[squid-users] ssl_crtd breaks after short time

Klavs Klavsen kl at vsen.dk
Tue Jun 2 14:46:31 UTC 2015


Amos Jeffries wrote on 06/02/2015 04:10 PM:
> On 3/06/2015 1:45 a.m., Klavs Klavsen wrote:
>> Thank you Amos.
>>
>> I'll build 3.5.5 then..
>>
>> any config changes I need to be aware of?
>
> --with-openssl instead of --enable-ssl is the only one that comes to
> mind right now. The release notes for 3.4 and 3.5 have the lists.
>

I borrowed the spec from fedora 23.. :)

After installing 3.5.5 instead - it now complains when trying to issue 
certificate :(

squid cache log says:
Error negotiating SSL connection on FD 10: error:14094412:SSL 
routines:SSL3_READ_BYTES:sslv3 alert bad certificate

client gets:
curl: (51) SSL: certificate subject name '64.233.184.103' does not match 
target host name 'www.google.com'

any hints for tests I can do, to figure out the problem would be very 
much appreciated :)
-- 
Regards,
Klavs Klavsen, GSEC - kl at vsen.dk - http://www.vsen.dk - Tlf. 61281200

"Those who do not understand Unix are condemned to reinvent it, poorly."
   --Henry Spencer



More information about the squid-users mailing list