I found a solution, it looks like a dirty hack and making a security
hole, but it works for our custom purposes. So I don't recommend to use
this way. Somehow it may be interested for somebody.
It's needed to patch openssl.
In 'openssl/ssl/ssl_cert.c' file, in 'ssl_verify_cert_chain' function
Hi all!
I have an https server with apache/2.2.12+mod_ssl/2.2.14 and OpenSSL/0.9.8g.
I want to perform authentication based on client S/MIME certificates.
Clients have certificates with only the following purposes:
- S/MIME signing
- S/MIME encryption
But no SSL client or SSL server.
So I'm
On Thu, Nov 19, 2009 at 03:19:00PM -0500, David Rosenstrauch wrote:
Hi. I'm tearing my hair out over an SSLRequire directive that doesn't
seem to be working. Can anyone help?
The directive is actually quite simple:
# Require SSL over non-obvious port 81 for SVN access
SSLRequire
Huh! Never heard of those before!
OK, well, I'm still not sure I quite understand the reason why, but
UseCanonicalPhysicalPort on does seem to have fixed the problem.
Thanks much for the help!
DR
__
Apache Interface to OpenSSL
Hi. I'm tearing my hair out over an SSLRequire directive that doesn't
seem to be working. Can anyone help?
The directive is actually quite simple:
# Require SSL over non-obvious port 81 for SVN access
SSLRequire %{SERVER_PORT} == 81
This is actually working fine when the client is a
by client!?
192.168.88.3 - - [11/Jun/2009:16:36:25 +0200] POST
/upload2.php?filetoupload=lalala HTTP/1.1 103 -
Whats the problem here? I thought that maybe this is some sort of timeout
problem, but the only one i found was SSLSessionCacheTimeout and that is set
like this:
SSLSessionCacheshmht
Hi,
I have enabled SSL port on weblogic and using demo certificates.
I have installed Apache 2.0.63 [ssl enabled].
I have to open an MSWord file both in read only and editable.
But the problem is MS Word always opens in read only mode.
I have added the following lines in httpd.conf file
Hello,
I've got problem with https :
At the first HTTPS connection the page is blank, but after a refresh
(like pressing F5 on Firefox or IE) the page is well served.
Here is a link to see the problem :
https://ns300019.ovh.net/
https://ns300019.ovh.net/tools/env.php
The problem
Hi there,
I have a problem with the above configuration doesn't work if I uncomment
the relevant parts
Location /home/httpd/html/test
SSLRequireSSL
#SSLVerifyClient require
#SSLVerifyDepth 1
#SSLRequireSSL
#SSLOptions +StrictRequire +FakeBasicAuth
#SSLRequire
Hi All,
I am getting problem in setting up SSL in apache 2.0.59 in linux platform.
I followed the steps as below:
1- Created a self signed ca cert.
2- Created a server cert using the same ca.
3- Created two directories ssl.crt and ssl.key under
apache_server_home_dir/conf to put ca
Are you sure that mod_ssl httpd module is listen in localhost:2443?
O vie, 02-02-2007 ás 18:30 +0530, Shyam Shukla escribiu:
Hi All,
I am getting problem in setting up SSL in apache 2.0.59 in linux
platform.
I followed the steps as below:
1- Created a self signed ca cert
Good evening (well is is evening in my part of the world),
I am just in the process of attempting to upgrade from
mod_ssl-2.8.25-1.3.34
to
mod_ssl-2.8.28-1.3.37
(along with upgrading openssl to the latest version) on solaris 2.9 with sun
cc.
I'm getting the following compilation error:
cc -c
Subject: solaris compIilation problem
Good evening (well is is evening in my part of the world),
I am just in the process of attempting to upgrade from
mod_ssl-2.8.25-1.3.34
to
mod_ssl-2.8.28-1.3.37
(along with upgrading openssl to the latest version) on solaris 2.9 with sun
cc.
I'm
I have an Apache2/ssl server on a dynamic ip address with dns serviced by a dynamic dns provider. The problem is that if the address changes, after the dynamic record gets updated, ssl no longer works. Any resources for which ssl is mandatory produce only server errors.
