Are these IP-based virtual hosts or name-based virtual hosts? See
http://httpd.apache.org/docs/2.0/vhosts/name-based.html
--Cliff
On 10/15/07, Bernard Barton [EMAIL PROTECTED] wrote:
In my main httpd.conf file, I have numerous include files which include
virtual hosts like so:
Include
ailto:
[EMAIL PROTECTED]] On Behalf Of Cliff Woolley
Sent: Tuesday, November 07, 2006
5:05 PM
To: modssl-users@modssl.org
Subject: Re: Mod_SSL
What this person is getting at is that the reason you can't find a mod_ssl
patch for Apache 2.x is that mod_ssl comes pre-bundled with Apache 2.x.
Just e
What this person is getting at is that the reason you can't find a mod_ssl patch for Apache 2.x is that mod_ssl comes pre-bundled with Apache 2.x. Just enable it when you run configure on the apache build.--Cliff
On 11/7/06, Kong, Yi - HPL [EMAIL PROTECTED] wrote:
You add ssl arguement
On 5/30/06, Frank van Beek [EMAIL PROTECTED] wrote:
I understand your confusion. In my post I masked out the first twonumbers of the IP-addresses.But we do have 4 VirtualHosts on 4 different IP-addresses. As it turnedout (see a previous post), our problem was caused by a misconfigured
reverse DNS.
On 5/30/06, Frank van Beek [EMAIL PROTECTED] wrote:
I checked a couple of pages on VirtualHosts in the Apache documentation.As far as I can see in the examples in most of them there aNameVirtualHost for every VirtualHost, even when it's running on adifferent port.
See the examples here:
On 4/20/06, Ken Chen [EMAIL PROTECTED] wrote:
[Thu Apr 20 17:04:46 2006] [debug] ssl_engine_io.c(1523): OpenSSL: I/Oerror, 5 bytes expected to read on BIO#81d53d8 [mem: 81eeef8]Just like it sounds from the message, this error occurs when the call to SSL_read() in ssl_io_input_read() fails with the
On 4/19/06, Ken Chen [EMAIL PROTECTED] wrote:
Now seems when uploading big file has problem in ssl.When I upload a3K image file, it's ok.But when I upload a 35K image file.Itfailed.Ah, I see.
Is there any place to set the cache/buffer?Or I have to setSSLSessionCache and SSLSessionCacheTimeout?You
On 4/18/06, Ken Chen [EMAIL PROTECTED] wrote:
1.If users access our server via https:// through the webserver, it fails to upload.Backend source encounteredNullPointerException when accessing the FileItem requested.2.But if users access our server via http://... through the web
server, there
On 2/7/06, Gordon Ross [EMAIL PROTECTED] wrote: I've got a Linux box with OpenSSL 0.9.8a installed (configured with threads, zlib shared) I then configured and installed Apache
2.0.55 with SSL support (configure --enable-ssl --enable-mods-shared=all) When I try and start Apache, (httpd -D SSL)
On 1/30/06, Konstantin N. Bezruchenko [EMAIL PROTECTED] wrote:
Because we already have password-protected certificates, and as i know
we cant remove password protection from existing certificate.
That's not correct. Your certificate is not password protected...
your private key is. And you
On 10/14/05, Pigeon [EMAIL PROTECTED] wrote:
I am helping someone develop a product, and for the next little bit he will
need to access port 443 with out the communication being encrypted (aka he
could telnet to it if he wanted).
But in the very near future, he will want to make 443
Helps if I send this from the address that is actually subscribed to the list...
resending
-- Forwarded message --
From: Cliff Woolley
Date: Oct 12, 2005 7:41 AM
Subject: Re: How to allow only certain Certificates
To: modssl-users@modssl.org
On 10/12/05, Dr. Harry Knitter
On 10/14/05, Dr. Harry Knitter [EMAIL PROTECTED] wrote:
Thanks, however, I´d prefer something like the Unique Subject Identifyer or
perhaps the Fingerprints. DNs can be faked easy.
Not if you require your own CA as the issuing authority using
SSLCACertificateFile and SSLRequire, they can't...
