I am integrating osCommerce into my existing (brochure-type) website and need help configuring SSL with apache2.
I just loaded my CA issued ssl.csr and ssl.key files into their respective directories. I was hoping not to use the VirtualHost protocol, but would like to have my basic web content served through http/port 80 and my osCommerce pages through https/port 443 using the same Apache instance.
Here is some output which may be useful:
tall:/var/log/apache2 # service apache2 restart
Syntax OK
Shutting down httpd2 (waiting for all children to terminate) done
Starting httpd2 (prefork) done
tall:/var/log/apache2 # tail -n 2 error_log
[Sat Aug 29 16:22:44 2009] [notice] caught SIGTERM, shutting down
[Sat Aug 29 16:22:45 2009] [notice] Apache/2.2.10 (Linux/SUSE) mod_ssl/2.2.10 OpenSSL/0.9.8h PHP/5.2.9 with Suhosin-Patch configured – resuming normal operations
tall:/var/log/apache2 #
I can navigate to my home page from outside my network using a web client (i.e. with Konqueror-- <!–http://menardsystems.com:80–> or <!–http://menardsystems.com:443–>, and get no indication of SSL being enabled. When I try <!–https://menardsystems.com–>, I get the following browser client message:
Secure Connection Failed
An error occurred during a connection to menardsystems.com.
SSL received a record that exceeded the maximum permissible length.
(Error code: ssl_error_rx_record_too_long)
The page you are trying to view can not be shown because the authenticity of the received data could not be verified.
* Please contact the web site owners to inform them of this problem.
The key I generated and submitted to the CA was a 2048-bit RSA private key. Any suggestions before I call the CA?