Apache seems to cache some
Hi,
I have a working install that I use for redhat enterprise linux 3:
(from my .spec file)
cd mod_ssl-2.8.28-1.3.37
./configure \
--with-perl=/usr/bin/perl \
--with-apache=../apache_%{apversion} \
cd apache_%{apversion}
SSL_BASE=/usr/ \
./configure \
--with-perl=/usr/bin/perl \
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Fri, 23 Jun 2006, Arsen Hayrapetyan wrote:
Hello,
I am trying to install mod_ssl-2.8.27-1.3.36
and I've faced the following problem when I do 'make' in the
the directory where the apache's source resides:
gcc -DLINUX=22
Hello,
I am trying to install mod_ssl-2.8.27-1.3.36
and I've faced the following problem when I do 'make' in the
the directory where the apache's source resides:
gcc -DLINUX=22 -DHAVE_SET_DUMPABLE -DMOD_SSL=208127 -DUSE_HSREGEX -DEAPI
-DNO_DL_NEEDED `./apaci` -L/home/ahairape/prereqs
Hi!
I have a problem with apache2 running under Debian sarge: I have two
different CA keys, both having their own CRLs.
SSL-client-authentication against any of these keys fails with the message
Invalid signature on CRL. However, checking the client certs against
these CA keys directly
Hello,
we are running Apache 2.0.53 with openssl 0.9.7e on linux. There's a
weird problem using client certificates. When accessing
/srv/www/ssldocs/secure via https://www.domain.com/secure there's
absolutely no client certificate checked. Access is possible without
valid cert. My vhost
Solution (mostly) found. The problem is with a misconfiguration of
the Fecora Core 4
http configuration tool: the tool doesn't know about the split in
configuration files
in core 4 (httpd.conf in /etc/httpd/conf, ssl.conf in /etc/httpd/
conf.d). ssl.conf already
contains a Listen on 443
Hi,
I'm using FakeBasicAuth with Apache which works fine with most user
certificates. However, user certificates with colons in the subject
doesn't work. The following illustrates the problem
- FakeBasicAuth works with a user entry like:
/CN=Martin Strandbygaard/C=Denmark/L=Copenhagen
Hello,
I've got a problem I've been unable to resolve. Maybe somebody here has
the know-how to help me?
I've got a Apache+ModSSL webserver with a directory which requires
clients to authenticate themselves with
a certificate. Certificates (and keys) are on a smartcard. When the
client
, 2005 9:10 PM
To: modssl-users@modssl.org
Subject: Problem starting mod_ssl and apache
All,
I am having an interesting problem where I am
getting the following error message when I start
Apache:
Cannot load /usr/lib/apache/mod_sxnet.so into server: shared object not open
I have built the following
All,
I am having an interesting problem where I am
getting the following error message when I start
Apache:
Cannot load /usr/lib/apache/mod_sxnet.so into server: shared object not open
I have built the following rpms from their source
packages, which are all the latest versions.
(apache-1.3.33
Hi
I successfully compiled httpd-2.0.54 with
openssl-0.9.7g, have enabled mod_ssl in httpd.conf.
And things look like they are working.
In a php page I'm using, I'd like to use the openssl
support for parsing an X509 cert.
http://us4.php.net/manual/en/ref.openssl.php
however, after the first
Gesendet: Freitag, 3. Juni 2005 00:34
An: modssl-users@modssl.org
Betreff: problem compiling on windows
Hi
to begin, platform winxp pro, visual studio 6
I downloaded and extracted httpd-2.0.54-win32-src.zip, openssl-0.9.7g.tar.gz
from their respective websites.
And I was following
http
@modssl.org
Subject: Re: problem compiling on windows
I suggest you follow the procedure in the openssl source package
(install.w32) instead of using the perl commands in the apache httpd
documentation. This worked fine for me.
HTH
michael
-Ursprüngliche Nachricht-
Von: [EMAIL PROTECTED
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
[EMAIL PROTECTED]
Sent: Friday, June 03, 2005 1:27 AM
To: modssl-users@modssl.org
Subject: Re: problem compiling on windows
I suggest you follow the procedure in the openssl
source package
(install.w32) instead of using
Hi
to begin, platform winxp pro, visual studio 6
I downloaded and extracted httpd-2.0.54-win32-src.zip,
openssl-0.9.7g.tar.gz from their respective websites.