I simply would like to know what is the meaning of the following variables
Examples:
SSL_CLIENT_S_DN_T
SSL_CLIENT_S_DN_I
There's a nice table of these at
http://www.covalent.net/resource/documentation/ers/2.0.0/productguide/html/proxymodule.html
.
I had to dig pretty good to find that,
I know the SSL session timeout param can be configured by the directive
SSLSessionCacheTimeout. Is there any setting or API for the browser or
client application to configure the SSL session timeout param and override
the server's one such that each application can configure their timeout
make certificate is largely deprecated at this point, as far as I'm
concerned... it doesn't even ship with Apache 2.0 + mod_ssl. The
expiration could be considered a bug in Apache 1.3's mod_ssl, but IMO
the best thing for you to do is to follow the steps in the mod_ssl
documentation for creating
Starting httpd: (98)Address already in use: make_sock: could not
bind to address my IP address:443
no listening sockets available, shutting down
However the key information really is missing. So it looks like this
may be a problem in the fedora httpd configuration tool, because the key
It really does sound like there's something else listening on port 443:
Starting httpd: (98)Address already in use: make_sock: could not
bind to address my IP address:443
no listening sockets available, shutting down
That's usually what this message means. You said:
Oh, and there isn't
Also.. I ahve heard about ssl session key caching, anyone know how much this
will improve things?
Session caching is more or less essential for any kind of reasonable
SSL performance. Disabling the session cache will hurt your SSL perf
by perhaps as much as an order of magnitude (roughly
On 9/26/05, Phil Ehrens [EMAIL PROTECTED] wrote:
Pigeon wrote:
(The reason I say 10k concurrent is because we have an update system (sorta
like windows update).. and as soon as we tell their computer to update, we
have 10k boxes saying give me the file!)
I think I agree with the guy who
The certificate refers to the host by name, not by IP address. So as
long as the two hosts have exactly the same FQDN, then you should be
fine.
--Cliff
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
On 8/31/05, Conrad Friedrich [EMAIL PROTECTED] wrote:
Is there a way to prevent users (that got a client ssl-certificate (pkcs12)
for accessing my server) from giving their certs away to others and in that
way enabling unwanted users access to my site?
The client certificate acts as the user's
On 8/29/05, Toney Samuel [EMAIL PROTECTED] wrote:
I am getting this error
cluster1:/usr/local/apache2/bin # ./apachectl startssl
Syntax error on line 234 of /usr/local/apache2/conf/httpd.conf:
Cannot load /usr/local/apache2/modules/mod_ssl.so into server:
On Tue, 21 Jun 2005, Jon August wrote:
Hi,
I'm switching from Stronghold to Apache 2.0.54 with mod_ssl enabled.
When I start apache, everything appears to work except the SSL site.
There's some sort of warning about the cache. mod_ssl.c is listed as
a compiled in module, and there's an:
On Tue, 21 Jun 2005, Jon August wrote:
Can I just remove the IfDefine tags? or is that not recommended?
Yes, feel free. My understanding is that the only reason it's in there in
the first place is to try to make it clear that SSL isn't something you
can have work directly out of the box...
On Sat, 25 Dec 2004, Adolfo Bello wrote:
It just doesn't work in Apache 2.0.x.
Use Apache 1.3.x.
That doesn't sound like very good advice... if something is broken in
Apache 2.0.x, we should just fix it. :-/
--Cliff
__
On Sat, 25 Dec 2004, Adolfo Bello wrote:
I heartily agree.
Unfortunately, I've been waiting for more than a year for this problem
to be fixed in Apache 2.0.x :-(
This bug was opened on 2002-09-06
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12355
Usually the trick to getting something
On Mon, 29 Mar 2004 [EMAIL PROTECTED] wrote:
I'm getting the following output from a test of https on my apache server
using modssl. I can't easily rebuild it. I'm hoping someone has an idea
how to get more info without recompiling the server...
You're gonna have to give us more than that.
