mod_gnutls incorrect cert issued by server

Nikos Mavrogiannopoulos nmav at gnutls.org
Mon Oct 25 13:09:15 CEST 2010


On Mon, Oct 25, 2010 at 9:22 AM, Wayne Connolly
<wayne.connolly at measanctum.com> wrote:

> I just tried out mod-gnutls in apache 2.2.12 ubuntu 9.10 because mod-ssl is
> not a option (no TLS compiled into our version and no way to get it...)
> All went perfect with the exception that one of the https sites always shows
> up the wrong cert.
> Each 443 vhost is in its very own vhost file because having 'ServerAlias' in
> the 443 section failed to recognise the ServerAlias correctly. This is good
> practice anyway.
[...]
> Before you ask - all cert/docroots/domains have been triple checked by
> others and are correct. Why would the order change do this? Any tips?

I suppose you use the latest mod_gnutls. Could you try enabling
debugging in mod_gnutls? (modify mod_gnutls.h to have MOD_GNUTLS_DEBUG
to 1 before compilation). The output will be placed in your /tmp.

regards,
Nikos




More information about the Gnutls-devel mailing list