8.1 to 8.2 upgrade, apache SSL Certificates problem
Hi, I did an upgrade from FreeBSD 8.1 to 8.2 today. All OK so far, except for Apache (apache-2.2.17_1) It wouldn't start. /var/log/httpd-error.log [Wed Mar 23 13:04:26 2011] [error] Server should be SSL-aware but has no certificate configured [Hint: SSLCertificateFile] ((null):0) I dit not change anything tot my apache config in the last weeks (and have restarted apache, via apachectl graceful several times). My certificates are still there and did not change. Accessing some of my https enabled virtual hosts worked before the upgrade. # apachectl configtest Suntax OK If I start apache without SSL (commenting out the Include etc/apache22/extra/httpd-ssl.conf line in /usr/local/etc/apache22/httpd.conf), then apache starts. Waht can be the cause, it worked before 8.2 ?? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Solved - 8.1 to 8.2 upgrade, apache SSL Certificates problem
Don't border, i found the error, nothing to with freebsd. sorry 2011/3/23 n dhert ndhert...@gmail.com Hi, I did an upgrade from FreeBSD 8.1 to 8.2 today. All OK so far, except for Apache (apache-2.2.17_1) It wouldn't start. /var/log/httpd-error.log [Wed Mar 23 13:04:26 2011] [error] Server should be SSL-aware but has no certificate configured [Hint: SSLCertificateFile] ((null):0) I dit not change anything tot my apache config in the last weeks (and have restarted apache, via apachectl graceful several times). My certificates are still there and did not change. Accessing some of my https enabled virtual hosts worked before the upgrade. # apachectl configtest Suntax OK If I start apache without SSL (commenting out the Include etc/apache22/extra/httpd-ssl.conf line in /usr/local/etc/apache22/httpd.conf), then apache starts. Waht can be the cause, it worked before 8.2 ?? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
OT: apache+ssl question _off-list_
Would any folks with experience in Apache/SSL be willing to help with a (probably novice) problem off-list? (My search-fu is inferior: I've found the problem mentioned, but no solutions.) Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: HOWTO Apache + SSL
On Mon, Apr 13, 2009 at 3:53 PM, Pieter Donche pieter.don...@ua.ac.bewrote: Where can I find a really good FreeBSD7 step by step HOW-TO on setting up digital certifcates (SSL) for the Apache22. My apache22 is running on my freebsd7 system but I never set up any apache httpd server for https access yet ... cd /usr/ports/www/apache22 make config make install clean Then you can grab http://www.openssl.org/contrib/ssl.ca-0.1.tar.gz and use it to make certificates. The certificates will be specified in /usr/local/etc/apache22/extra/httpd-ssl.conf under SSLCertificateFile, SSLCertificateKeyFile and SSLCACertificatePath. Once done, you just have to uncomment the relevant line under Supplemental Configuration section of httpd.conf More like it. The rest you have to read about Apache. -- Best regards, Odhiambo WASHINGTON, Nairobi,KE +254733744121/+254722743223 _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ Clothes make the man. Naked people have little or no influence on society. -- Mark Twain ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
HOWTO Apache + SSL
Where can I find a really good FreeBSD7 step by step HOW-TO on setting up digital certifcates (SSL) for the Apache22. My apache22 is running on my freebsd7 system but I never set up any apache httpd server for https access yet ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: HOWTO Apache + SSL
On Mon, Apr 13, 2009 at 7:53 AM, Pieter Donche pieter.don...@ua.ac.bewrote: Where can I find a really good FreeBSD7 step by step HOW-TO on setting up digital certifcates (SSL) for the Apache22. My apache22 is running on my freebsd7 system but I never set up any apache httpd server for https access yet ... ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org I use apache 2.2, which comes with SSL. All you have to do is create/sign the certificate and configure the file httpd.conf. I've used the same setup from FreeBSD 6.* to FreeBSD 7.1. A quick google for 'apache2 ssl freebsd' led me here: http://codesnippets.joyent.com/posts/show/802 Best of luck, Andrew ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: HOWTO Apache + SSL
2009/4/13 Pieter Donche pieter.don...@ua.ac.be: Where can I find a really good FreeBSD7 step by step HOW-TO on setting up digital certifcates (SSL) for the Apache22. My apache22 is running on my freebsd7 system but I never set up any apache httpd server for https access yet ... Hi I hope this help you http://www.bsdguides.org/guides/freebsd/webserver/apache_ssl_php_mysql.php Regards ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions-unsubscr...@freebsd.org
Re: [OT] Apache SSL certificate authentication
On Mon, Sep 29, 2008 at 12:00:09PM -0500, CyberLeo Kitsana wrote: Fraser Tweedale wrote: - Create my CA key and a CSR, and have CACert sign it. Are you sure it's signed as an intermediary CA? cacert.org's website suggests they will only sign leaf certificates. http://wiki.cacert.org/wiki/SubRoot Fortunately, your client certs need not be signed by the same CA as your server cert, and it's probably somewhat pointless to have a client cert (which will be used for your infrastructure alone) vetted by a third party. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net [EMAIL PROTECTED] Furry Peace! - http://.fur.com/peace/ Thanks for the clarification. I hadn't picked up on the fact that you need a special intermediary cert for the server cert to validate up the chain. Well, nevermind. It's just for personal use anyway... if only X.509 could be simple like OpenPGP :) frase pgpqxJMTtc3na.pgp Description: PGP signature