And I was following
http://httpd.apache.org/docs-2.0/platform/win_compiling.html
I placed awk.exe in the path, extracted all the
Hello Bob.
#4 0x08072d00 in ap_hook_call (
hook=0xfe00 Address 0xfe00 out of bounds) at ap_hook.c:382
^^^ problem here too?
I don't know about this one
Using strace -p pid I get:
read(3,
Using lsof -n -p pid I get
Have the folling:
apache-1.3.33
libapache-mod-ssl-2.8.22
kernel-2.4.26-1-686-smp
Having a problem where https connections just won't die. Over time the
process table files and box crawls or falls to its knees.
Installed debugging version of apache, here is gdb's backtrace showing the
block
On Monday 24 January 2005 11:53 pm, Bob Tanner wrote:
Have the folling:
apache-1.3.33
libapache-mod-ssl-2.8.22
kernel-2.4.26-1-686-smp
Having a problem where https connections just won't die. Over time the
process table files and box crawls or falls to its knees.
Installed debugging
I just recenlty bought a Verisign certificate.
And installed the certificate file and the config on apache.
IfModule mod_ssl.c
SSLEngine On
SSLLog /var/log/httpd/ssl_engine_log
# SSLCertificateChainFile /etc/httpd/ssl.rpc/verisign.ssl
On Sat, Dec 25, 2004 at 10:52:27PM -0500, Cliff Woolley wrote:
On Sat, 25 Dec 2004, Adolfo Bello wrote:
I heartily agree.
Unfortunately, I've been waiting for more than a year for this problem
to be fixed in Apache 2.0.x :-(
This bug was opened on 2002-09-06
http://nagoya.apache.org
Hi,
I installed Bugzilla, and the directory it is in has the
VerifyClient require
and all the Apache directives set in the httpd.conf file. It works fine
(the browsers makes me choose a client certificate) but when I submit a form
into Bugzilla I get an error to the effect that POST is not
On Sat, 2004-12-25 at 15:37 -0500, David T. Ashley wrote:
Hi,
I installed Bugzilla, and the directory it is in has the
VerifyClient require
and all the Apache directives set in the httpd.conf file. It works fine
(the browsers makes me choose a client certificate) but when I submit a
On Sat, 25 Dec 2004, Adolfo Bello wrote:
It just doesn't work in Apache 2.0.x.
Use Apache 1.3.x.
That doesn't sound like very good advice... if something is broken in
Apache 2.0.x, we should just fix it. :-/
--Cliff
__
agree.
Unfortunately, I've been waiting for more than a year for this problem
to be fixed in Apache 2.0.x :-(
This bug was opened on 2002-09-06
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12355
Happy Holidays,
Adolfo Bello
On Sat, 25 Dec 2004, Adolfo Bello wrote:
I heartily agree.
Unfortunately, I've been waiting for more than a year for this problem
to be fixed in Apache 2.0.x :-(
This bug was opened on 2002-09-06
http://nagoya.apache.org/bugzilla/show_bug.cgi?id=12355
Usually the trick to getting something
On Sat, 2004-12-25 at 22:52 -0500, Cliff Woolley wrote:
On Sat, 25 Dec 2004, Adolfo Bello wrote:
I heartily agree.
Unfortunately, I've been waiting for more than a year for this problem
to be fixed in Apache 2.0.x :-(
This bug was opened on 2002-09-06
http://nagoya.apache.org/bugzilla
I've also seen this problem. Haven't had the time to
find a proper solution. However I lowered the server
timeout to around 15 seconds, not ideal but keeps the
site going.
Hopefully someone has a better solution.
Regards
Matt
--- [EMAIL PROTECTED] wrote:
Hello,
We have a problem
Someone know were I can find apache2-mod_ssl 2.50 ?
Thanks
Fulvio
Yahoo! Companion - Scarica gratis la toolbar di Ricerca di Yahoo!
http://companion.yahoo.it
You dont need the hash link for the
SSLCACertificateFile just put the real filename in.
Also are you using a root and intermediate cert, then
add SSLVerifyDepth 2.
