On Wednesday 24 July 2002 05 59 r, Michael Bell wrote: <snip> > Your apache is misconfigured. The DocumentRoot of your apache is > something like xyz/ca. This is wrong. The DocumentRoot of your apache > should be only xyz. If you want to use xyz/ca/ as the documentRoot then > you must use the appropriate configure-option of OpenCA. > I gratiously disagree. I used the options
--with-httpd-fs-prefix=/usr/local/apache --with-htdocs-fs-prefix=/home/httpd/htdocs-ca --with-cgi-fs-prefix=/home/httpd/cgi-ca during configure (crude locale yes, but not wrong) and when make install-ca was performed, a 'ca' directory was created under each of htdocs and cgi fs prefixes listed above. The DocRoot and ScriptAlias was originally set at what I used during configure, as I expected the install to place the files where I specified, not in a ca dir below it. Once I noted the ca dirs had been made, (and I could not load the site) I adjusted my doc root and script alias accordingly by adding /ca/ to each. As I stated, phase 1 functioned fine; then during phase 2, install certificate, the 404 showed. It was THEN that I added the alias to compensate for it. <snip> > > 1. You must specify this account during configure or must add it by hand > in openca_dir/etc/servers/ca.conf. > I did not see mention of this in the install doc, I'll look again. > 2. Which option do you use for configure? DocRoot/cgi-ca/ca/ca looks > really crude? Normally it is DocRoot/cgi-bin/ca/ca. All servers can be > hosted on apache (I think you use a 0.9-snap). I specifiy the options used above, the did a make install-ca. I assumed that the install-ca directive would install only all the CA portions, and do so completely. (I noted that manpages were made but not installed, what'd I miss?) I used the RC1 and not a SNAP, which I downloaded within minutes of your announcement, from the ftp site you specified. I thank you very much for your time and all the efforts in this Product. I'm not a Perl guy (but expect i'll now begin to pick it up), and I don't have complex knowledge of the inner-workings of this product/project. I will contribute to OpenCA in the capacity of a competent admin, and will provide testing and review of documentation. I had another question (forgive me) about one of the configure options. When i specified the --with-web-host= flag, I used the name of my ca server, which is (for now) in a private unresolvable domain, later to be disconnected from the wire. I noted that this flag value appears in the revocation url. Must I make this value what will be my true public host (most likely yes) and if I do so, does it have any conflicting effects on the operation of the CA box? Thanks again Ron > > Michael ------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ Openca-Users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/openca-users