Re: [OT] Apache SSL certificate authentication
Fraser Tweedale wrote: - Create my CA key and a CSR, and have CACert sign it. Are you sure it's signed as an intermediary CA? cacert.org's website suggests they will only sign leaf certificates. http://wiki.cacert.org/wiki/SubRoot Fortunately, your client certs need not be signed by the same CA as your server cert, and it's probably somewhat pointless to have a client cert (which will be used for your infrastructure alone) vetted by a third party. -- Fuzzy love, -CyberLeo Technical Administrator CyberLeo.Net Webhosting http://www.CyberLeo.Net [EMAIL PROTECTED] Furry Peace! - http://.fur.com/peace/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
[OT] Apache SSL certificate authentication
I've been trying to set up Apache to do certificate authentication and although I've had success using a self-signed CA (which naturally requires that the CA certificate be installed in the browser), I want to do the same, only have the certificate(s) signed by a real(*) CA, and am having some difficulty. (*) Specifically, CACert, which still isn't a OOTB trusted CA in most software. The way I expect this to work is: - Create my CA key and a CSR, and have CACert sign it. - Create a server key and CSR, and sign it with my CA - Create a client certificate, signed by my CA. So I end up with a certificate chain that goes: CACert - my CA - my server But... this is not working. Firefox won't verify the server (the CACert root certificate .is. installed), and having bypassed this check, Apache won't verify the client either. The Apache configuration is as follows: VirtualHost *:443 ServerName foo.bar DocumentRoot /path/to/htdocs SSLEngine on SSLCipherSuite HIGH:MEDIUM SSLProtocol all -SSLv2 SSLCertificateFile /sslpath/server.crt SSLCertificateKeyFile /sslpath/server.key SSLCACertificateFile /sslpath/my-ca.crt SSLVerifyClient require SSLVerifyDepth 1 /VirtualHost Any suggestions are appreciated, frase pgpjMpbJXLvX2.pgp Description: PGP signature
Apache ssl startup
I'm trying to get apache2 to start at boot in ssl mode. After reading through the rc.d script I put apache2ssl_enable=YES in /etc/rc.conf, but it doesn't work. What is the proper way to start the server at boot? The machine is running 6.1-PRERELEASE. Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Mangohealth \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - XanGo - http://www.mangohealth.org --- pgpIgHbQqlbJT.pgp Description: PGP signature
Re: Apache ssl startup
On Wed, Mar 22, 2006 at 07:57:24AM -0900, Beech Rintoul wrote: I'm trying to get apache2 to start at boot in ssl mode. After reading through the rc.d script I put apache2ssl_enable=YES in /etc/rc.conf, but it doesn't work. What is the proper way to start the server at boot? The machine is running 6.1-PRERELEASE. Beech Is apache compiled with ssl ? Otherwise you can portupgrade it portupgrade -m -DWITH_SSL_MODULES apache RR ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache ssl startup
On Wednesday 22 March 2006 09:13, Rajarajan Rajamani wrote: On Wed, Mar 22, 2006 at 07:57:24AM -0900, Beech Rintoul wrote: I'm trying to get apache2 to start at boot in ssl mode. After reading through the rc.d script I put apache2ssl_enable=YES in /etc/rc.conf, but it doesn't work. What is the proper way to start the server at boot? The machine is running 6.1-PRERELEASE. Beech Is apache compiled with ssl ? Otherwise you can portupgrade it portupgrade -m -DWITH_SSL_MODULES apache Yes ssl is fully working. I just have to start it manually. I need to find how to start it in that mode at boot. Normal mode works fine with apache2_enable=YES at boot. Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Mangohealth \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - XanGo - http://www.mangohealth.org --- pgpEpHOJvZLRz.pgp Description: PGP signature
Re: Apache ssl startup
Beech Rintoul writes: Yes ssl is fully working. I just have to start it manually. I need to find how to start it in that mode at boot. Normal mode works fine with apache2_enable=YES at boot. Let me summarize for my own benefit: 1) when you put apache2_enable=YES in /etc/rc.conf and reboot, nothing happens. 2) when you run /usr/local/etc/rc.d/apache22.sh start manually ... 3) when you run /usr/local/sbin/httpd arguements, apache starts. Have I misunderstood? And what are the applicable contents of /var/log/httpd-*.log? Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache ssl startup
On Wednesday 22 March 2006 11:19, Robert Huff wrote: Beech Rintoul writes: Yes ssl is fully working. I just have to start it manually. I need to find how to start it in that mode at boot. Normal mode works fine with apache2_enable=YES at boot. Let me summarize for my own benefit: 1) when you put apache2_enable=YES in /etc/rc.conf and reboot, nothing happens. 2) when you run /usr/local/etc/rc.d/apache22.sh start manually ... 3) when you run /usr/local/sbin/httpd arguements, apache starts. Have I misunderstood? And what are the applicable contents of /var/log/httpd-*.log? When I put apache2_enable=YES in rc.conf it starts in normal mode at boot. When I put apache2ssl_enable=YES in rc.conf it doesn't start at all. After boot doing apachectl stop and apachectl startssl starts the server in ssl mode. Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Mangohealth \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - XanGo - http://www.mangohealth.org --- pgp9tZsbGtBTU.pgp Description: PGP signature
Re: Apache ssl startup