Upgrading may be a good idea but I have Apache/2.0.48
(Unix) mod_ssl/2.0.48 OpenSSL/0.9.7c running with
client cert auth. But then
--- Fulvio LAZ [EMAIL PROTECTED] wrote:
Dear Sirs
I write to ask for a little help about a problem
with Apache configuration.
My system is: Apache-AdvancedExtranetServer/2.0.48
(Mandrake Linux/6mdk) mod_ssl/2.0.48
OpenSSL/0.9.7c PHP/4.3.4
I want read client distinguished name
First of all does it work if you comment the
SSLVerifyClient require
directive out. Also do you get a core file and can
you do a backtrace in gdb (with lib info)?
Regards
Matt
Dear Matt, thanks for your reply
If I set SSLVerifyClient optional (or comment it) apache work but client
On Thu, Jul 01, 2004 at 10:50:30PM +0200, Fulvio LAZ wrote:
If I set LogLevel debug and SSLVerifyClient require I can see into error_log:
[info] Server built: Mar 16 2004 15:30:28
[debug] prefork.c(1037): AcceptMutex: pthread (default: pthread)
[notice] child pid 18934 exit signal
Dear Sirs
I write to ask for a little help about a problem with Apache configuration.
My system is: Apache-AdvancedExtranetServer/2.0.48 (Mandrake Linux/6mdk) mod_ssl/2.0.48
OpenSSL/0.9.7c PHP/4.3.4
I want read client distinguished name into php page (client using browser with pkcs12
Hello,
I am having problems with a brand new Verisign 128 bit certificate that has
just be purchased. I have installed the certificate and the intermediate
CA cert on an Apache 1.3.31/mod_ssl 2.8.17/openssl 0.9.7d instance.
What I am seeing is the Netscape and Mozilla connect to the site just
I am away on paternity leave for the next few days.
Please contact OLSU if urgent, otherwise i will get back
to you as soon as possible on my return.
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
On Wed, 2004-05-19 at 09:46, Bill MacAllister wrote:
Hello,
I am having problems with a brand new Verisign 128 bit certificate that has
just be purchased. I have installed the certificate and the intermediate
CA cert on an Apache 1.3.31/mod_ssl 2.8.17/openssl 0.9.7d instance.
Did you
--On Wednesday, May 19, 2004 10:50:44 AM -0700 Christopher McCrory
[EMAIL PROTECTED] wrote:
On Wed, 2004-05-19 at 09:46, Bill MacAllister wrote:
Hello,
I am having problems with a brand new Verisign 128 bit certificate that
has just be purchased. I have installed the certificate and the
simontst wrote:
The nasty problem is that when I redirect a request for a page (e.g.
index.html) that contains an img src tag in the form of:
img src = http://server/logos.gif;
IE 6 continually complains that the page contains insecured items and
refuses to display the yellow padlock
Hi,
I am running apache2, mod_ssl, on freebsd4.9 and I am using the mod_rewrite
engine to redirect requests for http - https.
I have this working using:
RewriteEngine on
RewriteCond %{HTTPS} !=on
RewriteRule ^/(.*) https://%{HTTP_HOST}/$1 [R,L]
The nasty problem is that when I redirect
I am away until the 14th April 2004
I will get back to you as soon as i can when I return.
If the matter is urgent and concerns OASIS, MUBSWEB or MUBS Online
then please contact one of the other members of the OLSU team who will try to help.
Hi,
I downloaded the openssl-0.6 package from sunfreeware and installed
the package. I then copied the .so files to my /apache/libexec dir
but it complains that libssl.so.0.9.6 can't be found and it is in the
libexec directory. Thus I am unable to startssl.
Anyone know what I am doing wrong?
I have a web app that I'm trying to run on Apache
1.3.27, mod_ssl 2.8.11, mod_jk and Tomcat 4.1.27.
Everything works when I run it over a non-secure port
(Apache 1.3.27 + mod_jk + Tomcat 4.1.27). When I try
to use mod_ssl over port 443, one of the pages with a
fairly large form does not work.
