Apache SSL Log Incomplete SSL Handshake

Posted by Raymond Berg on Server Fault See other posts from Server Fault or by Raymond Berg
Published on 2011-02-17T13:49:13Z Indexed on 2011/02/17 15:27 UTC
Read the original article Hit count: 501

Filed under:
|
|
|
|

Scenario: We're running some experiments in our classroom around trusted connections and SSL, and I want to demonstrate the SSL handshake request on a man-in-the-middle attack.

I have an Apache server with a self-signed cert. Everything works fine, but the logging seems incomplete as there is no way to get a list of SSL attempts. Once the client accepts the 'exception', I get normal access log messages for every request. However, I need to know what ssl request caused it to fail. Here are my log directives:

LogLevel warn ErrorLog logs/ssl_error_log CustomLog logs/ssl_access_log combined #the combined is your average custom log

My desire is a list of every SSL handshake attempted. What am I missing that could produce something like the following? (Obviously the exact words aren't needed, but in the ballpark)

0/0/0 00:00:00 - 192.168.1.10 - hijk.lmnop.edu - SSL Mismatch

© Server Fault or respective owner

Related posts about apache

Related posts about ssl