HTTP Anti-Virus Proxy http://havp.hege.li/forum/ |
|
apache ssl + havp problem http://havp.hege.li/forum/viewtopic.php?f=4&t=540 |
Page 1 of 1 |
Author: | slkgtr [ 26 Jul 2010 09:46 ] |
Post subject: | apache ssl + havp problem |
Here is my configuration of apache server. ( Ubuntu 10.04) I pointed the SSL connection to the 8443 proxy. I read the logfile. I got this message. [Sat Jul 24 02:14:43 2010] [debug] ssl_engine_kernel.c(1938): OpenSSL: Exit: error in SSLv2/v3 read client hello A [Sat Jul 24 02:14:43 2010] [info] [client 10.103.240.21] SSL library error 1 in handshake (server school:8443) [Sat Jul 24 02:14:43 2010] [info] SSL Library Error: 336027803 error:1407609B:SSL routines:SSL23_GET_CLIENT_HELLO:https proxy request speaking HTTP to HTTPS port!? [Sat Jul 24 02:14:43 2010] [info] [client 10.103.240.21] Connection closed to child 130 with abortive shutdown (server school:8443) Include /etc/apache2/mods-enabled/*.load Include /etc/apache2/mods-enabled/*.conf serverRoot "/etc/apache2" user www-data group www-data Listen 8443 Listen 8444 Listen 8445 <VirtualHost _default_:8443> RewriteEngine on KeepAlive On <Directory /> Options ExecCGI </Directory> RewriteCond %{REQUEST_METHOD} !^(GET|POST) RewriteRule .* - [F] DocumentRoot /var/www ServerAdmin root@localhost ErrorLog /var/log/httpd/error_log TransferLog /var/log/httpd/access_log SSLEngine on SSLProtocol all -SSLv2 SSLCipherSuite ALL:!ADH:!EXPORT56:!eNULL:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW:+EXP SSLCertificateFile /etc/httpd/server.cert SSLCertificateKeyFile /etc/httpd/server.key SSLCertificateChainFile /etc/httpd/server.cert SetEnv HOME /home/nobody ProxyRemote * http://127.0.0.1:8181 ProxyPreserveHost Off RequestHeader unset xwasSSL RequestHeader set xwasSSL true Header unset Via Header unset X-Cache Header unset Vary RewriteRule ^(.*)$ http://%{HTTP_HOST}$1 </VirtualHost> <VirtualHost _default_:8444> RewriteEngine on <Directory /> Options ExecCGI </Directory> RewriteCond %{REQUEST_METHOD} !^(GET|POST) RewriteRule .* - [F] DocumentRoot /var/www ServerAdmin root@localhost ErrorLog /var/log/httpd/error_log TransferLog /var/log/httpd/access_log KeepAlive On ProxyRemote * http://127.0.0.1:8181 ProxyPreserveHost Off RequestHeader unset xwasSSL RequestHeader set xwasSSL false Header unset Via Header unset X-Cache Header unset Vary RewriteRule ^(.*)$ http://%{HTTP_HOST}$1 </VirtualHost> <VirtualHost _default_:8445> ProxyRequests on KeepAlive On SSLProxyEngine on ProxyVia block ProxyPreserveHost Off DocumentRoot /home/httpd/html ServerAdmin root@localhost ErrorLog /var/log/httpd/error_log TransferLog /var/log/httpd/access_log ProxyMaxForwards -1 SetOutputFilter INFLATE <Proxy *> RequestHeader unset Via RequestHeader unset X-Forwarded-For RequestHeader unset xwasSSL RewriteEngine On RewriteCond %{HTTP:xwasSSL} ^true$ RewriteRule ^proxy:http://(.*)$ proxy:https://$1 RewriteCond %{HTTP:xwasSSL} ^false$ RewriteRule ^proxy:http://(.*)$ proxy:http://$1 RewriteCond %{REQUEST_METHOD} !^(GET|POST) RewriteRule .* - [F] </Proxy> </VirtualHost> |
Page 1 of 1 | All times are UTC + 2 hours [ DST ] |
Powered by phpBB® Forum Software © phpBB Group https://www.phpbb.com/ |