--On Wednesday, March 22, 2006 11:50:24 -0900 Beech Rintoul [EMAIL PROTECTED] wrote: When I put apache2_enable=YES in rc.conf it starts in normal mode at boot. When I put apache2ssl_enable=YES in rc.conf it doesn't start at all. After boot doing apachectl stop and apachectl startssl starts the server in ssl mode. I had this same problem with apache2 a while ago. I also found that, once I started apache with ssl, I couldn't also run it without ssl. Since it was a production server and I was in no mode to troubleshoot, I reverted to apache13 w/ mod_ssl, which works just fine for me. I never got around to investigating it further, but I've seen this complaint on the list periodically for some time now. Paul Schmehl ([EMAIL PROTECTED]) Adjunct Information Security Officer The University of Texas at Dallas http://www.utdallas.edu/ir/security/
Re: Apache ssl startup
Beech Rintoul writes: When I put apache2_enable=YES in rc.conf it starts in normal mode at boot. When I put apache2ssl_enable=YES in rc.conf it doesn't start at all. After boot doing apachectl stop and apachectl startssl starts the server in ssl mode. huff@ uname -v FreeBSD 7.0-CURRENT #0: Mon Mar 13 09:23:39 EST huff@ grep apach /etc/rc.conf apache22_enable=YES apache22ssl_enable=YES and apache _with ssl_ starts correctly at boot. Robert Huff ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache ssl startup
On Wednesday 22 March 2006 13:17, Robert Huff wrote: Beech Rintoul writes: When I put apache2_enable=YES in rc.conf it starts in normal mode at boot. When I put apache2ssl_enable=YES in rc.conf it doesn't start at all. After boot doing apachectl stop and apachectl startssl starts the server in ssl mode. huff@ uname -v FreeBSD 7.0-CURRENT #0: Mon Mar 13 09:23:39 EST huff@ grep apach /etc/rc.conf apache22_enable=YES apache22ssl_enable=YES and apache _with ssl_ starts correctly at boot. Thanks, I'll try it with both in rc.conf Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Mangohealth \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - XanGo - http://www.mangohealth.org --- pgphpOSXDy7r3.pgp Description: PGP signature
RE: Apache ssl startup
-Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Beech Rintoul Sent: Wednesday, March 22, 2006 8:57 AM To: freebsd-questions@freebsd.org Subject: Apache ssl startup I'm trying to get apache2 to start at boot in ssl mode. After reading through the rc.d script I put apache2ssl_enable=YES in /etc/rc.conf, but it doesn't work. What is the proper way to start the server at boot? The machine is running 6.1-PRERELEASE. Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Mangohealth \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - XanGo - http://www.mangohealth.org --- Beech, Did you create, configure a ssl certificate? Here is a good howto: http://www.bsdguides.org/guides/freebsd/webserver/apache_ssl_php_mysql.php Andras Kende http://www.kende.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache ssl startup
On Wednesday 22 March 2006 19:50, Andras Kende wrote: -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Beech Rintoul Sent: Wednesday, March 22, 2006 8:57 AM To: freebsd-questions@freebsd.org Subject: Apache ssl startup I'm trying to get apache2 to start at boot in ssl mode. After reading through the rc.d script I put apache2ssl_enable=YES in /etc/rc.conf, but it doesn't work. What is the proper way to start the server at boot? The machine is running 6.1-PRERELEASE. Beech Did you create, configure a ssl certificate? Here is a good howto: http://www.bsdguides.org/guides/freebsd/webserver/apache_ssl_php_mysql.php I needed to add both apache2_enable=YES and apache2ssl_enable=YES to rc.conf. Now it's working fine. Thanks to all who replied. Beech -- --- Beech Rintoul - Sys. Administrator - [EMAIL PROTECTED] /\ ASCII Ribbon Campaign | Mangohealth \ / - NO HTML/RTF in e-mail | 201 East 9Th Avenue Ste.310 X - NO Word docs in e-mail | Anchorage, AK 99501 / \ - XanGo - http://www.mangohealth.org --- pgp7i2vk3TMgF.pgp Description: PGP signature
switching apache ti apache-ssl quick
I want to change my apache webserver to a ssl-version. Do I deinstall everything first? PHP, MySQL, phpBB2, mod_security and apache? Or is there a way to make the switch easier than that? Will just a reinstall of apache itself suffice? Thxs This message was sent using IMP, the Internet Messaging Program. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
apache-ssl and mod_mysql mod_php4
Do the mysql and php4 modules integrate with apache-ssl. as with regular apache_1.3.33 ?? I installed apache-ssl instead of apache on a whim - SSL works and I can use the server for secure or regular port 80 http, however nowhere can I find info that explicitly indicates the compatability of mysql and php4 for this Apache variant. Can someone give me some assurance before I install the ports. Thanks, Graham/ -- Kindness can be infectious - try it. Graham North Vancouver, BC www.soleado.ca No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.323 / Virus Database: 267.8.11/44 - Release Date: 7/8/2005 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: apache-ssl and mod_mysql mod_php4
Yes, it works fine; I installed apache mod_ssl (1.3.33) and installed both mysql4 and php4 from ports without a single issue. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Graham North Sent: Saturday, July 09, 2005 7:31 PM To: questions freebsd Subject: apache-ssl and mod_mysql mod_php4 Do the mysql and php4 modules integrate with apache-ssl. as with regular apache_1.3.33 ?? I installed apache-ssl instead of apache on a whim - SSL works and I can use the server for secure or regular port 80 http, however nowhere can I find info that explicitly indicates the compatability of mysql and php4 for this Apache variant. Can someone give me some assurance before I install the ports. Thanks, Graham/ -- Kindness can be infectious - try it. Graham North Vancouver, BC www.soleado.ca ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache-ssl and mod_mysql mod_php4
