I know this might be a repeated topic, but I'm having a bad time trying
to configure secure HTTP and authentication in Cherokee.
I'm using Debian packages of Cherokee for Etch (the same from Sid:
0.53-1) I have setup virtual hosts, PHP and CGI support flawlessly and
without any problems. This is why I love Cherokee. But I haven't been
able to configure SSL and authentication.
1. Authentication
I tried to use htpasswd validator in Basic mode. I generated a bogus
htpasswd with free tools around the Internet (in the form user:hash) and
wrote it on my filesystem (no special partitions, plain old ext3
partition) making sure that permissions where at least 644.
As it failed, I tried with plain text validation in both Basic and
Basic, Digest modes (just changed the user:hash to user:pw)
My configuration file was:
<snip>
Server mydomain.com {
DocumentRoot /home/jose/public_html/wtf
Directory / {
Handler common
Auth Basic {
Method htpasswd {
PasswdFile /home/jose/mykeys
}
}
}
Extension php {
Handler phpcgi
}
DirectoryIndex index.html, index.php
}
</snip>
I also tried adding Name directives inside Auth Basic, as Alvaro pointed
out in [1] this email to this list. Changing the Method to plaintext
didn't work either, and all the possible combinations of this change
didn't work either. What do I mean with "didn't work"?
1) When I try to open the webpage in Firefox, it says: "401
Authorization Required". If I try to specify the information in the URL
(user:[EMAIL PROTECTED]) Firefox , of course, yells that it is going to
authenticate to I site which asks for no authentication.
2) When I try to wget the webpage it says 401 Authorization required. If
I specify the information in the CLI, it downloads the webpage.
2. SSL
I've tried to get my server working on secure HTTP. I first followed the
tutorial in [2] generating all the needed stuff, which I copied to
/etc/cherokee/ssl, activated the SSL module and changed the paths. When
I try to start Cherokee it says that there is an error with the
certificate or the signature file.
I tried then the method described by Gunnar Wolf (Cherokee's Debian
Package Maintainer) in [3] (changing the paths as he says), which didn't
work (same error). I finally tried to create certificates in the way I
usually do it for Apache and sign it with CACert, and it didn't work.
3. Packages
As I thought at least the SSL problem could be a Debian package problem,
I just compiled the 0.5.3 sources from the webpage. This didn't work
either.
Could anyone point me out some, I hope, obvious mistakes I'm making? I
would really like to switch my personal webservers to Cherokee and
currently I'm unable to since I need to have at least a minimal password
protection and SSL.
Have a nice day,
Jose
[1] http://www.0x50.org/archive/2006-April/001475.html
[2] http://www.0x50.org/doc/How_to_generate_SSL_keys.html
[3] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=355233
--
José M. Parrella -> Debian Sid, k2.6.16.20
Escuela de Ingenieria Electrica
Universidad Central de Venezuela -> ucvlug.info
_______________________________________________
Cherokee mailing list
[email protected]
http://www.0x50.org/cgi-bin/mailman/listinfo/cherokee
