Comments on: XAMPP: SSL Encrypt the Transmission of Passwords with https

By: Mohamed Dawaina Sulaiman

Mohamed Dawaina Sulaiman — Tue, 27 Jul 2010 12:21:56 +0000

Help how to create a simple OCSP server?

By: dcesar

dcesar — Sun, 25 Jul 2010 04:36:05 +0000

amazing, thank you a lot!!!

By: Jon

Jon — Fri, 23 Jul 2010 21:06:05 +0000

This is a really good guide, wayyyyy impressed, but i’m stuck at “Edit apache config for encryption only access” part.

What directory and file name in apache do we edit? Is it /conf/httpd.conf ?
and whats the
Alias /web_folder command do ?

By: angelo55

angelo55 — Sat, 05 Jun 2010 17:46:24 +0000

This is a very very good article!!!. Thank you.

By: tc

tc — Wed, 19 May 2010 06:34:28 +0000

##Thanks for the tut.
I think the fact that the pass phase doesnt get displayed on the cmd line should be clearly stated.

Cheers

By: tc

tc — Wed, 19 May 2010 06:33:10 +0000

Thanks for the tut.
I think the fact that the pass phase doesnt get displayed on the cmd line should be clearly stated.

Cheers

By: stiffree

stiffree — Wed, 10 Mar 2010 21:34:39 +0000

So good! Thanks alot!

By: charis

charis — Fri, 05 Mar 2010 00:29:58 +0000

thank you so much!

By: aries

aries — Mon, 08 Feb 2010 09:52:18 +0000

Hello everybody, I am setting up a development environment using XAMPP 1.7.3 on Windows 7 for my school project. I have already created a self signed CA, Server and Client certificates and installed the same to IE and Firefox. The CA and Server certificates are working fine. The problem is when I activate the client certificates:
SSLVerifyClient require
SSLVerifyDepth 2)
I get the following error messages:
Secure Connection Failed
An error occurred during a connection to www.buwbcs.com.
SSL peer was unable to negotiate an acceptable set of security parameters.
(Error code: ssl_error_handshake_failure_alert)
What is the possible reason for this error?
IE displays the list of client certificates to select from but Firefox does not.

My httpd.ssl.cnf configuration is as follows:

Listen 443

AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl

SSLPassPhraseDialog builtin
SSLSessionCache “dbm:logs/ssl.scache”
SSLSessionCacheTimeout 300
SSLMutex default

DocumentRoot “/project/htdocs”
ServerName www.buwbcs.com:443
ServerAdmin webmaster@buwbcs.com
ErrorLog “logs/error.log”

CustomLog “logs/access.log” combined

SSLEngine on
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile “conf/ssl.SERVER/bu_SERVER.crt”
SSLCertificateKeyFile “conf/ssl.SERVER/bu_SERVER.key”
SSLCertificateChainFile “conf/ssl.CA/bu_CA.crt”
SSLCACertificatePath “conf/ssl.CA”
SSLCACertificateFile “conf/ssl.CA/bu_CA.crt”

SSLVerifyClient require
SSLVerifyDepth 2

SSLOptions +StdEnvVars

BrowserMatch “.*MSIE.*” nokeepalive ssl-unclean-shutdown downgrade-1.0 force-response-1.0
CustomLog “logs/ssl_request.log” “%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \”%r\” %b”

Any help in analyzing these and ideas to solve this problem will be highly appreciated.

Thank you in advance.

Aries

By: Roberto Rdguez Glez

Roberto Rdguez Glez — Wed, 03 Feb 2010 14:41:36 +0000

Hola, la verdad es que este artículo es una maravilla. Gracias por todo, hace mucho tiempo buscaba algo parecido y me ha funcionado a la perfección pero tengo un problema.
Cuando hago todos los pasos el servidor general un Certificado SSL para un sitio, quisiera generar uno para cada sitio.
Si me pueden ayudar se lo agradecería.
Saludos