On Thu, 10 Mar 2016 23:08:04 GMT, ab firstname.lastname@example.org
In any SSL/TLS handshake the client sends a list of supported ciphersuites
and then the server chooses one of those assuming one of those listed is
an option for the server. If not, you can get an error as you are seeing now.
I’d probably look at a LAN/wire trace to see what was offered. I’d
probably also try other clients to see if your current client is just too
old to work with newer TLS versions or ciphersuites.
echo | openssl s_client -connect server.ip.goes.here:443 -tls1 -showcerts
Using Chrome 48, IE 11, Firefox 17. I got different errors on all
three. Double-checked my conf file and noticed that NSSNickName
referenced “Server-Cert” instead of my cert from Digicert. So I
changed it to read “NSSNickName secure.msktd.com-digicert” - which is
the correct cert. But now when I start Apache, I get this on the
Starting httpd2 (prefork) startproc: exit status of parent of
/usr/sbin/httpd2-prefork: 1 failed
But I don’t see anything in the logs. Any ideas?