Solved

Apache2/mod_ssl: I can't connect to an SSL enabled VHost

Posted on 2003-11-10
5
847 Views
Last Modified: 2012-05-04
I use SuSE 9 and Apache 2.0.47 with pre-fork. I used the default SSL Vhost template "/etc/apache2/vhost.d/ssl_vhost.template" I created a self signed cert using the following:
1. openssl -genrsa -des3 -out server.key
2. openssl -req -key ../ssl.key/server.key -days 365 -out server.crt
3. entered the passphrase
4. Entered my cert details.

When I tryied to start apache2 (rcapache2 restart) it asked me for the passphrase and timed out to soon so I starteed it "manualy" (#: httpd2) and entered the passphrase and the server started. However any attempt to connect to the vhost loads the homepage (main server) and SSL connections are refused.
All help appreciated.
0
Comment
Question by:BLaCkDraGoN
  • 3
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
pjedmond earned 250 total points
ID: 9720943
I presume that somewhere in your httpd.conf you have the following lines or similar

Listen *:80
Listen *:443

If you are not listening on port 443, then you'll get the connection refused.

As a test, you can telnet to port 443, and it should connect if ssl is enabled - if not then you'll get a comment to the effect that you could not connect/connection failed.

0
 
LVL 22

Expert Comment

by:pjedmond
ID: 9720951
Another idea...just to get the system up and running, is try creating a key without a pass phrase (FOR TEST PURPOSES ONLY), and see if that works for you.

Always start at the simplest level, and then add complexity:)
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 9723953
Their is the line:
Listen 80
Listen 443
NameVirtualHost *

in /etc/apache2/listen.conf (SuSE9 has "modularised" the configuration)
Normaly when I connect to a vhost I get a "403 Error" because I have disallowed indexes so I am going to assume that either the server is having a problem with the ssl configuration or my certificates are invalid does the server normaly request passphrases at startup I read somewhere about "SSLPassphrase Internal" set the system up not to "nag" for a passphrase without using unencrypted certs. (This is still part of the origional question).
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 10531615
I have decided to stop this Question as I discovered that I already have another similar one Open. I will only award 100pts IN THIS QUESTION but 300 in the next one to the best answer.
~BD~
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 10531620
OOPs forgot I cant decrease points! Oh well that makes a potential 550 points up-for-grabs!
0

Featured Post

Complete Microsoft Windows PC® & Mac Backup

Backup and recovery solutions to protect all your PCs & Mac– on-premises or in remote locations. Acronis backs up entire PC or Mac with patented reliable disk imaging technology and you will be able to restore workstations to a new, dissimilar hardware in minutes.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
wget saving web page help 4 70
Wordpress on WAMP Server 3 Issue 15 87
PHP Error Settings 12 76
Apache 2.2 on Windows 2008 32 53
As Wikipedia explains 'robots.txt' as -- the robot exclusion standard, also known as the Robots Exclusion Protocol or robots.txt protocol, is a convention to prevent cooperating web spiders and other web robots from accessing all or part of a websit…
Introduction As you’re probably aware the HTTP protocol offers basic / weak authentication, which in combination with the relevant configuration on your web server, provides the ability to password protect all or part of your host.  If you were not…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now