Hi,
My system configuration is as follows:
Mandrake 9.2
Apache 2.0.47
apache2-mod_ssl 2.0.47
OpenSSL 0.9.7b
I want to authenticate my clients with certificates. Here is apache-ssl configuration:
DocumentRoot /var/www/html
ErrorLog logs/ssl_error_log
IfModule mod_log_config.c
TransferLog
Hi,
My system configuration is as follows:
Mandrake 9.2
Apache 2.0.47
apache2-mod_ssl 2.0.47
OpenSSL 0.9.7b
I want to authenticate my clients with certificates. Here is apache-ssl configuration:
DocumentRoot /var/www/html
ErrorLog logs/ssl_error_log
IfModule mod_log_config.c
TransferLog
sorry, I've sent the same mail again accidentaly
==-
Bu e-posta sadece yukarida isimleri belirtilen kisiler arasinda zel haberlesme
amacini tasimaktadir. Size yanlislikla ulasmissa ltfen gnderen kisiyi
bilgilendiriniz ve mesaji
Hello i will use the AES-256 encryption. With mozilla it works bur not with
IE. What must i do the IE users get a page with a message to download
mozilla?
__
Apache Interface to OpenSSL (mod_ssl)
Hi, I'm having a problem compiling apache with modssl support on a
solaris platform. I've had to compile openssl as solaris64-sparcv9-gcc
otherwise after a default configuration compilation process would give
me a fatal error in dhparam.o file - wrong elf class (ELFCLASS64)
if [ solaris-shared
Hello,
I am attempting to get
apache_1.3.28
openssl-0.9.7b
mod_ssl/2.8.15
rsaref
working on solaris 9. When configuring apache with this command:
./configure --with-apache=/usr/share/src/apache_1.3.28/ --with-rsa=/lib
with-ssl=/usr/share/src/openssl-0.9.7b --prefix=/usr/local/apache
everything
Hello
So I start with Linux/Apache and openssl and I
can't get running Apache 2 and Openssl.
That's an extract of my httpd.conf
Listen 80
IfDefine SSLVirtualHost www.test.com:443DocumentRoot
"/usr/local/apache/htdocs"ServerName www.test.comServerAdmin testErrorLog
Add
Listen 443
On Sunday 17 August 2003 9:15 am, nico wrote:
Hello
So I start with Linux/Apache and openssl and I can't get running Apache 2
and Openssl.
That's an extract of my httpd.conf
Listen 80
IfDefine SSL
VirtualHost www.test.com:443
DocumentRoot /usr/local/apache/htdocs
Hello,
I'm having a strange problem with Apache 2.0.45 / openssl 0.9.6 (and
possibly tomcat 4.1.27).
The web-server should run all applications only over SSL and with client
certificate verification enabled.
So I set up all the necessary configuration, including server and client
certificates
Hello,
I have seen the similar questions posted on the openssl mailing list
before, but I have not seen much discussion. One thing that you may
want to try to upgrade the version of the openssl itself, but I have
no clue that applies to your problem.
Why don't you post this question
Hello,
I posted this question already some days ago, but did not yet receive any
hint. Does really no-one have any idea what could be the problem?
---
I'm having a strange problem with Apache 2.0.45, mod_ssl with openssl
0.9.6i (and possibly a factor also tomcat 4.1.27
Hi All.
Help. Netscape is driving me to drinks!
Problem : Netscape 7.1 will not redirect from http://my.first.dom to
https://my.secure.dom, claims it is transmitting in clear text (rather than
encrypted).
Objective : from first web-site, create a linik to a secure web-site inside
index.html using
Hi guys,
after a reboot of my httpd service, normally scheduled via crontab, I
experienced a problem.
I have two systems with Redhat 6.2, Apache 1.3.14, mod-ssl 2.7.1,
Openssl 0.9.6: first of all I have to say that this configuration is
driven
by a third part commercial software ( SAP ITS, wgate
On Fri, 20 Jun 2003 21:59:16 -0400
Weeve [EMAIL PROTECTED] wrote:
I'm currently experiencing a problem running modssl on ultrasparc under
linux. modssl compiles and installs fine but when apache is started
with ssl support, it no longer seems to respond to requests to either
port 80 or 443
Hello,
I'm currently experiencing a problem running modssl on ultrasparc under
linux. modssl compiles and installs fine but when apache is started with
ssl support, it no longer seems to respond to requests to either port 80
or 443. Basically you can initiate a tcp connection to the port
signal
Segmentation Fault (11)
[Fri Mar 21 04:10:42 2003] [notice] child pid 4240 exit signal
Segmentation Fault (11)
When accessing an https page using php. http and php are fine.