On Mon, 29 Mar 2004 [EMAIL PROTECTED] wrote:
I wish I had the info but I didn't build it. I switched back to an
earlier version of the executable and it works fine. [Looong story]
You don't need to be the one who built it.
You can get the version numbers just by asking Apache. telnet
On Mon, 1 Mar 2004, Hunt,Keith A wrote:
Well now, this wins the award for the silliest rant I've heard for a
while. I mean really, Dave... get a grip.
Seriously.
Not to mention that my primary email address is [EMAIL PROTECTED]
But you know, feel free to block me if you like. All the less
On Thu, 18 Dec 2003, Huw Jenkins wrote:
I've just replaced an SSL certificate (on a Mac OS 10.2 machine) and
restarted apache however it's still not recognising the new certificates
(still seeing the old one). I've not been asked for the passphrase either.
What's the command for getting
On Thu, 11 Dec 2003, Andreas Gietl wrote:
[Thu Dec 11 06:00:00 2003] [error] [client ] (11)Resource temporarily
unavailable: couldn't spawn child process: /usr/local/apache/sslcgi/navbar1
[Thu Dec 11 06:00:00 2003] [error] [client ] (11)Resource temporarily
unavailable: couldn't spawn
On Mon, 29 Sep 2003, Alex Hart wrote:
I just installed Apache/2.0.47 (Unix) mod_ssl/2.0.47 OpenSSL/0.9.7b in
my server (freebsd 4.8) and everything seems to be working fine. I have
apache configured to serve both secure and insecure pages.
However, I keep getting the following line in my
On Thu, 25 Sep 2003, Ken Kittlitz wrote:
#define ap_http_method(r) (((r)-ctx != NULL ap_ctx_get((r)-ctx,
ap::http::method) != NULL) ? ((char *)ap_ctx_get((r)-ctx,
ap::http::method)) : http)
always returns the defalt http. ap_default_port suffers a similar
problem. The Apache I'm running
On Wed, 20 Aug 2003, Henrik Bentel wrote:
Now, all my ssl configuration is under my secure virtual host, such that it
applies to everything. However, I have quite a bit static content(images,
css, javascript.,...) which doesn't need to be very secure. I somewhat only
want to secure my dynamic
On Tue, 19 Aug 2003, Nauman, Ahmed [IT] wrote:
How can we know at server side in apache that a GET or PUT request has
been received and it was failed or successfull ? Can we get somehow the
response code so that some script and/or tool at Server side can
delete/archive the file which have
On Tue, 19 Aug 2003, Eric Rescorla wrote:
Dave Paris [EMAIL PROTECTED] writes:
In addition to Owen's salient points about compression working efficiently
on repetitive strings in plaintext/binary data (e.g. whitespace in a Word
document) and not on random data (e.g. encrypted data), some
On Wed, 20 Aug 2003, Arthur Chan wrote:
But I want Netscape to load my certificate as an Authority for our
testing purposes. How does one go about doing that, both in Netscape and
MSIE5 ?
Google knows everything... an I'm feeling lucky for installing CA
certificate yields:
On Fri, 8 Aug 2003, Arthur Chan wrote:
[ssl] # openssl s_client -connect localhost:443 -state -debug
still throws this sticky error :
SSL_connect:error in SSLv2/v3 read server hello A
1565:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown
protocol:s23_clnt.c:460:
You have multiple
On Tue, 17 Jun 2003, Percy Rotteveel wrote:
I've read your article regarding: building shared libraries with OpenSSL
(http://www.mail-archive.com/[EMAIL PROTECTED]/msg15745.html). The
instructions are very clear and very helpful. When I execute make
build-shared, I get the following error
On Sun, 8 Jun 2003, ComCity wrote:
I'm very confused about the Virtual Host configuration in Apache
2.0stuff that use to work seems like it doesn't and I gotta
think thats because I don't know what I'm doing. ;)
Can you be more specific about what it's (not) doing? Other than the fact
---
Cliff Woolley
[EMAIL PROTECTED]
Apache HTTP Server Project
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL
-- Forwarded message --
Date: Fri, 06 Jun 2003 17:59:50 -0700
From: Justin Erenkrantz [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: Re: Possible mod_ssl bug (ssl_io_input_read) (fwd)
The suggested API change to char_buffer_read is incorrect. The
On Thu, 13 Mar 2003, Mike Burkhouse wrote:
I stop httpd and run apachectl startssl with no complaints, but only
httpd starts, not httpsd, and nothing gets logged. I have no idea how
to track down what has gone wrong. Can anyone offer any suggestions
where to look?
