Forum OpenACS Q&A: Re: nsopenssl error EOF during ssl handshake

Collapse
7: Re: nsopenssl error EOF during ssl handshake (response to 1)
Posted by Amol Takate on 02/17/03 02:29 PM
Hey ,

  Finally problem solved...

  I restricted ssl only to sslv2

  Thank You very much Richard and Bernd..

  Finlly my config file looks like as below:....

ns_section ns/server/iunctura1/module/nsssl
ns_param ServerPort                      443
ns_param Hostname                        www.xyz.com
ns_param ServerHostname                  www.xyz.com
ns_param ServerAddress                  216.234.242.92
ns_param ServerCertFile              /usr/local/aolserver/servers/virserver/modules/ns
openssl/certificate.pem
ns_param ServerKeyFile                /usr/local/aolserver/servers/virserver/modules/ns
openssl/key.pem
ns_param ServerProtocols                "SSLv2"
ns_param ServerCipherSuite              "SSLv2:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+L
OW:+SSLv2:+EXP"
ns_param ServerSessionCache              true
ns_param ServerSessionCacheID            1
ns_param ServerSessionCacheSize          512
ns_param SockServerPeerVerify            false
ns_param SockServerTrace                true
ns_param SockServerProtocols            "SSLv2"
ns_param SockServerCipherSuite          "SSLv2:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+L
OW:+SSLv2:+EXP"
ns_param ServerSessionCacheTimeout      300
ns_param ServerPeerVerify                false
ns_param ServerPeerVerifyDepth          3
ns_param ServerCADir                    ca
ns_param ServerCAFile                    ca.pem
ns_param ServerTrace                    true
ns_param SockClientCertFile          /usr/local/aolserver/servers/virserver/modules/ns
openssl/certificate.pem
ns_param SockClientKeyFile            /usr/local/aolserver/servers/virserver/modules/nsopenssl/key.pem
ns_param SockClientProtocols            "SSLv2"
ns_param SockClientCipherSuite          "SSLv2:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP"
ns_param SockClientSessionCache          true
ns_param SockClientSessionCacheID        3
ns_param SockClientSessionCacheSize      512
ns_param SockClientSessionCacheTimeout  300
ns_param SockClientPeerVerify            false
ns_param SockServerPeerVerifyDepth      3
ns_param SockClientCADir                ca
ns_param SockClientCAFile                ca.pem
ns_param SockClientTrace                true
ns_param ModuleDir                      /usr/local/aolserver/servers/virserver/modules/nsopenssl

ns_section ns/server/virserver/modules
ns_param nsperm nsperm.so
ns_param nssock nssock.so
ns_param nslog nslog.so
ns_param nssha1 nssha1.so
ns_param nscache nscache.so
ns_param verisign verisign.so
ns_param nsssl nsopenssl.so

/Amol