ssl/tls https with red cross

tariq wali ganaiwali at gmail.com
Fri Jun 1 14:17:17 UTC 2012 

can anyone please tell why this error on my nginx instance with ssl/tls

 2012/06/01 10:06:12 [emerg] 20286#0:
SSL_CTX_use_PrivateKey_file("/usr/local/nginx/conf/login.jobsgulf.com.key")
failed (SSL: error:0906406D:PEM routines:PEM_def_callback:problems getting
password error:0906A068:PEM routines:PEM_do_header:bad password read
error:140B0009:SSL routines:SSL_CTX_use_PrivateKey_file:PEM lib)

2012/06/01 10:06:20 [emerg] 866#0:
SSL_CTX_use_PrivateKey_file("/usr/local/nginx/conf/login.jobsgulf.com.key")
failed (SSL: error:06065064:digital envelope
routines:EVP_DecryptFinal_ex:bad decrypt error:0906A065:PEM
routines:PEM_do_header:bad decrypt error:140B0009:SSL
routines:SSL_CTX_use_PrivateKey_file:PEM lib)




On Wed, May 30, 2012 at 3:44 PM, tariq wali <ganaiwali at gmail.com> wrote:

> Hi,
>
> Looking to get some help from the group .
>
> We are running nginx/0.7.62 and notice that https with red-cross (either
> the connection is not encrypted or the page has some non https content and
> in my case it is no encrypted connection ) this is how thw config looks
>
>
>  server {
>         listen       443;
>         server_name  login.jobsgulf.com;
>         access_log on;
>         ssl on;
>         ssl_certificate login.jobsgulf.com.crt;
>         ssl_certificate_key login.jobsgulf.com.key;
>         ssl_protocols        SSLv3 TLSv1 ;
> #        ssl_ciphers          HIGH:!aNULL:!MD5;
>         ssl_ciphers
>  ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP;
>         keepalive_timeout    60;
>        ssl_session_cache    shared:SSL:10m;
>        ssl_session_timeout  10m;
>
> I want to know if we really have to explicitly specify ssl_protocols and
> ssl_ciphers in the config in order to be fully https for the said directive
> ??
>
> Also does it make sense to enable ssl/tls support on apache also ? in my
> case i have nginx in front of the apache .
>
>
>
>
> --
> *Tariq Wali.*
>
>


-- 
*Tariq Wali.*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20120601/2ca29c7a/attachment.html>

More information about the nginx mailing list