Bug#485635: marked as done (apache2-mpm-prefork: Incorrect warning with wildcard ssl certificates)
Your message dated Mon, 15 Feb 2010 21:36:42 +0100
with message-id <201002152136.42577.sf@sfritsch.de>
and subject line fixed in lenny, etch is at end-of-life
has caused the Debian Bug report #485635,
regarding apache2-mpm-prefork: Incorrect warning with wildcard ssl certificates
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact owner@bugs.debian.org
immediately.)
--
485635: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=485635
Debian Bug Tracking System
Contact owner@bugs.debian.org with problems
--- Begin Message ---
- To: Debian Bug Tracking System <submit@bugs.debian.org>
- Subject: apache2-mpm-prefork: Incorrect warning with wildcard ssl certificates
- From: nick <nick@torchbox.com>
- Date: Tue, 10 Jun 2008 16:42:42 +0100
- Message-id: <20080610154242.29211.77396.reportbug@fluffy.internal.torchbox.com>
Package: apache2-mpm-prefork
Version: 2.2.3-4+etch4
Severity: minor
There seems to be a bug in the matching code to decide if the certificate
matches the vhost name. In my log files, I'm getting logs of incorrect
warnings of the form:
[warn] RSA server certificate CommonName (CN) `*.example.com' does NOT
match server name!?
In one particular case, I have:
ServerName fluffy.torchbox.com
subject= /C=UK/ST=Oxfordshire/L=Oxford/O=Torchbox/OU=Web
Servers/CN=*.torchbox.com
But still get the warning:
[warn] RSA server certificate CommonName (CN) `*.torchbox.com' does
NOT match server name!?
So it looks like the checking code is incorrect
-- System Information:
Debian Release: 4.0
APT prefers stable
APT policy: (500, 'stable'), (200, 'testing')
Architecture: i386 (i686)
Shell: /bin/sh linked to /bin/bash
Kernel: Linux 2.6.24-1-686
Locale: LANG=en_GB, LC_CTYPE=en_GB (charmap=ISO-8859-1)
Versions of packages apache2-mpm-prefork depends on:
ii apa 2.2.3-4+etch4 Next generation, scalable, extenda
ii lib 1.2.7-8.2 The Apache Portable Runtime Librar
ii lib 1.2.7+dfsg-2 The Apache Portable Runtime Utilit
ii lib 2.7-10 GNU C Library: Shared libraries
ii lib 4.4.20-8 Berkeley v4.4 Database Libraries [
ii lib 1.95.8-3.4 XML parsing C library - runtime li
ii lib 2.1.30-13.3 OpenLDAP libraries
ii lib 7.4-1 Perl 5 Compatible Regular Expressi
ii lib 8.1.11-0etch1 PostgreSQL C client library
ii lib 3.3.8-1.1 SQLite 3 shared library
ii lib 1.39+1.40-WIP-2006.11.14+dfsg-2etch1 universally unique id library
apache2-mpm-prefork recommends no packages.
-- no debconf information
--- End Message ---
--- Begin Message ---
You have filed a bug against the Debian Etch version of apache2. The
bug is fixed in the current developement version of the apache2
package but was not considered severe enough to warrant an update in
Debian Etch. Since the support for Debian Etch is ending, I am closing
the bug now.
--- End Message ---
Reply to: