48696] SSL library error 1 in handshake
(server beehive.cm-lisboa.net:443)
[Wed Aug 04 13:48:34.258412 2010]
[info] [pid 3134] SSL Library Error: error:140890B2:SSL
routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned
Thanks
Luis Neves
From: luisne
Well, I said an error
It happens even using Apache 2.2.3
The only way it works ok is using a third-party mod_sso.so
So, must be some kind of mod_sso bug
Luis
From: luisne...@hotmail.com
To: users@httpd.apache.org
Date: Wed, 4 Aug 2010 15:59:13 +
Subject: RE: [us...@httpd] SSLCACertificateP
New info:
I only have this error in a compiled Apache 2.3.6
If I make the same test on the already existing Apache (httpd-2.2.3-6.el5) then
I dont get any problems using
SSLCACertificatePath instead of SSLCACertificateFile
Luis
From: luisne...@hotmail.com
To: users@httpd.apache.org
Date: Wed
Hi to all,
if in apache I use in
SSLCACertificateFile /etc/pki/tls/certs/ca-bundle.crt
I dont have any errors regarding the client certificate
If I change it to
SSLCACertificatePath /usr/local/apache2/conf/certs
(and comment the SSLCACertificateFile line)
where certs is the folder where I have
I Hope you are luckier them me
I ve tried to use OCSP on apache 2.3.5.something and have to quit because:
It didnt detected the OCSP responder that was on the certificates (AIA
extensions) (had to specify it manually) AND
Ive got an error which I didnt found any clue about how to solve it:
"OCS
Hi to all
I am trying to validade client Certs using Apache and a OCSP responder. Iam
having this error on error log:
(I can successfully validate the cert if using openssl command line, but not
using Apache)
[Fri Jul 16 16:02:11.201292 2010] [debug] [pid 21789] proxy_util.c(1962):
proxy: i
"validate" expired client X509 certificates instead of apache+mod_ssl?
Or at this state of apache development should I forget OCSP and try to use CRL
and automate CRL updates using some cron job and some scripting?
Regards,
Luis Neves
Hotmail: Powerful Fr
CSP with my current
apache to "validate" expired client X509 certificates instead of apache+mod_ssl?
Or at this state of apache development should I forget OCSP and try to use CRL
and automate CRL updates using some cron job
_cerror
>
> Luis,
>
> On Apr 30, 2010, at 3:28 PM, Luis Neves wrote:
>
> > Hi list members,
> >
> > see here http://marc.info/?l=apache-httpd-dev&m=127242179232546&w=2
> >
> > I am the original poster of this issue, unfortunally so far I h
e: Fri, 30 Apr 2010 16:39:29 -0400
> From: cove...@gmail.com
> To: users@httpd.apache.org
> Subject: Re: [us...@httpd] UTF-8 strings through ap_log_cerror
>
> On Fri, Apr 30, 2010 at 4:28 PM, Luis Neves wrote:
>
> > I think this issue is not only related to the logs apache i
Hi list members,
see here http://marc.info/?l=apache-httpd-dev&m=127242179232546&w=2
I am the original poster of this issue, unfortunally so far I have no answers
to my problem and maybe you can give me some clues
I think this issue is not only related to the logs apache is creating "in
ssl_e
Hi there,
I am trying to match the values coming from apache/mod_ssl/mod_authz_ldap
against some fields (subjectDN and issuerDN) in an Openldap directory
the problem is that Apache is receiving certificate data that contains UTF8
encoded chars
That chars are being incorrectly encoded with '\x'
16 matches
Mail list logo