Hi Joe - thank you for this information/confirmation. Cheers, Graham/ Joe Wood wrote: Yes, it works fine; I installed apache mod_ssl (1.3.33) and installed both mysql4 and php4 from ports without a single issue. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Graham North Sent: Saturday, July 09, 2005 7:31 PM To: questions freebsd Subject: apache-ssl and mod_mysql mod_php4 Do the mysql and php4 modules integrate with apache-ssl. as with regular apache_1.3.33 ?? I installed apache-ssl instead of apache on a whim - SSL works and I can use the server for secure or regular port 80 http, however nowhere can I find info that explicitly indicates the compatability of mysql and php4 for this Apache variant. Can someone give me some assurance before I install the ports. Thanks, Graham/ -- Kindness can be infectious - try it. Graham North Vancouver, BC www.soleado.ca No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.323 / Virus Database: 267.8.11/44 - Release Date: 7/8/2005 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: php/apache/ssl core dumps
Hi Ruben, I have been experiencing the same thing, both by using the ports and by building manually from source. I prefer to build from source, as I find the ports tree to be a bit difficult to use when it comes to the way it handles PHP stuff. At any rate, I solved my problem by not building mod_ssl as a shared module. Statically compiled, I no longer get the crashes. Perhaps the ports tree has an option to build mod_ssl this way... Patrick On 5/16/05, Ruben Bloemgarten [EMAIL PROTECTED] wrote: Hi all, I'm trying to get Apache to work with both ssl and php. However, when ssl apache and php are installed and the php module is set to be loaded into apache, apache core dumps (11). I'm using the latest ports tree. Also I've tried any number of combinations of mod_php, php-extensions, apache13-mod_ssl, apache13-ssl, apache then openssl etc etc. This problem has been discussed before but none of the solutions seem to be working. Could anyone help ? Thanks, Ruben -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.308 / Virus Database: 266.11.10 - Release Date: 05/13/2005 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.308 / Virus Database: 266.11.10 - Release Date: 05/13/2005 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
php/apache/ssl core dumps
Hi all, Im trying to get Apache to work with both ssl and php. However, when ssl apache and php are installed and the php module is set to be loaded into apache, apache core dumps (11). Im using the latest ports tree. Also Ive tried any number of combinations of mod_php, php-extensions, apache13-mod_ssl, apache13-ssl, apache then openssl etc etc. This problem has been discussed before but none of the solutions seem to be working. Could anyone help ? Thanks, Ruben -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.308 / Virus Database: 266.11.10 - Release Date: 05/13/2005 -- No virus found in this outgoing message. Checked by AVG Anti-Virus. Version: 7.0.308 / Virus Database: 266.11.10 - Release Date: 05/13/2005 ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Tim Erlin wrote: Andrew L. Gould wrote: Not necessarily. I've heard lots of complaints about PHP and Apache2 not playing nice. (Does anyone have any updates on this situation?) I've been running apache2 with squirrelmail for a while. The biggest problems were performance issues. Squirrelmail was very slow pulling mail from the disk. Not sure that apache13 would help there. I finally installed apache13-ssl after trying to portupgrade -o to apache2 and trashing everything. Anyway, it's all working now, except that when I try to connect to squirrelmail in a browser I just get a directory listing of /usr/local/www/squirrelmail. I've reinstalled squirrelmail and run the configure script. Alias in httpsd.conf is copied from the old httpd.conf: Alias /squirrelmail/ /usr/local/www/squirrelmail/ Directory /usr/local/www/squirrelmail Options Indexes FollowSymlinks MultiViews AllowOverride None Order allow,deny Allow from all /Directory Which worked before. Any idea what I've missed? Regards, Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-0, 31/01/2005 Tested on: 01/02/2005 16:54:20 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
On Tue, 01 Feb 2005 16:54:19 + Mark Ovens [EMAIL PROTECTED] wrote: Anyway, it's all working now, except that when I try to connect to squirrelmail in a browser I just get a directory listing of /usr/local/www/squirrelmail. Hi, Maybe you forgot listing index.php in DirectoryIndex directive? Cheers, -- Adrian Pircalabu -- This message was scanned for spam and viruses by BitDefender. For more information please visit http://www.bitdefender.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Adi Pircalabu wrote: On Tue, 01 Feb 2005 16:54:19 + Mark Ovens [EMAIL PROTECTED] wrote: Anyway, it's all working now, except that when I try to connect to squirrelmail in a browser I just get a directory listing of /usr/local/www/squirrelmail. Hi, Maybe you forgot listing index.php in DirectoryIndex directive? Should have mentioned that I tried adding that but it just caused the contents of index.php to be displayed in the browser rather than the directory listing. Also, I didn't have index.php in the DirectoryIndex directive in the previous version of apache and it worked correctly then. Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-0, 31/01/2005 Tested on: 01/02/2005 17:12:03 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
