cacert-sysadm AT lists.cacert.org
Subject: CAcert System Admins discussion list
List archive
- From: Bernhard Fröhlich EDU <education AT cacert.org>
- To: Daniel Black <daniel AT cacert.org>
- Cc: cacert-sysadm AT lists.cacert.org
- Subject: Re: https unintuitave client side error messages
- Date: Mon, 27 Apr 2009 23:37:16 +0200
- Authentication-results: lists.cacert.org; dkim=neutral header.i= AT cacert.org; dkim-asp=none
Daniel Black schrieb:
Bernhard,Have the problems reported by Wytze been verified or solved? Currently I don't have much time for tests and I'd hate to do a hasty job here, resulting in even more work for support...
There's been two support requests to the public support list in a week. Can this change be made to reduce support effort?
https://lists.cacert.org/wws/arc/cacert-support/2009-04/msg00171.html
https://lists.cacert.org/wws/arc/cacert-support/2009-04/msg00096.html
Ted
Ok,
I've tested it properly. The following directives are needed after enabling
mod_rewrite.
RewriteEngine on
RewriteCond %{SSL:SSL_CLIENT_VERIFY} !=SUCCESS
RewriteRule .? - [F]
ErrorDocument 403 "You need a client side certificate to access this site"
Then change 'SSLVerifyClient" to "optional'
I suggest this be used for https://cats.cacert.org and
https://secure.cacert.org.
Test here if you want https://community.cacert.org/test/
Daniel Black
--
Email/List Administrator
CAcert
Attachment:
smime.p7s
Description: S/MIME Cryptographic Signature
- https unintuitave client side error messages, Daniel Black, 04/15/2009
- Re: https unintuitave client side error messages, Daniel Black, 04/19/2009
- Re: https unintuitave client side error messages, Wytze van der Raay, 04/22/2009
- Re: https unintuitave client side error messages, Daniel Black, 04/23/2009
- Message not available
- Re: https unintuitave client side error messages, Bernhard Fröhlich EDU, 04/27/2009
- Re: https unintuitave client side error messages, Wytze van der Raay, 04/22/2009
- Re: https unintuitave client side error messages, Daniel Black, 04/19/2009
Archive powered by MHonArc 2.6.16.