httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "S.A. Birl" <>
Subject [users@httpd] Fixed. Apache 2.2.4 self-signed SSL problem with openssl 0.9.8e on Solaris 10
Date Thu, 23 Aug 2007 19:16:52 GMT
On Aug 10, 2007, S.A. Birl ( typed:

Birl:  On Aug 9, 2007, Dragon ( typed:
Birl:  Dragon:  S.A. Birl wrote:
Birl:  Dragon:  >  Greetings all:
Birl:  Dragon:  >
Birl:  Dragon:  >  I recently upgraded my server from Solaris 9 to Solaris 10.
Birl:  Dragon:  >  I restored my self-signed CRT and privkey.pem from backup,
Birl:  Dragon:  >  and restored all of my Apache files (minus the binaries) from
Birl:  Dragon:  >  backup too.  Re-compiled httpd (just in case) and started it up.
Birl:  Dragon:  >
Birl:  Dragon:  >  Apache asked for the passphrase and accepted it, but my web browsers
Birl:  Dragon:  >  wont connect to it.  SeaMonkey says "Data Transfer Interrupted"
Birl:  Dragon:  >
Birl:  Dragon:  >
Birl:  Dragon:  >
Birl:  Dragon:  >  Generating a new CSR and CRT with openssl 0.9.8e and tried again.
Birl:  Dragon:  >  Same result.
Birl:  Dragon:  >
Birl:  Dragon:  >  Nothing in the error log; nothing in the access log, but lsof says
Birl:  Dragon:  >  httpd is listening on 443.
Birl:  Dragon:  >
Birl:  Dragon:  >  Im baffled.  What could I be over-looking?
Birl:  Dragon:  >
Birl:  Dragon:  >
Birl:  Dragon:  >  Thanks
Birl:  Dragon:  >   Birl
Birl:  Dragon:  ---------------- End original message. ---------------------
Birl:  Dragon:
Birl:  Dragon:  The site came up in my browser (IE7) but showed a certificate error.
Birl:  Dragon:  The error is that the certificate is not signed by a trusted authority.
Birl:  Yes, that's why I said in the OP that it was "self-signed".
Birl:  Interesting that it came up in IE7, as I confirmed it myself.
Birl:  So other than it being self-signed, what other reason could there be?
Birl:  All my other self-signed certificates worked in the past with the same
Birl:  version of Apache, but an earlier version of openssl.

I finally got around to correcting this.  OpenSSL conflict.

The earlier version of openssl compiled into Apache didnt like my
self-signed certificate with the later version of openssl.

Once I re-compiled Apache, everything worked like a charm.

I figured Id share.

-- Birl

Please do not CC me responses to my own posts.
I'll read the responses on the list.


The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message