[CentOS] httpd ssl problems

Tue Jul 9 20:56:02 UTC 2013
Nemrow, Jason <Jason.Nemrow at enmu.edu>

Not much of a noob, but I will try.

I just configured httpd and installed mod_ssl and got my certificate from GoDaddy and put them on the server with ssl.conf pointing at them.  I am getting this error:

SSLCertificateFile: file '/etc/pki/tls/certs/enmu.edu.crt' does not exist or is empty

It's a cute error. I have checked several times for misspellings, looked at the enmu.edu.crt file (looks like a cert to me) and I can certify that it is not empty and it most certainly exists. Want some proof? Here...

[root at itsnv607 ~]# ls -l /etc/pki/tls/certs
total 1224
-rw-r--r--. 1 root   root   571450 Apr  7  2010 ca-bundle.crt
-rw-r--r--. 1 root   root   651083 Apr  7  2010 ca-bundle.trust.crt
-rw-r--r--. 1 apache apache   1874 Jul  9 11:54 enmu.edu.crt
-rwxr-xr-x. 1 root   root     3197 Jul  9 11:54 gd_bundle.crt
-rw-------. 1 root   root     1164 Jul  8 14:33 localhost.crt
-rwxr-xr-x. 1 root   root      610 Feb 21 16:45 make-dummy-cert
-rw-r--r--. 1 root   root     2242 Feb 21 16:45 Makefile
-rwxr-xr-x. 1 root   root     1131 Jul  9 11:52 www.enmu.edu.csr
-rwxr-xr-x. 1 root   root     1708 Jul  9 11:52 www.enmu.edu.key<http://www.enmu.edu.key>

Just for fun, I started playing with permissions, just in case that mattered (it didn't). You can see that enmu.edu.crt is there, where it is supposed to be, and is not empty.

What would cause this error besides what it actually says?

Jason Nemrow
Systems Operations Specialist
Information Technology Services
Eastern New Mexico University


________________________________




Confidentiality Notice:

This e-mail, including all attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information as defined under FERPA. Any unauthorized review, use, disclosure or distribution is prohibited unless specifically provided under the New Mexico Inspection of Public Records Act. If you are not the intended recipient, please contact the sender and destroy all copies of this message