You need to upgrade to 2.8.14-1.3.27, which was released 21-Mar-2003
to fix a problem similar to what
I'm seeing similar problems after an upgrade to mod_ssl 2.8.13 under
Solaris 2.8.
[Fri Mar 21 04:10:42 2003] [notice] child pid 4241 exit signal
Segmentation Fault (11)
[Fri Mar 21 04:10:42 2003] [notice] child pid 4248 exit signal
Segmentation Fault (11)
[Fri Mar 21 04:10:42 2003] [notice]
-
From: Timothée GROS [mailto:[EMAIL PROTECTED]
Sent: 29 March 2003 11:04
To: [EMAIL PROTECTED]
Subject: APache 2.x + Mod_ssl : Ive a problem!
I cant't have my Apache with mod_ssl working:
I have Apache 2 directly installed from the RPM of Redhat 8.0
idem for mod_ssl
[snip]
-
NOTICE
Hallo Michael,
ja, nur Tippfehler. Das Problem ist mittlerweile behoben. ModSSL hatte
Schwierigkeiten mit dem Clientzertifikat, was OpenSSL erzeugt hat. Von Hand
gepatched funktioniert das jetzt.
Mit freundlichen Grüßen
--
Steffen Fischer, I/T Architect
IBM Deutschland GmbH, Karl-Arnold
Hello,
we want to setup a reverse proxy (http in, https to the backend IBM HTTP
Server) with client authentication to the backend.
On Linux and WinNT 4 SP5 (with Apache 2.044 and OpenSSL 0.97) we are both
getting segmentation faults or exits (see below). We checked the
communication through
have the same problem, HTTP is OK but HTTPS causes segfault.
Any other users experiencing this?
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
This message is for the named person's use only. It may contain
confidential, proprietary or legally privileged
)
No problem starting the server, but all child
requests makes them crash.
If you need more information, please ask me for.
Jazz
--- Boyle Owen [EMAIL PROTECTED] escreveu: Can
we bring these threads together? It would seem
we have:
Burkhard:
Apache/1.3.27 mod_gzip
running, but the child
processes doesn't seem to stay up. Anyone had a
problem like this? This problem is just with Solaris
2.6/Sparc or is happening in other platforms?
Thank you all for your attention.
Jazz
___
Busca Yahoo!
O
Hi,
I've seen a couple of articles where people have had problems with the
above, can anyone suggest a version of ssl that works ok, I used the ssl
package from the sun freeware site and installed via pkgadd, built apache
from source with gcc.
config command,
./configure --prefix=blah
PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, March 15, 2003 4:47 PM
Subject: Re: problem installing cert on virtual host
On 14 Mar 2003 at 17:14, Dan McComb wrote:
Thanks Beau,
Here's the pertinent bits (this file may look a bit strange -- it's a
Mac OS X Server conf file
: Saturday, March 15, 2003 4:47 PM
Subject: Re: problem installing cert on virtual host
On 14 Mar 2003 at 17:14, Dan McComb wrote:
Thanks Beau,
Here's the pertinent bits (this file may look a bit strange -- it's a
Mac OS X Server conf file, but functions in almost every way like
PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, March 15, 2003 4:47 PM
Subject: Re: problem installing cert on virtual host
On 14 Mar 2003 at 17:14, Dan McComb wrote:
Thanks Beau,
Here's the pertinent bits (this file may look a bit strange -- it's a
Mac OS X Server conf file, but functions
in an error in IE: the identity certificate name is not
correct. If I comment out the first virtual host, the problem
disappears and the second one works fine. I need them to work
together...
Anyone know how can I configure my virtual hosts/httpd.conf to avoid
this problem?
/dan mccomb
is the one that picks up the request. This
results in an error in IE: the identity certificate name is not
correct. If I comment out the first virtual host, the problem
disappears and the second one works fine. I need them to work
together...
