cacert-sysadm AT lists.cacert.org
Subject: CAcert System Admins discussion list
List archive
- From: Daniel Black <daniel AT cacert.org>
- To: cacert-sysadm AT lists.cacert.org
- Subject: https unintuitave client side error messages
- Date: Wed, 15 Apr 2009 18:50:59 +1000
- Authentication-results: lists.cacert.org; dkim=neutral header.i= AT cacert.org; dkim-asp=none
- Organization: CAcert
I've seen a few (there's probably lots), of people asking for support with
https://cats.cacert.org and https://secure.cacert.org when they don't have a
client side certificate. Rather that rely on the client side error message
'ssl_error_handshake_failure_alert' (firefox), is there a neat way to
configure
apache to display a more helpful error page?
I image this would require a 'SSLVerifyClient optional'
maybe:
RewriteEngine on
RewriteCond %{SSL_CLIENT_VERIFY} != SUCCESS
RewriteRule . - F
And make a 403 error page that contains a helpful message.
Any suggestions/improvements ( or testing ) welcome.
Daniel Black
--
Email/List Administrator
CAcert
- https unintuitave client side error messages, Daniel Black, 04/15/2009
- Re: https unintuitave client side error messages, Daniel Black, 04/19/2009
- Re: https unintuitave client side error messages, Wytze van der Raay, 04/22/2009
- Re: https unintuitave client side error messages, Daniel Black, 04/23/2009
- Message not available
- Re: https unintuitave client side error messages, Bernhard Fröhlich EDU, 04/27/2009
- Re: https unintuitave client side error messages, Wytze van der Raay, 04/22/2009
- Re: https unintuitave client side error messages, Daniel Black, 04/19/2009
Archive powered by MHonArc 2.6.16.