Return-Path: Delivered-To: apmail-httpd-users-archive@www.apache.org Received: (qmail 77093 invoked from network); 30 Dec 2008 12:20:58 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 30 Dec 2008 12:20:58 -0000 Received: (qmail 4602 invoked by uid 500); 30 Dec 2008 12:20:47 -0000 Delivered-To: apmail-httpd-users-archive@httpd.apache.org Received: (qmail 4302 invoked by uid 500); 30 Dec 2008 12:20:47 -0000 Mailing-List: contact users-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: users@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list users@httpd.apache.org Received: (qmail 4293 invoked by uid 99); 30 Dec 2008 12:20:46 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 30 Dec 2008 04:20:46 -0800 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of mlists@edicom.eu designates 213.201.57.122 as permitted sender) Received: from [213.201.57.122] (HELO cartero.edicom.es) (213.201.57.122) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 30 Dec 2008 12:20:40 +0000 Received: from matlin.edicom.es (unknown [192.168.0.110]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: matormo) by cartero.edicom.es (EDICOM) with ESMTP id 84B764061 for ; Tue, 30 Dec 2008 13:20:18 +0100 (CET) From: Miguel Angel Tormo Alfaro Organization: EDICOM To: users@httpd.apache.org Date: Tue, 30 Dec 2008 13:20:13 +0100 User-Agent: KMail/1.9.7 MIME-Version: 1.0 Content-Disposition: inline X-Length: 829 X-UID: 54 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Message-Id: <200812301320.13216.mlists@edicom.eu> X-Virus-Checked: Checked by ClamAV on apache.org Subject: [users@httpd] Apache 2.2 asks for client certificate when it shouldn't Hi all, I recently installed an apache web server using version 2.2.9, and I'm having strange issues with the SSL behaviour. I don't need client certificate validation so I didn't use the directive SSLVerifyClient. However, as apache asked for a client certificate, I changed the SSLVerifyClient directive to 'none', with the same results. I thought it could be a browser issue, however the same config in apache 2.0 doesn't behave this way. On the other hand I'm able to reproduce the problem with firefox 2, 3, seamonkey 1.1.7 and konqueror. I don't see anything related to this in the apache logs. I've done many tests and now I have no clue about why it keeps asking for a certificate. It should be noted though that apache asks for the certificate only once, if I don't restart the browser or delete cookies. Are there other configuration directives in mod_ssl besides SSLVerifyClient that may influence this behaviour? Some system information: SO: Linux 2.6, 64 bit (Gentoo distribution) Server Version: Apache/2.2.9 (Unix) mod_ssl/2.2.9 OpenSSL/0.9.8h PHP/5.2.6-pl7-gentoo mod_jk/1.2.26 Any help is greatly appreciated. Thanks! --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org " from the digest: users-digest-unsubscribe@httpd.apache.org For additional commands, e-mail: users-help@httpd.apache.org