On Tue, 01 Feb 2005 17:12:02 + Mark Ovens [EMAIL PROTECTED] wrote: Should have mentioned that I tried adding that but it just caused the contents of index.php to be displayed in the browser rather than the directory listing. If I understand this correctly, your .php page was not parsed, but displayed. You should also need a directive like this: AddType application/x-httpd-php .php From what I see, /usr/ports/lang/php4/pkg-message.mod says how to complete the integration of php module. Cheers, -- Adrian Pircalabu -- This message was scanned for spam and viruses by BitDefender. For more information please visit http://www.bitdefender.com/ ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Adi Pircalabu wrote: On Tue, 01 Feb 2005 17:12:02 + Mark Ovens [EMAIL PROTECTED] wrote: Should have mentioned that I tried adding that but it just caused the contents of index.php to be displayed in the browser rather than the directory listing. If I understand this correctly, your .php page was not parsed, but displayed. You should also need a directive like this: AddType application/x-httpd-php .php From what I see, /usr/ports/lang/php4/pkg-message.mod says how to complete the integration of php module. That's fixed it, thanks :-) httpd.conf from the previous version I had installed doesn't have index.php in the DirectoryIndex directive, but it does have IfModule mod_php3.c AddType application/x-httpd-php3 .php3 AddType application/x-httpd-php3-source .php3s /IfModule IfModule mod_php4.c AddType application/x-httpd-php .php AddType application/x-httpd-php-source .phps /IfModule IfModule mod_dir.c IfModule mod_php3.c IfModule mod_php4.c DirectoryIndex index.php index.php3 index.html /IfModule IfModule !mod_php4.c DirectoryIndex index.php3 index.html /IfModule /IfModule IfModule !mod_php3.c IfModule mod_php4.c DirectoryIndex index.php index.html /IfModule IfModule !mod_php4.c DirectoryIndex index.html /IfModule /IfModule /IfModule but I'm 99% certain I didn't have to add thosehmmm, the previous version was installed from a package, the current version from the ports; maybe that's why? Thanks again for your help. Regards, Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-0, 31/01/2005 Tested on: 01/02/2005 17:41:00 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Mark Ovens wrote: Anyway, it's all working now, except that when I try to connect to squirrelmail in a browser I just get a directory listing of /usr/local/www/squirrelmail. I've reinstalled squirrelmail and run the configure script. Alias in httpsd.conf is copied from the old httpd.conf: Alias /squirrelmail/ /usr/local/www/squirrelmail/ Directory /usr/local/www/squirrelmail Options Indexes FollowSymlinks MultiViews AllowOverride None Order allow,deny Allow from all /Directory did you enable the index.php (DirectoryIndex) and other php-lines in the httpd.conf and load the php-module ? ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Mark Ovens wrote: That's fixed it, thanks :-) httpd.conf from the previous version I had installed doesn't have index.php in the DirectoryIndex directive, but it does have Duh! brain fade; that should say: ...does have index.php in the DirectoryIndex directive, and it also has Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-0, 31/01/2005 Tested on: 01/02/2005 17:48:40 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Tim Erlin wrote: Andrew L. Gould wrote: Not necessarily. I've heard lots of complaints about PHP and Apache2 not playing nice. (Does anyone have any updates on this situation?) I've been running apache2 with squirrelmail for a while. The biggest problems were performance issues. Squirrelmail was very slow pulling mail from the disk. Not sure that apache13 would help there. I finally installed apache13-ssl after trying to portupgrade -o to apache2 and trashing everything. Anyway, it's all working now, except that when I try to connect to squirrelmail in a browser I just get a directory listing of /usr/local/www/squirrelmail. I've reinstalled squirrelmail and run the configure script. Alias in httpsd.conf is copied from the old httpd.conf: Alias /squirrelmail/ /usr/local/www/squirrelmail/ Directory /usr/local/www/squirrelmail Options Indexes FollowSymlinks MultiViews AllowOverride None Order allow,deny Allow from all /Directory Which worked before. Any idea what I've missed? Sounds a bit like you have either a file with the wrong ownership or permissions or you still need to do an AddType or possibly a DirectoryIndex directive in the httpd.conf file. jerry Regards, Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-0, 31/01/2005 Tested on: 01/02/2005 16:54:20 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
On Mon, 31 Jan 2005 14:25:04 -0600, Tim Erlin [EMAIL PROTECTED] said: Andrew L. Gould wrote: Not necessarily. I've heard lots of complaints about PHP and Apache2 not playing nice. (Does anyone have any updates on this situation?) I've been running apache2 with squirrelmail for a while. The biggest problems were performance issues. Squirrelmail was very slow pulling mail from the disk. Not sure that apache13 would help there. I too have been using apache2 + SSL with SquirrelMail. I have had no problems --- performance or otherwise. Are you sure that your performance issues are really a PHP issue and not a problem with your IMAP server? Do you see the same problems if you use a different IMAP client? ...Sandy ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
apache+SSL, which port?