There's no such thing as
I'm cc:ing the users list so that the response is in the archives in case
anyone else has a similar problem.
On Sat, 8 Mar 2003, Kitty Ko wrote:
How are you? I read accross one of your email replay on the binding
shared libraries with OpenSSL on the interent, and that's how I got
your email
On Mon, 10 Mar 2003, Domenico Andreoli wrote:
order deny,allow
deny from all
allow from 127.0.0.1
SSLRequireSSL
after some thinking at it, i see you answer is not suitable for my
needs. indeed, your mandates the use of SSL, while mine allowed access
from localhost *or* SSL.
Okay
I've passed this on to the apache dev list.
--Cliff
On Tue, 4 Mar 2003, Edward Wong wrote:
Hello All,
I've been able to consistantly reproduce a GPF on Apache service shutdown
using Openssl 0.9.6i, and Apache 2.0.44.
Swapping to an older version of Openssl (0.9.6g) resolved the GPF.
On Sat, 1 Mar 2003, Domenico Andreoli wrote:
CUT HERE --
# ...
SSLEngine on
SSLCertificateFile /etc/apache/ssl.crt/server.crt
SSLCertificateKeyFile /etc/apache/ssl.key/server.key
VirtualHost _default_:*
/VirtualHost
# ...
CUT
-
Cliff Woolley
Apache HTTP Server Project
Apache Software Foundation
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List
On Sat, 1 Mar 2003, Domenico Andreoli wrote:
dunno, bug submitter used it. shouldn't it work anyway?
Environment variables are, as a rule, set late in the process because the
use of them has a relatively large performance penalty. They're really
only there for communicating with CGI scripts
On Tue, 18 Feb 2003, Ron Rough wrote:
I would like fo get the technical reason for
this. I know of someone who installed the
WebAgent.tar file from your web site and
it worked with the latest versions of
Apache and mod_ssl.
WebAgent.tar would have been downloaded from
On Thu, 20 Feb 2003, Glenn E. May wrote:
I recently installed mod-ssl on a new web server. Unfortunately, in my
haste to get the machine up and running, I cannot remember the pass
phrase that I used. I have tried making a de-install, and re-installing,
however I am unable to bypass this.
On Sun, 23 Feb 2003, Jay Moore wrote:
I want to run Apache so it responds only to https on port 443; http
requests are to be simply ignored. I thought I knew how to do this, but
then read something about using mod_rewrite which gave me a headache.
Is there a simple how-to describing how to
On Fri, 21 Feb 2003, sleek wrote:
SSL_connect:SSLv2/v3 write client hello A
read from 0808D4C0 [080A6000] (7 bytes = 7 (0x7))
- 3c 21 44 4f 43 54 59 !DOCTY
^
Because your server is speaking
On Wed, 5 Feb 2003, Steve Pirk wrote:
They all use the same cert file, but are on different ports.
I'm not so sure you can do that. But anyway, assuming for a second that
you can:
The problem I am running into is that only the first
VirtualHost works. Requests to subsequent ports result
in
On Wed, 19 Feb 2003, Ray a PowerWeb Tech wrote:
but some of the domains have SSL, and it doesn't seem like this will
cover it as is. how do i setup a folder for keys that will be used? ie
/www/certs/%0.key or does it automagicly pick the correct key for the
ip/domain?
i'm hoping to get it
On Fri, 31 Jan 2003, Cory 'G' Watson wrote:
I have the disallowing of HTTP fixed, but I can't find a way to ALLOW
http for the directories I need. I've searched the archives and
googled pretty hard, but not found what I am looking for.
