SSLCert Install but FF returns ssl_error_rx_record_too_long
Here are my server specs:
CentOS 5.5
Virtualmin GPL (all modules up to date)
OpenSSL
Apache2.2
Here are my steps so far:
I got a third IP from linode.
Configured it on eth0:1 moved private IP to eth0:2
Purchased 5domain UCC cert from GoDaddy.
Configured it as I've done many times before. Godaddy confirms that it's installed correctly according to their testing tool.
Configured VirtualHost as follows:
NameVirtualHost XX.XX.XX.56:443
<virtualhost xx.xx.xx.56:443="">SuexecUserGroup #501 #502
ServerName ifmasa.org
ServerAlias www.ifmasa.org
ServerAlias webmail.ifmasa.org
ServerAlias admin.ifmasa.org
DocumentRoot /home/williamswebsites.com/public_html
ErrorLog /var/log/virtualmin/ifmasa.org_error_log
CustomLog /var/log/virtualmin/ifmasa.org_access_log "combined"
ScriptAlias /cgi-bin/ /home/williamswebsites.com/domains/ifmasa.org/cgi-bin/
DirectoryIndex index.html index.htm index.php index.php4 index.php5
<directory "="" home="" williamswebsites.com="" public_html"="">Options -Indexes +IncludesNOEXEC +FollowSymLinks
allow from all
AllowOverride All</directory>
RewriteEngine on
RewriteCond %{HTTP_HOST} =webmail.ifmasa.org
RewriteRule ^(.*) https://ifmasa.org:20000/ [R]
RewriteCond %{HTTP_HOST} =admin.ifmasa.org
RewriteRule ^(.*) https://ifmasa.org:10000/ [R]
SSLEngine on
SSLCertificateFile /home/williamswebsites.com/domains/ifmasa.org/ssl.cert
SSLCertificateKeyFile /home/williamswebsites.com/domains/ifmasa.org/ssl.key
SSLCertificateChainFile /home/williamswebsites.com/domains/ifmasa.org/gd_bundle.crt
SSLCACertificateFile /home/williamswebsites.com/domains/ifmasa.org/ssl.ca</virtualhost>
Now if I go to
> Secure Connection Failed
An error occurred during a connection to
www.ifmasa.org .SSL received a record that exceeded the maximum permissible length.
(Error code: sslerrorrxrecordtoo_long)
However if I go to
Any ideas? or questions for more info?
Thanks!
8 Replies
Any more ideas?
Anyone ever seen that error message before?
Why would apache be serving that index on the 443 port? Also, what directory is it showing because there are no files there?
Is it possible that there is another conf file with VirtualHosts in it that I'm missing? If so, where should I look?
By the way, that Firefox error means that your server was trying to serve plain HTTP on port 443.
Is there anywhere else I need to configure it other than the eth0:1 file?
So yeah, fixing up your virtualhosts would absolutely have an effect. Nothing to do with your ethernet configuration.
Only by using the wildcard could I superceed the defaul server. I still am not satisfied that this is the best answer but for now it works and I need to move on to other things. I'll keep an eye here though if anyone has anymore suggestions as to the root cause. Maybe I should post my entire httpd.conf file for you guys to look through?
In any case, yes, posting your full httpd.conf would be invaluable.