isyhuang Posted December 19, 2002 Share Posted December 19, 2002 Hi all, I just installed osc2.2-12-18-2002 version, I am using Redhat 8.0, I use Redhat build-in apache2.2-php4.2.2-modssl..., I use the default SSL Certificate which is for "localhost.localdomain". I got an error message " message authentication code error" when I tried to use SSL. Anyone has this problem? my website is http://www.worlink.com/catalog/default.php Anyone has any comment on this? Is it because of the SSL Cert? Your help will be greatly appreciated! -isyhuang :shock: Link to comment Share on other sites More sharing options...
Guest Posted December 19, 2002 Share Posted December 19, 2002 Anyone has any comment on this? Is it because of the SSL Cert? Took a look at your "cert"...yeah I'd say it was the certificate.....there is absolutely NO real information. I'd be talking to my host about that big time. Link to comment Share on other sites More sharing options...
dreamscape Posted December 19, 2002 Share Posted December 19, 2002 is this your server?? is it a virtual server?? how much access do you have to this server?? I think that SSL cert isn't really meant to be used... it is more for testing is my guess... if you can, generate a new Private Key and CRS with your info and domain and goto freessl.com and order a new SSL cert from them (it is free)... The only thing necessary for evil to flourish is for good men to do nothing - Edmund Burke Link to comment Share on other sites More sharing options...
isyhuang Posted December 20, 2002 Author Share Posted December 20, 2002 Hi all, It is my own server. I just got a new FreeSSL Cert ( I choose the "server type" as " Apache Mod SSL", since I have " LoadModule ssl_module modules/mod_ssl.so " in my configuration file ).. The Cert is for " www.worlink.com" which is exactly my domain. I still have problem when I try to check out. To try it, just go to: www.worlink.com/catalog/default.php and pick a product, add in Cart, then check out. In IE, the SSL was not working, in mozilla browser, I got " Mozilla received a message with incorrect authentication code."", the result is corrupted. but if I try the simple case like: https://www.worlink.com , it works. So, I am thinking it might be the problem in my server ( redhat 8.0 build in apache 2.0.4 + Mod SSL + php 4.2.2 + ...) or something wrong ( uncompatible) with the osc scripts ? Any comments or suggestions?? Your help will be greatly appreciated. -isyhuang :roll: Link to comment Share on other sites More sharing options...
isyhuang Posted December 20, 2002 Author Share Posted December 20, 2002 BTW, it is not a virtual server. Thanks. -isyhuang :? Link to comment Share on other sites More sharing options...
dreamscape Posted December 20, 2002 Share Posted December 20, 2002 hmm... #1 did you generate an RSA key and CSR according to the instructions here?: http://www.freessl.com/csr/apache_mod_ssl.htm #2 did you install the SSL cert according to the instructions here; the cert file containing the cert freessl emailed you and the keyfile containing the key you generated earlier to get the CSR to generate a SSL cert?: http://www.freessl.com/install/apache_modl...dls_install.htm #3 the SSLCACertificateFile is not needed, and I had to not use it to get it work correctly with my site (virtual server)... it might be needed for some web servers... it is here though if you haven't tried using it: http://www.freessl.com/cps/FreeSSLCA.cer OK... I went there and it seems to be protected... no gold lock shows because the images are http:// and not https://... normally a warning comes up when this happens, but I dunno why it is not... but if you click file, properties it shows "Connection: SSL 3.0, RC4 with 128 bit encryption (High); RSA with 1024 bit exchange" and you can click on certificate to view it... on mine OSC automatically points the images to the https:// when using SSL... dunno why it isn't on yours The only thing necessary for evil to flourish is for good men to do nothing - Edmund Burke Link to comment Share on other sites More sharing options...
dreamscape Posted December 20, 2002 Share Posted December 20, 2002 on closer look, you base href tag points to http://www.worlink.com/catalog/ and should be https://www.worlink.com/catalog/ for the pages using SSL... in all of my main PHP files (default.php, login.php, etc, ... [just inside /catalog/]), the base href code looks like this: <base href="<?php echo (getenv('HTTPS') == 'on' ? HTTPS_SERVER : HTTP_SERVER) . DIR_WS_CATALOG; ?>"> so that if https is on, the base href is also https... yours should look similar I would think. The only thing necessary for evil to flourish is for good men to do nothing - Edmund Burke Link to comment Share on other sites More sharing options...
isyhuang Posted December 21, 2002 Author Share Posted December 21, 2002 Hi dreamscape, Hi all: I Fixed it ! It is the problem of my server integration ( Redhat 8.0 build-in apach + php + mod_ssl), I built a new apache with php and ssl by using apachetoolbox.com version 1.5.63, and it WORKs. The working version apache is 1.3.27 and PHP 4.2.3. It might be some compatible problem in Redhat 8.0 build-in apache 2.0.4 ahd PHP 4.2.2. Anyway, I hope this may help someone. Cheers. Have a great Christmas! -isyhuang :lol: Link to comment Share on other sites More sharing options...
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.