|
Well, I said an error It happens even using Apache 2.2.3 The only way it works ok is using a third-party mod_sso.so So, must be some kind of mod_sso bug Luis From: luisneves@xxxxxxxxxxx To: users@xxxxxxxxxxxxxxxx Date: Wed, 4 Aug 2010 15:59:13 +0000 Subject: RE: SSLCACertificatePath breaks something New info: I only have this error in a compiled Apache 2.3.6 If I make the same test on the already existing Apache (httpd-2.2.3-6.el5) then I dont get any problems using SSLCACertificatePath instead of SSLCACertificateFile Luis From: luisneves@xxxxxxxxxxx To: users@xxxxxxxxxxxxxxxx Date: Wed, 4 Aug 2010 15:40:47 +0000 Subject: SSLCACertificatePath breaks something Hi to all, if in apache I use in SSLCACertificateFile /etc/pki/tls/certs/ca-bundle.crt I dont have any errors regarding the client certificate If I change it to SSLCACertificatePath /usr/local/apache2/conf/certs (and comment the SSLCACertificateFile line) where certs is the folder where I have all the individual PEM certificates and symbolic links to their hashes I get on error_log [Wed Aug 04 13:48:34.257972 2010] [error] [pid 3134] [client 10.15.1.74:48696] Certificate Verification: Error (20): unable to get local issuer certificate [Wed Aug 04 13:48:34.258299 2010] [info] [pid 3134] [client 10.15.1.74:48696] SSL library error 1 in handshake (server beehive.cm-lisboa.net:443) [Wed Aug 04 13:48:34.258412 2010] [info] [pid 3134] SSL Library Error: error:140890B2:SSL routines:SSL3_GET_CLIENT_CERTIFICATE:no certificate returned Icant find why or what I am missing Can you help? Regards, Luis |
|