I want to install apache with SSL but there are two ports, www/apache13-modssl and www/apache13-ssl What is the difference, and which is the best to install? It is just for use on my home LAN but I want to run squirrelmail to access my mail from remote machines. TIA Regards, Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-0, 31/01/2005 Tested on: 31/01/2005 18:14:43 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Mark Ovens wrote: I want to install apache with SSL but there are two ports, www/apache13-modssl and www/apache13-ssl What is the difference, and which is the best to install? i think the apache13-ssl has SSL build in, the other uses a module for SSL It is just for use on my home LAN but I want to run squirrelmail to access my mail from remote machines. there's also apache2 which, afaik, builds with SSL by default ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
On Jan 31, 2005, at 1:22 PM, albi wrote: Mark Ovens wrote: I want to install apache with SSL but there are two ports, www/apache13-modssl and www/apache13-ssl What is the difference, and which is the best to install? i think the apache13-ssl has SSL build in, the other uses a module for SSL Apache-1.3 does not have SSL built-in. The port www/apache13-ssl is using Ben Laurie's SSL, whereas mod_ssl is by Ralf Engelschall. See: http://www.apache-ssl.org/#Credits http://www.modssl.org/ It is just for use on my home LAN but I want to run squirrelmail to access my mail from remote machines. there's also apache2 which, afaik, builds with SSL by default Yes, apache2 has support for SSL built-in, and will enable SSL if the system it is built on has it available (which is true for all recent FreeBSD versions). -- -Chuck ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Charles Swiger wrote: On Jan 31, 2005, at 1:22 PM, albi wrote: Mark Ovens wrote: I want to install apache with SSL but there are two ports, www/apache13-modssl and www/apache13-ssl What is the difference, and which is the best to install? i think the apache13-ssl has SSL build in, the other uses a module for SSL Apache-1.3 does not have SSL built-in. The port www/apache13-ssl is using Ben Laurie's SSL, whereas mod_ssl is by Ralf Engelschall. See: http://www.apache-ssl.org/#Credits http://www.modssl.org/ It is just for use on my home LAN but I want to run squirrelmail to access my mail from remote machines. there's also apache2 which, afaik, builds with SSL by default Yes, apache2 has support for SSL built-in, and will enable SSL if the system it is built on has it available (which is true for all recent FreeBSD versions). So apache2 is the way to go then? Mark --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 0505-0, 31/01/2005 Tested on: 31/01/2005 18:39:35 avast! - copyright (c) 2000-2004 ALWIL Software. http://www.avast.com ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
On Monday 31 January 2005 12:39 pm, Mark Ovens wrote: Charles Swiger wrote: On Jan 31, 2005, at 1:22 PM, albi wrote: Mark Ovens wrote: I want to install apache with SSL but there are two ports, www/apache13-modssl and www/apache13-ssl What is the difference, and which is the best to install? i think the apache13-ssl has SSL build in, the other uses a module for SSL Apache-1.3 does not have SSL built-in. The port www/apache13-ssl is using Ben Laurie's SSL, whereas mod_ssl is by Ralf Engelschall. See: http://www.apache-ssl.org/#Credits http://www.modssl.org/ It is just for use on my home LAN but I want to run squirrelmail to access my mail from remote machines. there's also apache2 which, afaik, builds with SSL by default Yes, apache2 has support for SSL built-in, and will enable SSL if the system it is built on has it available (which is true for all recent FreeBSD versions). So apache2 is the way to go then? Mark Not necessarily. I've heard lots of complaints about PHP and Apache2 not playing nice. (Does anyone have any updates on this situation?) If you plan on using PHP, you may want to stick with Apache 1.3. Best of luck, Andrew Gould ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: apache+SSL, which port?
Andrew L. Gould wrote: Not necessarily. I've heard lots of complaints about PHP and Apache2 not playing nice. (Does anyone have any updates on this situation?) I've been running apache2 with squirrelmail for a while. The biggest problems were performance issues. Squirrelmail was very slow pulling mail from the disk. Not sure that apache13 would help there. --Tim Erlin ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: apache+SSL, which port?
-Original Message- From: Andrew L. Gould [mailto:[EMAIL PROTECTED] Sent: Monday, January 31, 2005 1:07 PM To: freebsd-questions@freebsd.org Cc: Mark Ovens Subject: Re: apache+SSL, which port? On Monday 31 January 2005 12:39 pm, Mark Ovens wrote: Charles Swiger wrote: On Jan 31, 2005, at 1:22 PM, albi wrote: Mark Ovens wrote: I want to install apache with SSL but there are two ports, www/apache13-modssl and www/apache13-ssl What is the difference, and which is the best to install? i think the apache13-ssl has SSL build in, the other uses a module for SSL Apache-1.3 does not have SSL built-in. The port www/apache13-ssl is using Ben Laurie's SSL, whereas mod_ssl is by Ralf Engelschall. See: http://www.apache-ssl.org/#Credits http://www.modssl.org/ It is just for use on my home LAN but I want to run squirrelmail to access my mail from remote machines. there's also apache2 which, afaik, builds with SSL by default Yes, apache2 has support for SSL built-in, and will enable SSL if the system it is built on has it available (which is true for all recent FreeBSD versions). So apache2 is the way to go then? Mark Not necessarily. I've heard lots of complaints about PHP and Apache2 not playing nice. (Does anyone have any updates on this situation?) If you plan on using PHP, you may want to stick with Apache 1.3. I use Apache2 with PHP and SSL without problems. Have been for a very long time. We probably run 15 or so sites that fall under this. CONFIDENTIALITY NOTE: This electronic transmission, including all attachments, is directed in confidence solely to the person(s) to whom it is addressed, or an authorized recipient, and may not otherwise be distributed, copied or disclosed. The contents of the transmission may also be subject to intellectual property rights and all such rights are expressly claimed and are not waived. If you have received this transmission in error, please notify the sender immediately by return electronic transmission and then immediately delete this transmission, including all attachments, without copying, distributing or disclosing same. ___ freebsd-questions@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
