Return-Path: 
 <user-return-18918-apmail-couchdb-user-archive=couchdb.apache.org@couchdb.apache.org>
X-Original-To: apmail-couchdb-user-archive@www.apache.org
Delivered-To: apmail-couchdb-user-archive@www.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 85B4F9A29
	for <apmail-couchdb-user-archive@www.apache.org>;
 Thu, 24 Nov 2011 18:17:40 +0000 (UTC)
Received: (qmail 92100 invoked by uid 500); 24 Nov 2011 18:17:39 -0000
Delivered-To: apmail-couchdb-user-archive@couchdb.apache.org
Received: (qmail 92067 invoked by uid 500); 24 Nov 2011 18:17:39 -0000
Mailing-List: contact user-help@couchdb.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:user-help@couchdb.apache.org>
List-Unsubscribe: <mailto:user-unsubscribe@couchdb.apache.org>
List-Post: <mailto:user@couchdb.apache.org>
List-Id: <user.couchdb.apache.org>
Reply-To: user@couchdb.apache.org
Delivered-To: mailing list user@couchdb.apache.org
Received: (qmail 92059 invoked by uid 99); 24 Nov 2011 18:17:39 -0000
Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136)
    by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 24 Nov 2011 18:17:39 +0000
X-ASF-Spam-Status: No, hits=-0.7 required=5.0
	tests=FREEMAIL_FROM,RCVD_IN_DNSWL_LOW,SPF_PASS,WEIRD_PORT
X-Spam-Check-By: apache.org
Received-SPF: pass (athena.apache.org: domain of kxepal@gmail.com designates
 209.85.210.46 as permitted sender)
Received: from [209.85.210.46] (HELO mail-pz0-f46.google.com) (209.85.210.46)
    by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 24 Nov 2011 18:17:33 +0000
Received: by pzk4 with SMTP id 4so491907pzk.5
        for <user@couchdb.apache.org>; Thu, 24 Nov 2011 10:17:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :content-type:content-transfer-encoding;
        bh=9Cg9m8M2whrHXI3FgpxND9KXBdFCk9BZCYULnDBIdzI=;
        b=ZQ2kJJI1wI56Wx7SoWZ2Q+RmpSzsePVgkyHBM3t83rRXSnYpzxqXg4miWrplAk4a0r
         /5S74EIlxF/Q8z0zaHkyLNlOVkLqhOLCIoGW9cvnMZ5cavNSC7zxT3wiNkh3SsMJAyCL
         z3i7f3hOGj1tNnXYaAi6WXSuucz358/inS/EY=
MIME-Version: 1.0
Received: by 10.68.39.98 with SMTP id o2mr20005033pbk.119.1322158632406; Thu,
 24 Nov 2011 10:17:12 -0800 (PST)
Received: by 10.68.51.102 with HTTP; Thu, 24 Nov 2011 10:17:12 -0800 (PST)
In-Reply-To: <1322151695.92669.YahooMailNeo@web38804.mail.mud.yahoo.com>
References: <1322151695.92669.YahooMailNeo@web38804.mail.mud.yahoo.com>
Date: Thu, 24 Nov 2011 21:17:12 +0300
Message-ID: 
 <CAHdjip+bjgfOw9a0tnEUdRmyFbRPq1gNVMYhZJV6QP8YOTViaA@mail.gmail.com>
Subject: Re: ssl problem
From: Alexander Shorin <kxepal@gmail.com>
To: user@couchdb.apache.org, Jeremy Smith <jeremyasmith@yahoo.com>
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

Hi,

 $ curl -k -v https://www.jeremythings.co.uk:6984/
* About to connect() to www.jeremythings.co.uk port 6984 (#0)
*   Trying 64.22.103.145... connected
* Connected to www.jeremythings.co.uk (64.22.103.145) port 6984 (#0)
* found 157 certificates in /etc/ssl/certs/ca-certificates.crt
* 	 server certificate verification SKIPPED
* 	 compression: NULL
* 	 cipher: AES-128-CBC
* 	 MAC: SHA1
> GET / HTTP/1.1
> User-Agent: curl/7.21.4 (x86_64-pc-linux-gnu) libcurl/7.21.4 GnuTLS/2.10.=
5 zlib/1.2.5
> Host: www.jeremythings.co.uk:6984
> Accept: */*
>
< HTTP/1.1 200 OK
< Server: CouchDB/1.1.1 (Erlang OTP/R14B04)
< Date: Thu, 24 Nov 2011 18:15:52 GMT
< Content-Type: text/plain;charset=3Dutf-8
< Content-Length: 40
< Cache-Control: must-revalidate
<
{"couchdb":"Welcome","version":"1.1.1"}
* Connection #0 to host www.jeremythings.co.uk left intact
* Closing connection #0

works fine for me

--
,,,^..^,,,



On Thu, Nov 24, 2011 at 8:21 PM, Jeremy Smith <jeremyasmith@yahoo.com> wrot=
e:
> Hi,
>
> I have a godaddy ssl certificate and I am not sure how to tell couch to u=
se the intermediate certificate, there are two settings in local.ini for th=
e key and the certificate, I have tried various combination of these files =
copncatinated in various ways with no joy.
>
> The files I have are:
> gd_bundle.crt - bundle provided by godaddy
> jeremythings.co.uk.crt - domain cert provided by godaddy
> server.key - my key that I used to create the certificate request
>
> The errors I am getting are:
> jeremy@jeremythings:~/daddyssl/blah$ curl -k -v https://www.jeremythings.=
co.uk:6984/
> * About to connect() to www.jeremythings.co.uk port 6984 (#0)
> *=C2=A0=C2=A0 Trying 64.22.103.145... connected
> * Connected to www.jeremythings.co.uk (64.22.103.145) port 6984 (#0)
> * successfully set certificate verify locations:
> *=C2=A0=C2=A0 CAfile: none
> =C2=A0 CApath: /etc/ssl/certs
> * SSLv3, TLS handshake, Client hello (1):
> * Unknown SSL protocol error in connection to www.jeremythings.co.uk:6984
> * Closing connection #0
> curl: (35) Unknown SSL protocol error in connection to www.jeremythings.c=
o.uk:6984
>
>
> Thanks
> Jeremy
>