I'd think some creative uses of RewriteRules could get
On Fri, 31 Jan 2003, Vince Montuoro wrote:
i can't get back to https://theaddress,
only http://theaddress:443 works???
You probably don't have
SSLEngine on
in your SSL vhost. Right now, the client and server are both speaking
HTTP, not HTTPS... the fact that it's over port 443 and not port
On Wed, 22 Jan 2003, rmck wrote:
Whats the benefit of mod_ssl compared to Apache-SSL???
Bells and whistles that you may or may not need. Suggest you look over
the list of supported configuration directives for each to see which one
better fits your site.
Note that Apache 2.0 includes mod_ssl
On Thu, 9 Jan 2003, Tai Do wrote:
I'm trying to get Apache2 working on Solaris 8. I have the following error
and saw that your answer on the mailing list work. I was wondering if you
can help me out with it because I'm not too sure what to do.
Syntax error on line 234 of
On Mon, 6 Jan 2003, Raj Mettai wrote:
I am running apache 2.0.39 with mod_ssl module on solaris 8. connected
to tomcat 4.1.12. I am getting lot of Spurious SSL handshake
interrupt errors in ssl_error.log file. All my https calls have become
drastically slow. Any clues on this error please,
On Thu, 5 Dec 2002, Bernd Steinert wrote:
on November 11 Kirill Shirkov reported a bug in the table_adjust function
that causes core dumps. He described how the core dumps can be reproduced.
Some colleague of mine confirmed this behaviour.
I must have missed the patch... can someone repost it
On Tue, 3 Dec 2002, Dave Paris wrote:
Not only is it not possible
With the current state of the SSL protocol such as it is, this is
correct-- it's not possible.
it'd be a HUGE security flaw if it WERE possible.
Well, not necessarily... all that you would need is for the client to tell
the
Because so many of you have asked, here is the answer.
--Cliff
-- Forwarded message --
Date: Sat, 19 Oct 2002 02:56:40 -0700
From: Roy T. Fielding [EMAIL PROTECTED]
Reply-To: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: distributing encryption software
Ryan asked for a
On Wed, 16 Oct 2002, Lance Uyehara wrote:
I am running apache 1.3.22 and mod_ssl-2.8.5-1.3.22, and have had a few
cores recently. They all have the same backtrace:
You're probably being probed by the openssl worm. You need to upgrade to
all the latest versions, as there are a number of
On Tue, 1 Oct 2002, hunter wrote:
This code segment is from mod_ssl...
Correct.
I have enabled SSL on only one of my Windows boxes. It has never logged
this message but the version is Apache 2.0.40 - OpenSSL 0.9.6g.
...mod_ssl is integrated into Apache 2.
mod_ssl is not officially
On Wed, 25 Sep 2002, Ken C wrote:
From what I've seen a permit may be required, for export / downloads to
non-US locations. Hosting servers may need to have the ability to deny
downloads to locations that shouldn't have it. (don't ask me, I'm just
reading this stuff)
While it has relaxed,
On Wed, 25 Sep 2002, hunter wrote:
My server is managing and there have been fairly frequent downloads -- I
am not concerned yet. I will have to remove the files if it looks as
though I will exceed my upload limit. My original concerns are probably
unwarranted.
Why not just upload it to
On Wed, 25 Sep 2002, hunter wrote:
I am open to any suggestions. I sent Ralf a note but he has not
replied. I should have sent a note to you ... :-)
I don't have any more access to modssl.org than you do, unfortunately...
:-/ If it were apache.org, that would be another matter. But
On Wed, 25 Sep 2002, Ken Campney wrote:
If you'd like, I'd be more than happy to host the file for download on my
network
If you're in the states, you have to watch out for export restrictions...
other than that, fine by me. :)
--Cliff
On Fri, 20 Sep 2002 [EMAIL PROTECTED] wrote:
I've just upgraded OpenSSL 0.9.6d to 0.9.6g on FreeBSD, but Apache
says that it's running OpenSSL 0.9.6a! Where is this version number
and how to change it?
to get it right, you should recomplie apache and php to show the correct
version
On Mon, 2 Sep 2002, Paul English wrote:
I'm working with a new setup of 2.0.35 under Linux, and having
First of all, why 2.0.35 on a new setup? 2.0.36 was the first full
release (back in April). 2.0.40 is the current release.
