httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Richard de Vries <richard_devr...@yahoo.com>
Subject Re: [users@httpd] Godaddy ssl sertificate problem...
Date Thu, 30 Nov 2006 18:21:40 GMT
The problem is that your certificate has been signed
by a Certificate Authority which is not trusted by
many browsers.

Your HTTPS instance worked fine on my internet
explorer 7, but did indeed fail on firefox. An
examination of the certificate revealed that your
certificate was issued by StarField Secure
Certification Authority.

Quite honestly, I had never heard of these guys. I
always use thawte or verisign.


--- Mailing Lists <lists@gmnet.net> wrote:

> Hi,
> 
> I am having trouble with a certificate from
> Godaddy.com. My website is
> https://www.piercebroscoffee.com 
> 
> On many browsers (Firefox, Epiphany, and even Lynx!)
> I am not able to
> validate the cert. 
> 
> Here is a clue that I noticed:
> It only fails if that is the first time that you
> need to validate the
> intermediate starfield cert. i.e. if you go to
> https://godaddy.com, then
> hit https://www.piercebroscoffee.com, there is no
> problem!
> 
> I did everything that godaddy/starfield said I
> needed to do. I
> downloaded the intermediate certificate and here is
> the entry in my
> ssl.conf file: I am using apache 2, on RedHat 9.
> 
> 
> <VirtualHost www.piercebroscoffee.com:443>
>     SuexecUserGroup java java
>     ServerAdmin webmaster@javahutroasters.com
>     DocumentRoot
> /var/www/www.javahutroasters.com/html
>     ServerName www.piercebroscoffee.com
>     ErrorLog
> logs/www.javahutroasters.com/ssl_error_log
>     TransferLog
> logs/www.javahutroasters.com/ssl_access_log
>     CustomLog
> logs/www.javahutroasters.com/ssl_request_log \
>           "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x
> \"%r\" %b"
>     SSLEngine on
>     SSLCipherSuite
>
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:
> +EXP:+eNULL
>     SSLCertificateFile
> /etc/httpd/conf/ssl.crt/piercebroscoffee.com.crt
> 
> SSLCertificateKeyFile
> /etc/httpd/conf/ssl.key/piercebroscoffee.com.key
>     SSLCertificateChainFile
> /etc/httpd/conf/ssl.crt/sf_issuing.crt
>     <Files ~ "\.(cgi|shtml|phtml|php3?)$">
>         SSLOptions +StdEnvVars
>     </Files>
>     <Directory
> "/var/www/www.javahutroasters.com/html">
>         DirectoryIndex /cgi/javahut/service.html
>         AllowOverride AuthConfig
>         Options +Indexes +Includes
>         Order allow,deny
>         Allow from all
>     </Directory>
>     ScriptAlias /cgi/
> "/var/www/www.javahutroasters.com/cgi/"
>     <Directory
> "/var/www/www.javahutroasters.com/cgi">
>         SSLOptions +StdEnvVars
>         AllowOverride AuthConfig
>         Options +ExecCGI
>         Order allow,deny
>         Allow from all
>     </Directory>
>     SetEnvIf User-Agent ".*MSIE.*" \
>          nokeepalive ssl-unclean-shutdown \
>          downgrade-1.0 force-response-1.0
> </VirtualHost>
> 
> 
> Any Ideas as to what is going wrong?
> 
> thanks
> Rick
> 
> 
>
---------------------------------------------------------------------
> The official User-To-User support forum of the
> Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for
> more info.
> To unsubscribe, e-mail:
> users-unsubscribe@httpd.apache.org
>    "   from the digest:
> users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail:
> users-help@httpd.apache.org
> 
> 



 
____________________________________________________________________________________
Want to start your own business?
Learn how on Yahoo! Small Business.
http://smallbusiness.yahoo.com/r-index

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message