HTTP Anti-Virus Proxy :: View topic - apache ssl + havp problem

HTTP Anti-Virus Proxy http://havp.hege.li/forum/

apache ssl + havp problem http://havp.hege.li/forum/viewtopic.php?f=4&t=540	Page 1 of 1

Author:	slkgtr [ 26 Jul 2010 09:46 ]
Post subject:	apache ssl + havp problem
Here is my configuration of apache server. ( Ubuntu 10.04) I pointed the SSL connection to the 8443 proxy. I read the logfile. I got this message. [Sat Jul 24 02:14:43 2010] [debug] ssl_engine_kernel.c(1938): OpenSSL: Exit: error in SSLv2/v3 read client hello A [Sat Jul 24 02:14:43 2010] [info] [client 10.103.240.21] SSL library error 1 in handshake (server school:8443) [Sat Jul 24 02:14:43 2010] [info] SSL Library Error: 336027803 error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy request speaking HTTP to HTTPS port!? [Sat Jul 24 02:14:43 2010] [info] [client 10.103.240.21] Connection closed to child 130 with abortive shutdown (server school:8443) Include /etc/apache2/mods-enabled/.load Include /etc/apache2/mods-enabled/.conf serverRoot "/etc/apache2" user www-data group www-data Listen 8443 Listen 8444 Listen 8445 <VirtualHost _default_:8443> RewriteEngine on KeepAlive On <Directory /> Options ExecCGI </Directory> RewriteCond %{REQUEST_METHOD} !^(GET\|POST) RewriteRule .* - [F] DocumentRoot /var/www ServerAdmin root@localhost ErrorLog /var/log/httpd/error_log TransferLog /var/log/httpd/access_log SSLEngine on SSLProtocol all -SSLv2 SSLCipherSuite ALL:!ADH:!EXPORT56:!eNULL:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW:+EXP SSLCertificateFile /etc/httpd/server.cert SSLCertificateKeyFile /etc/httpd/server.key SSLCertificateChainFile /etc/httpd/server.cert SetEnv HOME /home/nobody ProxyRemote * http://127.0.0.1:8181 ProxyPreserveHost Off RequestHeader unset xwasSSL RequestHeader set xwasSSL true Header unset Via Header unset X-Cache Header unset Vary RewriteRule ^(.)$ http://%{HTTP_HOST}$1 </VirtualHost> <VirtualHost _default_:8444> RewriteEngine on <Directory /> Options ExecCGI </Directory> RewriteCond %{REQUEST_METHOD} !^(GET\|POST) RewriteRule . - [F] DocumentRoot /var/www ServerAdmin root@localhost ErrorLog /var/log/httpd/error_log TransferLog /var/log/httpd/access_log KeepAlive On ProxyRemote * http://127.0.0.1:8181 ProxyPreserveHost Off RequestHeader unset xwasSSL RequestHeader set xwasSSL false Header unset Via Header unset X-Cache Header unset Vary RewriteRule ^(.)$ http://%{HTTP_HOST}$1 </VirtualHost> <VirtualHost _default_:8445> ProxyRequests on KeepAlive On SSLProxyEngine on ProxyVia block ProxyPreserveHost Off DocumentRoot /home/httpd/html ServerAdmin root@localhost ErrorLog /var/log/httpd/error_log TransferLog /var/log/httpd/access_log ProxyMaxForwards -1 SetOutputFilter INFLATE <Proxy > RequestHeader unset Via RequestHeader unset X-Forwarded-For RequestHeader unset xwasSSL RewriteEngine On RewriteCond %{HTTP:xwasSSL} ^true$ RewriteRule ^proxy:http://(.)$ proxy:https://$1 RewriteCond %{HTTP:xwasSSL} ^false$ RewriteRule ^proxy:http://(.)$ proxy:http://$1 RewriteCond %{REQUEST_METHOD} !^(GET\|POST) RewriteRule .* - [F] </Proxy> </VirtualHost>

Page 1 of 1	All times are UTC + 2 hours [ DST ]
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/