--Cliff
On Wed, 21 Aug 2002, Shah, Kishor (Kishor) wrote:
[Wed Aug 21 09:52:02 2002] [error] Init: Failed to generate temporary
512 bit RSA private key
My environment is, Solaris 2.8, Apache 2.0.40 with mod_ssl, OpenSSL 0.96g.
Try using prngd.
--Cliff
On Wed, 21 Aug 2002, Pandora Fawcett wrote:
why don't i see a mod_ssl version for apache 2.039?
Because you haven't looked in the right place. mod_ssl comes bundled with
Apache 2.0; it's no longer a separate product.
--Cliff
On Tue, 20 Aug 2002 [EMAIL PROTECTED] wrote:
The FAQ refers to the SSLRandomSeed directive; this is set in the
httpd.conf file as
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
(As I'm running on Tru64 I don't have the option of using /dev/random)
Try using prngd ...
On Mon, 19 Aug 2002, Venkat Reddy Valluri wrote:
As you told I checked the directory /usr/local/lib for libcrypto.so and
libssl.so, but I found out only libcrypto.a and libssl.a,
can you please let me know how to configure openssl to get these modules
shared like libcrypto.so and libssl.so
On Sat, 17 Aug 2002, Ron Ridley wrote:
Try something like this using IP based virtual hosts: Each one of your
virtual hosts can have different SSL key material it points to.
# This section only goes in the conf file once -
Port 80
ServerName domain.com
On Thu, 15 Aug 2002, Andre Schild wrote:
I have binaries for apache 2.0.40 with openssl 0.9.6e.
For which OS? Just curious.
--Cliff
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support
On Thu, 8 Aug 2002, Cliff Woolley wrote:
Upgrade to 0.9.6e.
Make that 0.9.6f, released today. :)
--Cliff
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List
On Fri, 9 Aug 2002, Cliff Woolley wrote:
Make that 0.9.6f, released today. :)
That's what I get for not reading all of my email before responding to
any of it. 0.9.6g was also released today. Sigh. :)
__
Apache Interface
On Fri, 9 Aug 2002, Cliff Woolley wrote:
That's what I get for not reading all of my email before responding to
any of it. 0.9.6g was also released today. Sigh. :)
I guess today was the day for releases. Apache 2.0.40 is now out as well.
--Cliff
On Fri, 9 Aug 2002, R. DuFresne wrote:
Any word on if this compiles on those older linux kernels as the previous
release was a total dud in that realm?
Probably no change. But FWIW, I believe one of our developers tried it on
an older kernel and it worked fine for him... if you could
On Fri, 9 Aug 2002 [EMAIL PROTECTED] wrote:
Do you know what different between 0.9.6b and 0.9.6e
Among other things, there are important security fixes in 0.9.6e (for
remotely exploitable bugs in 0.9.6d and earlier versions).
Upgrade to 0.9.6e.
--Cliff
On Tue, 16 Jul 2002, Alex Moon wrote:
Could the mirror sites not host ssl enabled version as they are not
in the US as they are in the Uk, Austrailia etc?
The way our mirroring system works, the mirrors do an rsync of
www.apache.org/dist. So they can't have files on their sites that aren't
On Tue, 16 Jul 2002, arcean wrote:
my probleme is : i don't have the source code of the websphere plugin ...
do you know a way to use mod_ssl without compiling apache
or compiling apache to perfectly support the old way DSO module ??
You'll have to either get IBM to provide you with an
On Tue, 16 Jul 2002, arcean wrote:
yes i've think about this (when i was testing)
but the point is : I need to provide Https pages with Websphere
and i need to use Apache as front server
a friend of me has opened a Ticket with IBM ...
i pray to have a EAPI mod_app_server in return ...
If
On Mon, 15 Jul 2002, Frederic DONNAT wrote:
I try using OpenSSL0.9.7 with a crypto accelerator and it works fine
for asymetric and symetric stuff, but it fails when trying to use
ENGINE random (rand engine is not used, everything is done with
classic software random).