pkg_add php4 with apache+ssl
Hello, I am running FreeBSD 5.2.1 I have used pkg_add to setup apache with ssl (apache+mod_ssl-1.3.29+2.8.16) Now I am trying to setup PHP4 using pkg_add as well (php4-4.3.4_2) I had to use -force option as php4 looks for apache without mod_ssl. Now when I run apachectl configtest I get the following message: [warn] Loaded DSO modules/libphp4.so uses plain Apache 1.3 API, this module might crash under EAPI! (please recompile it with -DEAPI) I'm not sure I want to get in downloading ports and compiling at this stage. What are my options to fix this situation. Thanks for the help. Abid ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: pkg_add php4 with apache+ssl
On Tue, Sep 28, 2004 at 01:24:10PM -0400, Abid Saigol wrote: I have used pkg_add to setup apache with ssl (apache+mod_ssl-1.3.29+2.8.16) Now I am trying to setup PHP4 using pkg_add as well (php4-4.3.4_2) I had to use -force option as php4 looks for apache without mod_ssl. Now when I run apachectl configtest I get the following message: [warn] Loaded DSO modules/libphp4.so uses plain Apache 1.3 API, this module might crash under EAPI! (please recompile it with -DEAPI) I'm not sure I want to get in downloading ports and compiling at this stage. What are my options to fix this situation. Ummm... downloading ports and compiling. That is your only option for running that combination of software. However, stories of the awfulness of compiling your own software are viciously exaggurated by those that have never had the pleasure of using the ports system. The worst problem you're going to have is the wait to download the ports, and even that can be minimized by installing from one of the FreeBSD installion disks and then by using cvsup(1) as shown in the cvsup FAQ to adopt the installed stuff and update it properly. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgpdSrbLLCtRp.pgp Description: PGP signature
Re: apache + SSL, modssl vs OpenSSL
On Sun, Feb 29, 2004 at 02:07:03PM -1000, Vincent Poy wrote: I'm planning to upgrade my old apache with a newer version and add SSL but I noticed the ports has both apache + modssl as well as apache + OpenSSL, are there any differences between the two of them and is one of them better than the other? Thanks. apache+mod_ssl is my preference, but that's really just me. Either will serve you well. Functionality and configuration file sysntax is slightly different between the two but that's mostly a matter of individual preference rather than any organic difference. One thing that mod_ssl supplies is the EAPI, which enables a number of other extensions to apache, such as the ability to define and use variables within the apache configuration files. You might be interested to know that mod_ssl is a standard part of Apache 2.x Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK pgp0.pgp Description: PGP signature
apache + SSL, modssl vs OpenSSL
Greetings all: I'm planning to upgrade my old apache with a newer version and add SSL but I noticed the ports has both apache + modssl as well as apache + OpenSSL, are there any differences between the two of them and is one of them better than the other? Thanks. Cheers, Vince - [EMAIL PROTECTED] - Vice President __ Unix Networking Operations - FreeBSD-Real Unix for Free / / / / | / |[__ ] WurldLink Corporation / / / / | / | __] ] San Francisco - Honolulu - Hong Kong / / / / / |/ / | __] ] HongKong Stars/Gravis UltraSound Mailing Lists Admin /_/_/_/_/|___/|_|[] [EMAIL PROTECTED] - oahu.DAL.NET Hawaii's DALnet IRC Network Server Admin ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache ssl certificates?
Eric F Crist wrote: On Tuesday 17 February 2004 10:48 pm, Saint Aardvark the Carpeted wrote: Eric F Crist disturbed my sleep to write: When I go the the server via https:servername I get a dialog asking for me to accept a certificate, but it's still the snakeoil cert! What am I doing wrong? I hate to ask the obvious, but have you restarted Apache? I know that's bit me a couple times... Hugh That's a fair questions, but yes. I've checked my syntax and restarted multiple times. I've even taken the old snake-oil certificate and it's entire containing directory and moved it to a completely different part of the system. What kills me more is that I've set these systems up before. Thanks for the replies... Hi, More to the point, try stopping apache and then starting it. For some reason apache does not read the new certs on a apachectl restart. -- -Ryan Merrick [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Apache ssl certificates?
Hello list, I've been using apache 1.3.x with mod_ssl with the snakeoil certs that are installed originally. Now, I'm trying to create a CA cert and then a certificate signed by that CA. That part is fine. Where I'm having difficulties is in the configuration. I've got the two following lines in my httpd.conf file: SSLCertificateFile /usr/local/etc/apache/ca-dir/seccomp-srv.crt SSLCertificateKeyFile /usr/local/etc/apache/ca-dir/seccomp-key.key When I go the the server via https:servername I get a dialog asking for me to accept a certificate, but it's still the snakeoil cert! What am I doing wrong? TIA Eric F Crist President AdTech Integrated Systems, Inc (612) 998-3588 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache ssl certificates?
Eric F Crist disturbed my sleep to write: When I go the the server via https:servername I get a dialog asking for me to accept a certificate, but it's still the snakeoil cert! What am I doing wrong? I hate to ask the obvious, but have you restarted Apache? I know that's bit me a couple times... Hugh -- Saint Aardvark the Carpeted [EMAIL PROTECTED] Because the plural of Anecdote is Myth. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache ssl certificates?
On Tuesday 17 February 2004 10:48 pm, Saint Aardvark the Carpeted wrote: Eric F Crist disturbed my sleep to write: When I go the the server via https:servername I get a dialog asking for me to accept a certificate, but it's still the snakeoil cert! What am I doing wrong? I hate to ask the obvious, but have you restarted Apache? I know that's bit me a couple times... Hugh That's a fair questions, but yes. I've checked my syntax and restarted multiple times. I've even taken the old snake-oil certificate and it's entire containing directory and moved it to a completely different part of the system. What kills me more is that I've set these systems up before. Thanks for the replies... -- Eric F Crist AdTech Integrated Systems, Inc (612) 998-3588 pgp0.pgp Description: signature
Re: Apache ssl certificates?
