?
Solved

Apache2/mod_ssl: I can't connect to an SSL enabled VHost

Posted on 2003-11-10
5
Medium Priority
?
861 Views
Last Modified: 2012-05-04
I use SuSE 9 and Apache 2.0.47 with pre-fork. I used the default SSL Vhost template "/etc/apache2/vhost.d/ssl_vhost.template" I created a self signed cert using the following:
1. openssl -genrsa -des3 -out server.key
2. openssl -req -key ../ssl.key/server.key -days 365 -out server.crt
3. entered the passphrase
4. Entered my cert details.

When I tryied to start apache2 (rcapache2 restart) it asked me for the passphrase and timed out to soon so I starteed it "manualy" (#: httpd2) and entered the passphrase and the server started. However any attempt to connect to the vhost loads the homepage (main server) and SSL connections are refused.
All help appreciated.
0
Comment
Question by:BLaCkDraGoN
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
pjedmond earned 750 total points
ID: 9720943
I presume that somewhere in your httpd.conf you have the following lines or similar

Listen *:80
Listen *:443

If you are not listening on port 443, then you'll get the connection refused.

As a test, you can telnet to port 443, and it should connect if ssl is enabled - if not then you'll get a comment to the effect that you could not connect/connection failed.

0
 
LVL 22

Expert Comment

by:pjedmond
ID: 9720951
Another idea...just to get the system up and running, is try creating a key without a pass phrase (FOR TEST PURPOSES ONLY), and see if that works for you.

Always start at the simplest level, and then add complexity:)
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 9723953
Their is the line:
Listen 80
Listen 443
NameVirtualHost *

in /etc/apache2/listen.conf (SuSE9 has "modularised" the configuration)
Normaly when I connect to a vhost I get a "403 Error" because I have disallowed indexes so I am going to assume that either the server is having a problem with the ssl configuration or my certificates are invalid does the server normaly request passphrases at startup I read somewhere about "SSLPassphrase Internal" set the system up not to "nag" for a passphrase without using unencrypted certs. (This is still part of the origional question).
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 10531615
I have decided to stop this Question as I discovered that I already have another similar one Open. I will only award 100pts IN THIS QUESTION but 300 in the next one to the best answer.
~BD~
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 10531620
OOPs forgot I cant decrease points! Oh well that makes a potential 550 points up-for-grabs!
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you've heard about htaccess and it sounds like it does what you want, but you're not sure how it works... well, you're in the right place. Read on. Some Basics #1. It's a file and its filename is .htaccess (yes, with a dot in the front). #…
If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Have you created a query with information for a calendar? ... and then, abra-cadabra, the calendar is done?! I am going to show you how to make that happen. Visualize your data!  ... really see it To use the code to create a calendar from a q…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question