?
Solved

Apache2/mod_ssl: I can't connect to an SSL enabled VHost

Posted on 2003-11-10
5
Medium Priority
?
866 Views
Last Modified: 2012-05-04
I use SuSE 9 and Apache 2.0.47 with pre-fork. I used the default SSL Vhost template "/etc/apache2/vhost.d/ssl_vhost.template" I created a self signed cert using the following:
1. openssl -genrsa -des3 -out server.key
2. openssl -req -key ../ssl.key/server.key -days 365 -out server.crt
3. entered the passphrase
4. Entered my cert details.

When I tryied to start apache2 (rcapache2 restart) it asked me for the passphrase and timed out to soon so I starteed it "manualy" (#: httpd2) and entered the passphrase and the server started. However any attempt to connect to the vhost loads the homepage (main server) and SSL connections are refused.
All help appreciated.
0
Comment
Question by:BLaCkDraGoN
  • 3
  • 2
5 Comments
 
LVL 22

Accepted Solution

by:
pjedmond earned 750 total points
ID: 9720943
I presume that somewhere in your httpd.conf you have the following lines or similar

Listen *:80
Listen *:443

If you are not listening on port 443, then you'll get the connection refused.

As a test, you can telnet to port 443, and it should connect if ssl is enabled - if not then you'll get a comment to the effect that you could not connect/connection failed.

0
 
LVL 22

Expert Comment

by:pjedmond
ID: 9720951
Another idea...just to get the system up and running, is try creating a key without a pass phrase (FOR TEST PURPOSES ONLY), and see if that works for you.

Always start at the simplest level, and then add complexity:)
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 9723953
Their is the line:
Listen 80
Listen 443
NameVirtualHost *

in /etc/apache2/listen.conf (SuSE9 has "modularised" the configuration)
Normaly when I connect to a vhost I get a "403 Error" because I have disallowed indexes so I am going to assume that either the server is having a problem with the ssl configuration or my certificates are invalid does the server normaly request passphrases at startup I read somewhere about "SSLPassphrase Internal" set the system up not to "nag" for a passphrase without using unencrypted certs. (This is still part of the origional question).
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 10531615
I have decided to stop this Question as I discovered that I already have another similar one Open. I will only award 100pts IN THIS QUESTION but 300 in the next one to the best answer.
~BD~
0
 
LVL 1

Author Comment

by:BLaCkDraGoN
ID: 10531620
OOPs forgot I cant decrease points! Oh well that makes a potential 550 points up-for-grabs!
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are running a LAMP infrastructure, this little code snippet is very helpful if you are serving lots of HTML, JavaScript and CSS-related information. The mod_deflate module, which is part of the Apache 2.2 application, provides the DEFLATE…
If you've heard about htaccess and it sounds like it does what you want, but you're not sure how it works... well, you're in the right place. Read on. Some Basics #1. It's a file and its filename is .htaccess (yes, with a dot in the front). #…
This lesson discusses how to use a Mainform + Subforms in Microsoft Access to find and enter data for payments on orders. The sample data comes from a custom shop that builds and sells movable storage structures that are delivered to your property. …
Despite its rising prevalence in the business world, "the cloud" is still misunderstood. Some companies still believe common misconceptions about lack of security in cloud solutions and many misuses of cloud storage options still occur every day. …
Suggested Courses
Course of the Month14 days, 15 hours left to enroll

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question