Linode.com Forum

[rbmay]

I have tried to get my ssl working to no avail. I could really use some help. I could pay someone to get it working for me.

I have a centos 5 with apache 2

Thank you,
Robin

[johnmoore330]

Is your problem with just getting started or are you configured and apache won't start? Coming at this blind I'm assuming nothing.

do you have mod_ssl installed?

have you generated a key and request?

do you have the certificate?

have you configured /etc/httpd/conf.d/ssl.conf to point at key and certificate from your ssl provider?

* SSLCertificateFile
* SSLCertificateKeyFile
* SSLCACertificateFile

what does "service httpd configtest" return (this is pretty good at telling you where you configuration is screwed up)?

is 443 listening (netstat -an)

what does httpd -S show?

did you reconfigure and restart iptables to permit SSL traffic through?


If the issue is just getting started... We get our certificates from comodo.com; they have a pretty decent description of how to generate and install certificates for most platforms including Apache/mod_ssl.


john

[rbmay]

I ran all the mentioned and there are no errors and server is listening on 443

I am running a self signed cert until I can get it working then I will purchase one. It does not work. https will not load in the browser. In IE I just get a not found page and in Firefox I get error code -12263.

Any direction would be much appreciated.

Robin

[pclissold]

Error -12263 is SSL_ERROR_RX_RECORD_TOO_LONG - SSL received a record that exceeded the maximum permissible length.

Check that the 'SSLRequireSSL' directive(s) and the 'SSLEngine on' directive(s) are applied to the same (virtual) host(s). 'SSLRequireSSL' without 'SSLEngine on' can do this. Otherwise, sometimes this is caused by screwed up Apache redirects.

[rbmay]

I checked the config and they are applied to the same host. So It must be the apache redirects. How would I fix this?

Robin

[pclissold]

Turn off redirects to see if they are the problem. If not, check your SSL certificate.