trafficserver-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Igor Galić <i.ga...@brainsware.org>
Subject Re: SSL handshake problem
Date Tue, 20 Dec 2011 19:22:07 GMT


----- Original Message -----
> Am 16.12.2011 15:12, schrieb Igor Galić:
> >> I want to configure the TS as a reverse proxy which can handle
> >> HTTP
> > Which version of TS?
> 
> I use 3.0.1 (build # 73110) from the official Debian testing
> repository.
> 
> >> CONFIG proxy.config.ssl.SSLv3 INT 1
> >> [...]
> >> CONFIG proxy.config.ssl.CA.cert.path STRING NULL
> > 
> > Where is your private key? Is your private key encrypted?
> > 
> > Does your certificate (server.pem) include everything? (cert, key,
> > chain) - because nothing else is provided
> 
> Yes, No and Yes.
> I found my Problem: I put my certificate stuff in the /etc/ssl folder
> which is owned by root and had 700 Permissions. The TS runs under an
> other user, so TS can't access the certificates/keys.
> 
> Sadly I couldn't read this out of the error message. A simple
> read/permission-Check after reading the configutation files could
> save
> some hours of error hunting.

Aaron,

I remember going down the same road, and coming to the same conclusion
sadly, I forgot to create a ticket for it -- could you please do that?

   https://issues.apache.org/jira/browse/TS

> Aaron

Thank you in advance,

i

-- 
Igor Galić

Tel: +43 (0) 664 886 22 883
Mail: i.galic@brainsware.org
URL: http://brainsware.org/
GPG: 6880 4155 74BD FD7C B515  2EA5 4B1D 9E08 A097 C9AE

Mime
View raw message