|
Home > Archive > Apache Server configuration support > July 2006 > Internet Explorer not encrypting session
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Internet Explorer not encrypting session
|
|
| J.R0wan 2006-07-18, 1:32 pm |
| I manage a web site for a tool wholesaler. Customers select their
products from the site depositing them in a shopping cart. When they
are ready to check out the script calls
https://cgi.domainname.com/checkout.pl target="new". Some times
Internet Explorer launches a window with padlock in the bottom right,
some times it does not. Mozilla seems to launch the window with padlock
all the time.
The excerpt from the ssl_engine_log below shows the failed session with
IE and a subsequent successful session using Mozilla. Both were from
the same XP Pro PC. Domain names and IP addresses removed. Any
suggestions as to how I get Internet Explorer to run securely (stop
laughing).
Unfortunately I just noticed this server is still running Apache 1.3.27.
It is an old Red Hat 7.x server scheduled to be upgraded.
[18/Jul/2006 09:17:00 29434] [info] Connection: Client IP: IP address
removed, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits)
[18/Jul/2006 09:17:00 29434] [info] Initial (No.1) HTTPS request
received for child 8 (server www.domainname.com:443)
[18/Jul/2006 09:17:00 29434] [info] Connection to child 8 closed with
unclean shutdown (server www.domainname.com:443, client IP address removed)
[18/Jul/2006 09:17:00 29881] [info] Connection: Client IP: IP address
removed, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits)
[18/Jul/2006 09:17:00 29881] [info] Initial (No.1) HTTPS request
received for child 9 (server www.domainname.com:443)
[18/Jul/2006 09:17:00 29881] [info] Connection to child 9 closed with
unclean shutdown (server www.domainname.com:443, client IP address removed)
[18/Jul/2006 09:19:57 29302] [info] Connection to child 5 established
(server www.domainname.com:443, client IP address removed)
[18/Jul/2006 09:19:57 29302] [info] Seeding PRNG with 1160 bytes of entropy
[18/Jul/2006 09:20:03 29302] [info] Connection: Client IP: IP address
removed, Protocol: TLSv1, Cipher: RC4-MD5 (128/128 bits)
[18/Jul/2006 09:20:03 29302] [info] Initial (No.1) HTTPS request
received for child 5 (server www.domainname.com:443)
[18/Jul/2006 09:20:05 29302] [info] Subsequent (No.2) HTTPS request
received for child 5 (server www.domainname.com:443)
[18/Jul/2006 09:20:05 29304] [info] Connection to child 7 established
(server www.domainname.com:443, client IP address removed)
[18/Jul/2006 09:20:05 29304] [info] Seeding PRNG with 1160 bytes of entropy
[18/Jul/2006 09:20:05 29304] [info] Connection: Client IP: IP address
removed, Protocol: TLSv1, Cipher: RC4-MD5 (128/128 bits)
[18/Jul/2006 09:20:05 29304] [info] Initial (No.1) HTTPS request
received for child 7 (server www.domainname.com:443)
[18/Jul/2006 09:20:06 29302] [info] Subsequent (No.3) HTTPS request
received for child 5 (server www.domainname.com:443)
[18/Jul/2006 09:20:07 29304] [info] Subsequent (No.2) HTTPS request
received for child 7 (server www.domainname.com:443)
[18/Jul/2006 09:20:09 29302] [info] Subsequent (No.4) HTTPS request
received for child 5 (server www.domainname.com:443)
[18/Jul/2006 09:20:25 29304] [info] Connection to child 7 closed with
standard shutdown (server www.domainname.com:443, client IP address removed)
[18/Jul/2006 09:20:26 29302] [info] Connection to child 5 closed with
standard shutdown (server www.domainname.com:443, client IP address removed)
| |
| Sebastian Axmann 2006-07-18, 7:26 pm |
| You can try something like this:
[From :http://www.apache-ssl.org/docs.html#SSLRequireSSL ]
<Directory [your-directory]>
SSLRequireSSL
</Directory>
if needed in a .htaccess file.
This forces the Internet-Explorer to load with SSL-Encryption.I don't know
exactly what error shows up,but i guess that it is something like 403 or
so.
Greets,
Sebastian
|
|
|
|
|