old ssl certficate didn't go away on apache2
Posted
by
user1212143
on Server Fault
See other posts from Server Fault
or by user1212143
Published on 2012-04-04T21:33:17Z
Indexed on
2012/04/05
5:33 UTC
Read the original article
Hit count: 594
apache2
I have replaced the old ssl certficate with new one and restart apache several time but the old certificate still show on web browser and when I run a command
openssl s_client -connect 127.0.0.1:443 -showcerts
also I have delete all old certficate files. so not sure where apache still read these certficate. and not read the new one. here is my ssl.conf
Listen 0.0.0.0:443
SSLEngine on
SSLOptions +StrictRequire
<Directory />
SSLRequireSSL
</Directory>
SSLProtocol -all +TLSv1 +SSLv3
SSLCipherSuite HIGH:MEDIUM:!aNULL:+SHA1:+MD5:+HIGH:+MEDIUM
SSLMutex file:/usr/apache2/logs/ssl_mutex
SSLRandomSeed startup file:/dev/urandom 1024
SSLRandomSeed connect file:/dev/urandom 1024
SSLSessionCache shm:/usr/apache2/logs/ssl_cache_shm
SSLSessionCacheTimeout 600
SSLPassPhraseDialog builtin
SSLCertificateFile /usr/apache2/conf/ssl.crt/server.crt
SSLCertificateKeyFile /usr/apache2/conf/ssl.key/server.key
SSLVerifyClient none
SSLProxyEngine off
<IfModule mime.c>
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
</IfModule>
© Server Fault or respective owner