ПРОЕКТЫ 


  АРХИВ 


Apache-Talk @lexa.ru 

Inet-Admins @info.east.ru 

Filmscanners @halftone.co.uk 

Security-alerts @yandex-team.ru 

nginx-ru @sysoev.ru 


  СТАТЬИ 


  ПЕРСОНАЛЬНОЕ 


  ПРОГРАММЫ 



ПИШИТЕ
ПИСЬМА












     АРХИВ :: nginx-ru
Nginx-ru mailing list archive (nginx-ru@sysoev.ru)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: nginx + ssl + IE8


  • To: nginx-ru@xxxxxxxxx
  • Subject: Re: nginx + ssl + IE8
  • From: Konstantin Svist <fry.kun@xxxxxxxxx>
  • Date: Mon, 17 May 2010 13:25:08 -0700
  • Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=PYkHPmnH2lX8rB40C8ALjmlc/cPx0pPAAkSCwSWQr7w=; b=SVlyfvSttRUNCXtxw1TZNGLcTx6ySoAqYRh23JssbftQnqARm43HpnSxEo0NZp8nTM e1fddz/75GYo5tfC5Pgh4qWrS8WUa/fDKsmndTthSvk3QHV0XhzjI2fE0eIm+iHMgscq tVpXLzsSvnqUF3LvabDrID0VSfqB0BT49wFE8=
  • Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=ZSjcCwcLG3sa7ozpJgsbBFBzl6nC6RAheLydf5LExb92j0mPpDmq7Fr46ZceWgt12l vVk+QxjUXSwQvLPR7SE464dITSFHhiWuEloFqUaTvVcHTmw6kiADPS8uVYW9P3tcxm1T IprsIwZxAokRdSi3ba3XddR4gAMkqtI90iAl8=
  • In-reply-to: <AANLkTikxvkGjkYFl-okgJWNDoydGnlDIjW0x9XStHpTY@xxxxxxxxxxxxxx>
  • References: <AANLkTikxvkGjkYFl-okgJWNDoydGnlDIjW0x9XStHpTY@xxxxxxxxxxxxxx>

On 05/17/2010 12:56 PM, Sergey Arlashin wrote:
>         ssl                       on;
>         ssl_protocols             SSLv3 TLSv1;
>         ssl_ciphers              
> AES128-SHA:AES256-SHA:RC4-SHA:DES-CBC3-SHA:RC4-MD5;
>         ssl_verify_client         optional;
>         ssl_certificate           /etc/apache2/ssl/server.crt;
>         ssl_certificate_key       /etc/apache2/ssl/server.key;
>         ssl_client_certificate    /etc/apache2/ssl/ca.crt;
>         ssl_session_cache         shared:SSL:10m;
>         ssl_verify_depth          1;
>         ssl_session_timeout       10m;
>
> В чем может быть проблема?
>



ssl_client_certificate    /etc/apache2/ssl/ca.crt;

Кажется перепутан CA с клиентом. Certificate Authority - это тот кому
клиент (browser) уже доверяет.


_______________________________________________
nginx-ru mailing list
nginx-ru@xxxxxxxxx
http://nginx.org/mailman/listinfo/nginx-ru


 




Copyright © Lexa Software, 1996-2009.