Re: Bug#395936: Apache2 SSL service stopped working since upgrade to 2.2.3-2
Sorry, that didn't solve the problem. Relevant vhost config follows.
Notice; this config did work with the previous version of apache2 in
Debian testing.
----
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
<IfDefine SSL>
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
SSLPassPhraseDialog builtin
SSLSessionCache dbm:/var/run/ssl_scache
SSLSessionCacheTimeout 300
SSLMutex file:/var/run/ssl_mutex
##
## SSL Virtual Host Context
##
NameVirtualHost *:443
<VirtualHost *:443>
SSLEnable
DocumentRoot /var/www
ServerName <<domain>>
ServerAdmin webmaster@<<domain>>
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache2/ssl/apache.pem
SSLCertificateKeyFile /etc/apache2/ssl/532f8672.0
<Files ~ "\.(cgi|shtml|phtml|php3?)$">
SSLOptions +StdEnvVars
</Files>
<Directory />
Options FollowSymLinks
AllowOverride None
</Directory>
<Directory /var/www/>
Options FollowSymLinks MultiViews
AllowOverride None
Order allow,deny
allow from all
</Directory>
ScriptAlias /cgi-bin/ /usr/lib/cgi-bin/
<Directory "/usr/lib/cgi-bin">
SSLOptions +StdEnvVars
AllowOverride None
Options +ExecCGI -MultiViews +SymLinksIfOwnerMatch
Order allow,deny
Allow from all
</Directory>
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0
CustomLog /var/log/apache2/ssl_request.log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
</VirtualHost>
</IfDefine>
Tollef Fog Heen wrote:
* Daan Willems
| Apache2 error.log shows: [client <ip>] Invalid method in request
| \x16\x03\x01
This sounds like you're missing an SSLEnable for the vhost in
question. Can you please check that, and if not, send us the relevant
vhost config?
Reply to: