I've got some strange issues on a server of mine here at work. I'd like some opinions if possible. Or does this belong in networking?
I've got a apache2 server running (in our DMZ, it is NATed to the outside) as a reverse proxy to a tomcat 5 app server inside our network.
I've got a verisign cert on the apache 2 box installed, and it sorta works, but it claims that it mismatches:
IE on my windows box says that it:
(green check)"The security certificate is from a trusted certifying authority"
(yellow !) The security certificate has expired or is not yet valid
(green check) The security certificate has a valid name matching the name of the page you are trying to view.
Proceed: Yes/No/View Cert
Firefox 1.0.2 on my windows box accepts it and doesn't prompt. (I don't recall ever accepting the cert or installing it.) It is not in the listing of certs I've accepted.
Firefox 1.0.1 on my linux box says:
Unable to verify the identity of xxx as a trusted site
Possible reasons for this error:
Your browser does not recognize the Certificate authority that issued the site's certificate (WTF its Verisign!!!???)
The site's certificate is incomplete due to a server misconfiguration (quite possible, I'm somewhat new to this)
You are connected to a site pretending to be xxx, possibly to obtain your confidental information.
Accept Permanently
Accept temporarily for this session
Do not accept this cert. and do not connect
This is all just trying to view the default apache/redhat page with https://
Any hints on apache configuration?
I've got a apache2 server running (in our DMZ, it is NATed to the outside) as a reverse proxy to a tomcat 5 app server inside our network.
I've got a verisign cert on the apache 2 box installed, and it sorta works, but it claims that it mismatches:
IE on my windows box says that it:
(green check)"The security certificate is from a trusted certifying authority"
(yellow !) The security certificate has expired or is not yet valid
(green check) The security certificate has a valid name matching the name of the page you are trying to view.
Proceed: Yes/No/View Cert
Firefox 1.0.2 on my windows box accepts it and doesn't prompt. (I don't recall ever accepting the cert or installing it.) It is not in the listing of certs I've accepted.
Firefox 1.0.1 on my linux box says:
Unable to verify the identity of xxx as a trusted site
Possible reasons for this error:
Your browser does not recognize the Certificate authority that issued the site's certificate (WTF its Verisign!!!???)
The site's certificate is incomplete due to a server misconfiguration (quite possible, I'm somewhat new to this)
You are connected to a site pretending to be xxx, possibly to obtain your confidental information.
Accept Permanently
Accept temporarily for this session
Do not accept this cert. and do not connect
This is all just trying to view the default apache/redhat page with https://
Any hints on apache configuration?