Error connecting Apache, with Apache "SSLVerifyClient require"

VERIFIED DUPLICATE of bug 112870

Status

Core Graveyard
Security: UI
P3
normal
VERIFIED DUPLICATE of bug 112870
16 years ago
2 years ago

People

(Reporter: Segura M., Assigned: Stephane Saux)

Tracking

1.0 Branch
x86
Windows NT

Firefox Tracking Flags

(Not tracked)

Details

(Reporter)

Description

16 years ago
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (Windows; U; WinNT4.0; en-US; rv:0.9.9+) Gecko/20020402
BuildID:    2002040203

If the Web server (Apache) is configured to require
a client certificate, when the browser connects to
Apache, Mozilla open an "Alert" window:
<site www.xxx.yyy> has received an incorrect or un expected message
Error Code: -12227

Reproducible: Always
Steps to Reproduce:
1.Configure you Apache Web server (version 1.3.23), with mod_ssl
2.Configure it with "SSLVerifyClient require" to ask a certificate to
Mozilla
3.Try to connect with Mozilla to your web page with ssl: https://www.xxx...
4. Mozilla is configured, about certificates: "Ask Every Time"

Actual Results:  Mozilla open an "Alert" window:
<site www.xxx.yyy> has received an incorrect or un expected message
Error Code: -12227

Expected Results:  Mozilla should open a window asking what client certificate
to send
to the web server.

It works on IE5.5
-> PSM
Assignee: Matti → ssaux
Component: Browser-General → Client Library
Product: Browser → PSM
QA Contact: imajes-qa → junruh
Version: other → unspecified

Comment 2

16 years ago
The actual message is "SSL peer was unable to negotiate an acceptable set of
security parameters." 
Reporter, make sure that you have the proper SSL ciphers on -
Edit>Prefs>Privacy>SSL.
If that does not work, you may have a corrupted cert DB. If so, please create a
new profile, import your certificate, and try client authorization again.
Priority: -- → P3
Version: unspecified → 2.3
(Reporter)

Comment 3

16 years ago
Of course, SSL is enabled, but I have not a certificate.
It is normal that is does not work, but what is not normal,
is that the message is not clear.
IE 5 opens a window asking what certificate to send.

Comment 4

16 years ago
Although you've not provided a server so that others could test this, your bug
makes sense to me.

Confirming it.
Status: UNCONFIRMED → NEW
Ever confirmed: true

Comment 5

16 years ago
I think this is a duplicated.


*** This bug has been marked as a duplicate of 112870 ***
Status: NEW → RESOLVED
Last Resolved: 16 years ago
Resolution: --- → DUPLICATE

Comment 6

16 years ago
verified.
Status: RESOLVED → VERIFIED

Updated

14 years ago
Component: Security: UI → Security: UI
Product: PSM → Core

Updated

10 years ago
Version: psm2.3 → 1.0 Branch
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.