|
|
|
|
АРХИВ :: nginx-ru
|
Nginx-ru mailing list archive (nginx-ru@sysoev.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: nginx + ssl + IE8
- To: nginx-ru@xxxxxxxxx
- Subject: Re: nginx + ssl + IE8
- From: Konstantin Svist <fry.kun@xxxxxxxxx>
- Date: Mon, 17 May 2010 13:25:08 -0700
- Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from :user-agent:mime-version:to:subject:references:in-reply-to :content-type:content-transfer-encoding; bh=PYkHPmnH2lX8rB40C8ALjmlc/cPx0pPAAkSCwSWQr7w=; b=SVlyfvSttRUNCXtxw1TZNGLcTx6ySoAqYRh23JssbftQnqARm43HpnSxEo0NZp8nTM e1fddz/75GYo5tfC5Pgh4qWrS8WUa/fDKsmndTthSvk3QHV0XhzjI2fE0eIm+iHMgscq tVpXLzsSvnqUF3LvabDrID0VSfqB0BT49wFE8=
- Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; b=ZSjcCwcLG3sa7ozpJgsbBFBzl6nC6RAheLydf5LExb92j0mPpDmq7Fr46ZceWgt12l vVk+QxjUXSwQvLPR7SE464dITSFHhiWuEloFqUaTvVcHTmw6kiADPS8uVYW9P3tcxm1T IprsIwZxAokRdSi3ba3XddR4gAMkqtI90iAl8=
- In-reply-to: <AANLkTikxvkGjkYFl-okgJWNDoydGnlDIjW0x9XStHpTY@xxxxxxxxxxxxxx>
- References: <AANLkTikxvkGjkYFl-okgJWNDoydGnlDIjW0x9XStHpTY@xxxxxxxxxxxxxx>
On 05/17/2010 12:56 PM, Sergey Arlashin wrote:
> ssl on;
> ssl_protocols SSLv3 TLSv1;
> ssl_ciphers
> AES128-SHA:AES256-SHA:RC4-SHA:DES-CBC3-SHA:RC4-MD5;
> ssl_verify_client optional;
> ssl_certificate /etc/apache2/ssl/server.crt;
> ssl_certificate_key /etc/apache2/ssl/server.key;
> ssl_client_certificate /etc/apache2/ssl/ca.crt;
> ssl_session_cache shared:SSL:10m;
> ssl_verify_depth 1;
> ssl_session_timeout 10m;
>
> В чем может быть проблема?
>
ssl_client_certificate /etc/apache2/ssl/ca.crt;
Кажется перепутан CA с клиентом. Certificate Authority - это тот кому
клиент (browser) уже доверяет.
_______________________________________________
nginx-ru mailing list
nginx-ru@xxxxxxxxx
http://nginx.org/mailman/listinfo/nginx-ru
|
|
|