[95988] in RedHat Linux List
Re: Bug using RH Secure Server 2.0 + Thawte
daemon@ATHENA.MIT.EDU (Jeff Halper)
Thu Oct 22 18:53:09 1998
Date: Thu, 22 Oct 1998 15:52:03 -0700 (PDT)
From: Jeff Halper <redhat@ihot.com>
To: redhat-list@redhat.com
In-Reply-To: <Pine.LNX.3.95.981022141802.13450A-100000@ihot.ihot.com>
Resent-From: redhat-list@redhat.com
Reply-To: redhat-list@redhat.com
I installed Secure 2.0 on redhat 5.1, and bought a Thawte certificate.
Does anyone else on this list have the same thing? I am trying to debug a
server problem that only rears it's ugly head with netscape 3.x - In my
case it's Netscape 3.04gold for win 95 that has the error.
I'd like to try and bring up a web page on someone elses redhat 2.0 secure
server who also has a thawte certificate to see if my bug is just here
(maybe I have a defective certificate) or if my bug is everyone's bug.
BTW - I have tested on someone using the earlier secuire server version -
it does not behave this way - it works fine.
here's what happens
Instead of warning that the browser certificate for Thawte is exppired and
then allowing the user to continue, I get a database library error, and
Netscape will not allow the user to open the page - if you do the root
rollover then it will work - otherwise it's no go.
I get a server log message that says this:
[Thu Oct 22 08:45:31 1998] [error] mod_ssl: SSL_accept failed
[Thu Oct 22 08:45:31 1998] [error] SSLeay: error:14094412:SSL
routines:SSL3_READ_BYTES:sslv3 alert bad certificate
However, my Netscape 3.04 gold can connect to other sites using Thawte
certificates fine - like https://www.thawte.com -of course, I get a
warning the certificate has
expired, but I am still permitted to continue if I wish.
Any ideas - any url's I can test with - any help is appreciated.
Jeff Halper
Internet Hotline
408/881-1000
http://www.ihot.com
mailto:jeff@ihot.com
--
PLEASE read the Red Hat FAQ, Tips, Errata and the MAILING LIST ARCHIVES!
http://www.redhat.com http://archive.redhat.com
To unsubscribe: mail redhat-list-request@redhat.com with
"unsubscribe" as the Subject.