Don't you have to
On Mon, 15 Jul 2002, Geoff Thorpe wrote:
I change a function call and it works fine now. I do not know if this is
the real way to solve my problem but this provide a solution.
In file pkg.modssl/ssl_engine_int.c:
move ssl_init_Engine(s, p); function call before
ssl_init_SSLLibrary();
On Tue, 16 Jul 2002, Brendan Lloyd wrote:
And last but not least: can anyone clarify what the state of Apache
2.0 is with regards to OpenSSL/mod_ssl? I've read in some places that
Apache 2.0 supports/includes these, but then when I went to download
the Windows binary distribution it had the
On Fri, 12 Jul 2002, John Milton wrote:
How far along is the mod_ssl port to Apache 2?
Done, for all intents and purposes. AFAIK, the only big still-missing
functionality is the per-directory POST renegotiations.
Has anyone hacked up a distributed session cache?
Not that I'm aware of. But
On Sat, 13 Jul 2002, Shaun T. Erickson wrote:
The problem is that this causes all the httpd processes to seg fault,
which they don't, if the module isn't loaded.
It would be helpful if you could tell us *where* it was segfaulting.
Please see http://httpd.apache.org/dev/debugging.html for
On Sat, 13 Jul 2002, [iso-8859-2] Jan ©kola wrote:
Yes problem is that you need Win32 utilities ,awk' and ,bison'...
Download them somewhere put in directory in PATH and try compile
again...
Right. See also http://apr.apache.org/compiling_win32.html .
--Cliff
On Thu, 11 Jul 2002, Sauer, Adrian wrote:
...this error occurs during start with -DSSL:
Cannot load /opt/apache_2.0.39/modules/mod_ssl.so into server:
/opt/apache_2.0.39/modules/mod_ssl.so: undefined symbol: X509_free
This is a frequently asked question. Please see (among other places):
On Wed, 10 Jul 2002, Mads Toftum wrote:
flame mode Which is a really bad move IMHO - debugging with mod_ssl
was very good, and easy to use, but now with 2.0 it has been hacked into
something much less usable. Making the loglevel tie in with the general
loglevel, you get debugging info from
On Tue, 9 Jul 2002, Geoff Thorpe wrote:
Can you ensure you've got a decent debugging level set (eg. perhaps
SSLLogLevel info) and post the last few lines of the error log when
Note that there's no such thing as a separate SSLLog/SSLLogLevel in Apache
2.0 anymore -- it's all lumped in with the
On 1 Jul 2002, Sean M Alderman wrote:
I'm hoping someone on the list might have some experience with
multiple IP based virtual hosts and generating CSRs for ssl certs for
each host. Something has me thinking that if I run the commans from the
mod_ssl faq, I'll get several CSRs for the
On 1 Jul 2002, Sean M Alderman wrote:
Cool, thanks!... So I've done that, I needed to use the make certificate
instead of the openssh commands because of the lack of a /dev/random on
Solaris 8 (I don't know why make is able to do make it happen when I
can't). Anyway, each time I run it it
[[ None of my emails from this evening seem to have actually gone out
(misconfig on my end, I think), so here's this again. Sorry if it's
a dupe. ]]
-- Forwarded message --
Date: Fri, 28 Jun 2002 02:24:29 -0400 (EDT)
From: Cliff Woolley [EMAIL PROTECTED]
To: [EMAIL
On Fri, 28 Jun 2002, R. DuFresne wrote:
I was thinking, and perhaps wrongly for versions prior to apache 2, that
modules required openssl be shared, but, earlier mod-ssl based versions I
do not think were so limited, being how they were built with ssl support.
Right. That's not a
On Tue, 25 Jun 2002, Jeff Landers wrote:
Even with just a ./configure I have many parse and symbol errors in the
config.log when I conifgure apache2039 although it exits with a zero. Is
that OK or do I need to work with someone to resolve these errors.
That's totally normal. These errors
1 - 100 of 270 matches
Mail list logo