Following is the ssl server configuration.
At first I used AJP.
But after I could not find a corresponding directive to
proxy_ssl_session_reuse, I changed to proxy.
Does [OpenSSL 0.9.8e-fips-rhel5 01 Jul 2008] have any problem with
nginx-0.8.54?
There have been a couple of OpenSSL-related bugfixes since,
so try upgrading both OpenSSL and nginx first. You should
definitely upgrade OpenSSL because the version you’re using
has a serious vulnerability:
Here’s the error log:
2012/02/08 15:03:49 [info] 13273#0: *1 SSL_do_handshake() failed (SSL:
error:14094416:SSL routines:SSL3_READ_BYTES:sslv3 alert certificate
unknown) while SSL handshaking,
You’re probably using a self-signed certificate?
First sync the time on all the servers and clients
using NTP, then try using different browsers
(other than Firefox and IE) and curl.
If the problem persists, sync the time on the
server again and regenerate the certificate.
If that doesn’t help, post your complete nginx.conf,
the output of “nginx -V” and “uname -a”, and the
the version of OpenSSL on the server where you
compiled nginx.
Max
This forum is not affiliated to the Ruby language, Ruby on Rails framework, nor any Ruby applications discussed here.