Anyone know how can I configure my virtual hosts
to listen on same port further down in the file, I find
that the first listener is the one that picks up the request. This
results in an error in IE: the identity certificate name is not
correct. If I comment out the first virtual host, the problem
disappears and the second one works fine. I need them
listener is the one that picks up the request. This
results in an error in IE: the identity certificate name is not
correct. If I comment out the first virtual host, the problem
disappears and the second one works fine. I need them to work
together...
Anyone know how can I configure my
for more info
Rgds
Jeff
- Original Message -
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Saturday, March 15, 2003 4:47 PM
Subject: Re: problem installing cert on virtual host
On 14 Mar 2003 at 17:14, Dan McComb wrote:
Thanks Beau,
Here's the pertinent bits (this file may look
identical symptoms as well. After an
indeterminate amount of time, SSL requests to the server seem to hang
indefinitely. The problem appears to temporarily clear itself for a
short time.
-- jeff
__
Apache Interface to OpenSSL
to identify the problem yet. It doesn't seem to occur on an
initial connection, when IE sends the hello using SSLv2, but on subsequent
connections when IE has the certificate and uses SSLv3 for the hello.
The Initial connection always seems to work:
Client - server SSLv2 Client Hello
Server
Sorry I forgot to mention that I am also getting the following in the
ssl_engine log when IE disconnects:
[04/Mar/2003 15:00:16 04121] [info] Connection to child 6 established
(server admin.netbanx.com:443, client 10.10.10.10)
[04/Mar/2003 15:00:16 04121] [info] Seeding PRNG with 1160 bytes of
* jgelb ([EMAIL PROTECTED]) wrote:
[snip]
We've been using shm for our session cache.
Which one? shmht or shmcb?
Cheers,
Geoff
--
Geoff Thorpe
[EMAIL PROTECTED]
http://www.geoffthorpe.net/
__
Apache Interface to OpenSSL
smhcb
We've also done both file and sempahore based mutexes.
--jeff
On Tue, Mar 04, 2003 at 11:51:34AM -0500, Geoff Thorpe wrote:
* jgelb ([EMAIL PROTECTED]) wrote:
[snip]
We've been using shm for our session cache.
Which one? shmht or shmcb?
Cheers,
Geoff
--
Geoff Thorpe
is a socket serviced by PRNG (I tested it
with egc.pl and it delivers the desired data, but this is not the problem)
When I try to start the server error_log writes:
[Thu Feb 27 13:24:41 2003] [info] Init: Initializing OpenSSL library
[Thu Feb 27 13:24:41 2003] [info] Init: Seeding PRNG with 0 bytes
mailing list about the
error and found that I need to apply EAPI module while configuring. So when ever
I tried that option (--with-eapi-only), it said 'Bad Argument'.
So can help me out with this problem please
.
Thanks,
Satish
Hi,
I am experiencing the following problem while trying to migrate the Netscape
certificates, for Apache web server, using OpenSSL 0.9.6g. Please note that
this doesn't occur with the OpenSSL version 0.9.6c. The following is the
output from the openssl utility. Please give your inputs
not match FQDN?
Mainly i was talking about the server logs. In the server log, there will
be a message stating that the ServerName does not match the CN from the
certificate.
This isn't a problem that should affect the operation of the server. I
was only stating it because the log message lists
PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: Problem with IP/Port Based (NOT Name Based) virtual hosts.
Hi there. Thanks for the help. I have some followup comments
inline...
On Tue, Dec 10, 2002 at 09:04:35AM +0100, Boyle Owen wrote:
You must be the first guy to figure this out from
See comments..
-Original Message-
From: Alex Tang [mailto:[EMAIL PROTECTED]]
Sent: Dienstag, 10. Dezember 2002 08:07
To: [EMAIL PROTECTED]
Cc: Alex Tang
Subject: Problem with IP/Port Based (NOT Name Based) virtual hosts.
Hi folks.
I've read a bunch about how you can only do virtual
: the
httpd-cert-3443.cert is
used for both servers.
I suspect a DNS or routing problem... I notice you have real .com
domain names which implies these sites are available on the internet.
However, the IP addresses are on the 192.168.0.0 private network. This
implies that you have
1 - 100 of 986 matches
Mail list logo