> Perhaps this is again the problem of an incorrect Subject name in the
> certificate. Make sure the name is not your personal name. It has to be the
> FQDN of your webserver.
I think I did that correctly.
Anyway I regenerated the certificates again and I was able to get it up
and running.
Can some one enlighten me on how to fill the
SSLCertificateKeyFile /usr/local/ssl/certs/server.key
SSLCertificateFile /usr/local/ssl/certs/server.pem
SSLCACertificateFile /usr/local/ssl/certs/cacert.pem
entries in httsd.conf
for SSLCertificateKeyFile, I used the private key generated by
CA.sh -newreq
for SSLCertificateFile, I combined the above key and certificate
from newcert.pem
for SSLCACertificateFile, I used the demoCA/cacert.pem
Are the above settings correct ?
Now when I use netscape to access, the site, it shows me the
certificate and ca info correctly and lets me connect to the site.
But after a couple of hits, the httpsd core dumps
[Fri Aug 28 14:31:12 1998] ssl_gcache started
[Fri Aug 28 14:31:16 1998] [info] mod_unique_id: using ip addr 127.0.0.1
[Fri Aug 28 14:31:17 1998] [notice] Apache/1.3.1 (Unix) mod_ssl/2.0.5
SSLeay/0.8.0 configured -- resuming normal operations
[Fri Aug 28 14:31:17 1998] [info] Server built: Aug 26 1998 13:54:24
[Fri Aug 28 14:32:12 1998] [notice] httpd: child pid 2523 exit signal
Segmentation fault (11)
and Netscape(4.06,FreeBSD -Current) gives me the following
"An I/O error occured during security authorization. please try agian ..."
I think this is an entirely different problem.
Any help is appreciated,
thanks
-Satya