John Doroshenko wrote: |
[...] The elog server is running SL5.5 (updates applied). As you suggested, I ran firefox 3.6.26 on the elog server via https://localhost:port and it worked fine. Downloaded firefox 10.0.1 and retried
on elog server and get error again: The connection was Reset; The connection to the server was reset while the page was loading.
-John
|
Finally I was able to reproduce the problem. I don't know why FF10 worked locally on the ELOG host last weekend, maybe I shouldn't have worked on it during a night shift. I can now confirm that ELOG has problems with firefox 10.0.1.
For those who need a quick workaround: you can set-up apache to access elog via a reverse proxy (like I do and like Stefan does for the ELOG forum does). That 'll work fine with new browsers like FF10.0.1 (at least for apache 2.2) ;-)
Some guidance how to set it up can be found here: https://midas.psi.ch/elogs/Contributions/11
A shorter (but may be incomplete) summary:
- add in httpd.conf
- Listen 443
LoadModule proxy_module modules/mod_proxy.so
- ServerName <fully-qualified-host-name>
-
- add in ssl.conf
- <VirtualHost _default_:443>
ErrorLog logs/ssl_error_log
TransferLog logs/ssl_access_log
LogLevel warn
SSLEngine on
SSLProxyEngine on
ProxyPreserveHost On
<Location />
ProxyPass https://<fully-qualified-host-name>:444/
ProxyPassReverse https://<fully-qualified-host-name>:444/
SSLRequireSSL
</Location>
SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW
SSLProxyCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile "<cert-file>"
SSLCertificateKeyFile "<cert-key-file>"
</VirtualHost>
- And in the ELOG configuration [global] section
- port = 444
- URL = https://<fully-qualified-host-name>
Cheers
Andreas
⇄
Detect language » English
|