I had a webserver running with this exact same setup
recently and have moved to a new server.
I am running:
Apache/2.0.52 (FreeBSD) PHP/4.3.10 mod_ssl/2.0.52
OpenSSL/0.9.7d mod_perl/1.99_18 Perl/v5.8.5
I created a new csr on the new server and had a certificate
re-issued from my authority.
Now when I load up the https using the same configuration as
the old server.. I get 403 Forbidden in the browser.
The httpd error-log looks like this:
[Sat Jan 08 14:43:12 2005] [info] Connection to child 5
established (server www.ocsd.ca:443, client 65.92.64.70)
[Sat Jan 08 14:43:12 2005] [info] Seeding PRNG with 0 bytes
of entropy
[Sat Jan 08 14:43:12 2005] [debug]
ssl_engine_kernel.c(1771): OpenSSL: Handshake: start
[Sat Jan 08 14:43:12 2005] [debug]
ssl_engine_kernel.c(1779): OpenSSL: Loop:
before/accept initialization
[Sat Jan 08 14:43:12 2005] [debug] ssl_engine_io.c(1506):
OpenSSL: read 11/11 bytes from BIO#98d2ac0 [mem: b434000] (BIO dump foll
<!—insert about 5 dumps -->
[Sat Jan 08 14:43:12 2005] [info] Initial (No.1) HTTPS
request received for child 5 (server www.ocsd.ca:443)
[Sat Jan 08 14:43:12 2005] [error] [client 65.92.64.70]
client denied by server configuration: /home/domains/ocsd.ca/web/
I’ve looked all over and I have a feeling that the Seeding
PRNG with 0 bytes of entropy is the problem.. but I’ve done everything
with ssl.conf in apache to update with SSLRandomSeed startup
file:/dev/random 512 etc etc..
But I can’t seem to get that to change.. maybe I’m
overlooking something.
Any help would be greatly appreciated,
Thanks,
Devin
