Date: Tue, 05 Jul 2005 23:35:52 +0000 From: jdyke <jdyke@azimapower.com> To: Todd Suits <do.you.got.root@gmail.com> Cc: freebsd-questions@freebsd.org Subject: Re: Apache 2 SSL Error Message-ID: <42CB1958.10204@azimapower.com> In-Reply-To: <be19ce705070516001be13cd0@mail.gmail.com> References: <be19ce705070509011ee1955e@mail.gmail.com> <200507051119.12128.algould@datawok.com> <be19ce7050705112157034e18@mail.gmail.com> <20050705202435.628d4783.albi@scii.nl> <be19ce7050705150915603ae2@mail.gmail.com> <be19ce705070515334aec8574@mail.gmail.com> <be19ce705070516001be13cd0@mail.gmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
Todd Suits wrote: > Sorry for all the responses but Googling has brought up possible > problems or questions. I am starting Apache with > /usr/local/sbin/apachectl startssl is this correct for the FreeBSD > compiled version? > you don't *have to* use that, you can just use /usr/local/etc/rc.d/apache.sh and make sure that apache2ssl_enable="YES" in /etc/rc.conf to my knowledge, which may be lacking, you should be able to execute apaches start script as well. if you run `ps -waux | grep httpd` from the prompt do you see httpd listed with -DSSL ?? the errors about 'invalid method' lead me to believe that you its only started as http not https. what is in the error log as soon as you run /usr/local/sbin/apachectl startssl and what does the above ps show. jeff > On 7/5/05, Todd Suits <do.you.got.root@gmail.com> wrote: > >>As an update the command: $ openssl s_client -connect localhost:443 >>-state -debug from the Apache documents, produces the following >>output: >> >>killians# openssl s_client -connect localhost:443 -state -debug >>CONNECTED(00000003) >>SSL_connect:before/connect initialization >>write to 0809A500 [080B1000] (142 bytes => 142 (0x8E)) >>0000 - 80 8c 01 03 01 00 63 00-00 00 20 00 00 39 00 00 ......c... ..9.. >>0010 - 38 00 00 35 00 00 16 00-00 13 00 00 0a 07 00 c0 8..5............ >>0020 - 00 00 33 00 00 32 00 00-2f 03 00 80 00 00 66 00 ..3..2../.....f. >>0030 - 00 05 00 00 04 01 00 80-08 00 80 00 00 63 00 00 .............c.. >>0040 - 62 00 00 61 00 00 15 00-00 12 00 00 09 06 00 40 b..a...........@ >>0050 - 00 00 65 00 00 64 00 00-60 00 00 14 00 00 11 00 ..e..d..`....... >>0060 - 00 08 00 00 06 04 00 80-00 00 03 02 00 80 b3 46 ...............F >>0070 - 18 14 e5 bd de 65 4e 39-1c 60 c4 c2 81 f5 bb 8a .....eN9.`...... >>0080 - 68 00 e0 db 23 c8 ad c2-44 23 81 83 51 93 h...#...D#..Q. >>SSL_connect:SSLv2/v3 write client hello A >>read from 0809A500 [080B7000] (7 bytes => 7 (0x7)) >>0000 - 3c 21 44 4f 43 54 59 <!DOCTY >>SSL_connect:error in SSLv2/v3 read server hello A >>50689:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown >>protocol:/usr/s >>rc/secure/lib/libssl/../../../crypto/openssl/ssl/s23_clnt.c:475: >> >>I'm just not sure how to deal with it. >> >> >>On 7/5/05, Todd Suits <do.you.got.root@gmail.com> wrote: >> >>>I have no problem accessing other https sites and there is not a >>>router, the jail is set up on a dedicated server in a data center >>>where serives like this are provided. >>> >>>On 7/5/05, albi@scii.nl <albi@scii.nl> wrote: >>> >>>>On Tue, 5 Jul 2005 14:21:03 -0400 >>>>Todd Suits <do.you.got.root@gmail.com> wrote: >>>> >>>> >>>>>https:// is what im trying to use. http:// just brings my normal >>>>>index.html page. >>>> >>>>---cut--- >>>> >>>>>>> I get the following error in httpd-error.log: >>>>>>> >>>>>>>[Tue Jul 05 10:15:28 2005] [error] [client 24.123.123.123] Invalid >>>>>>>method in request \x80g\x01\x03 >>>> >>>>are you using a hardware-router or something ? >>>>if so, did you open the 443 port on that router and set up >>>>portforwarding to port 443 ? >>>> >>>> >>> > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?42CB1958.10204>