On Wed, 18 Feb 2004, Eric F Crist wrote: On Tuesday 17 February 2004 10:48 pm, Saint Aardvark the Carpeted wrote: Eric F Crist disturbed my sleep to write: When I go the the server via https:servername I get a dialog asking for me to accept a certificate, but it's still the snakeoil cert! What am I doing wrong? I hate to ask the obvious, but have you restarted Apache? I know that's bit me a couple times... another pretty lame reply, what about permissions on those certs? i imagine they should be quite restrictive yet httpd has to read them. m Hugh That's a fair questions, but yes. I've checked my syntax and restarted multiple times. I've even taken the old snake-oil certificate and it's entire containing directory and moved it to a completely different part of the system. What kills me more is that I've set these systems up before. Thanks for the replies... -- Eric F Crist AdTech Integrated Systems, Inc (612) 998-3588 ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache+ssl
On Tue, Dec 09, 2003 at 03:16:21PM -0500, Marius Kirschner wrote: Tried to update my old apache+ssl to the latest and am getting the following error: making all in tools... === Installing for openssl-0.9.7c === Generating temporary packing list === Checking if security/openssl already installed ln: illegal option -- h usage: ln [-fisv] file1 file2 ln [-fisv] file ... directory link file1 file2 *** Error code 1 Stop in /usr/ports/security/openssl. *** Error code 1 Stop in /usr/ports/www/apache13-ssl. Any idea how to work around that? Update to a supported version of FreeBSD. Kris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
apache SSL configuration problems
Hi Tom, I have read some of your responses in connection to apache/virtual-host configuration issues ( eg. Owen Boyle june 03). Your responses are indeed clear and consise. However, I am a bit confused although I have managed to make some progress. My purpose is to set up an ecommerce site on a single server (regular and secure html served). My current situation/problem is as follows: 1) https://www.mydomain.com/does NOT work - page cannot be displayed 2) https://localhost works fine Is this enough information to indicate what might be the souce of the problem? I have attached my config file for reference. I think my problem has to do with the following rule: Name-based virtual hosting cannot be used with SSL secure servers because of the nature of the SSL protocol. However, I am not sure what the correct solution would be. I do realize that that are a few gaps in my understanding since I am fairly new to this areas. My domain is currently set up with domain with domain-forwarding Regards and TIA.. Nagib Jamal PS. My domain is currently set up with domain-forwarding rather than via a DNS with the ISP (makes any difference ??). httpd_confused.conf Description: Binary data ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Apache+ssl
Tried to update my old apache+ssl to the latest and am getting the following error: making all in tools... === Installing for openssl-0.9.7c === Generating temporary packing list === Checking if security/openssl already installed ln: illegal option -- h usage: ln [-fisv] file1 file2 ln [-fisv] file ... directory link file1 file2 *** Error code 1 Stop in /usr/ports/security/openssl. *** Error code 1 Stop in /usr/ports/www/apache13-ssl. Any idea how to work around that? ---Marius ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Problems with Apache+ssl
am having a bear of a time getting apache+ssl to run on the system. It installs fine but I can't seem to get a page to display using localhost, the ipnumber or the Domain name. I come from the Windows World where it works right out of the box so bare with me. I run httpsd and it seems to load. I edited the httpd.conf with the correct entries as far as I can see. But it still will not run a page in the browser. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Problems with Apache+ssl
- Original Message - From: William Knechtel [EMAIL PROTECTED] To: Daryl Hunt [EMAIL PROTECTED] Sent: Tuesday, July 29, 2003 9:34 PM Subject: RE: Problems with Apache+ssl When you run a ps ax|grep http what are the results? 6598 p0 S+ 0:00.01 grep http Do you get ANY page (i.e. the default it worked page), and if not, what is the error your browser gives you? No page whatsoever. It's the standard DNS (can't find nothun) page. what happens when you try telnetting to localost port 80 and port 443? Same thing. It just does the Can't find it page. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daryl Hunt Sent: Tuesday, July 29, 2003 9:25 PM To: [EMAIL PROTECTED] Subject: Problems with Apache+ssl am having a bear of a time getting apache+ssl to run on the system. It installs fine but I can't seem to get a page to display using localhost, the ipnumber or the Domain name. I come from the Windows World where it works right out of the box so bare with me. I run httpsd and it seems to load. I edited the httpd.conf with the correct entries as far as I can see. But it still will not run a page in the browser. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
RE: Problems with Apache+ssl
You aren't running any sort of httpd. What do you do to start it? Try apachectl startssl. -Original Message- From: [EMAIL PROTECTED] [mailto:owner-freebsd- [EMAIL PROTECTED] On Behalf Of Daryl Hunt Sent: July 29, 2003 11:55 PM To: William Knechtel Cc: [EMAIL PROTECTED] Subject: Re: Problems with Apache+ssl - Original Message - From: William Knechtel [EMAIL PROTECTED] To: Daryl Hunt [EMAIL PROTECTED] Sent: Tuesday, July 29, 2003 9:34 PM Subject: RE: Problems with Apache+ssl When you run a ps ax|grep http what are the results? 6598 p0 S+ 0:00.01 grep http Do you get ANY page (i.e. the default it worked page), and if not, what is the error your browser gives you? No page whatsoever. It's the standard DNS (can't find nothun) page. what happens when you try telnetting to localost port 80 and port 443? Same thing. It just does the Can't find it page. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Daryl Hunt Sent: Tuesday, July 29, 2003 9:25 PM To: [EMAIL PROTECTED] Subject: Problems with Apache+ssl am having a bear of a time getting apache+ssl to run on the system. It installs fine but I can't seem to get a page to display using localhost, the ipnumber or the Domain name. I come from the Windows World where it works right out of the box so bare with me. I run httpsd and it seems to load. I edited the httpd.conf with the correct entries as far as I can see. But it still will not run a page in the browser. ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to freebsd-questions- [EMAIL PROTECTED] ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Apache-ssl
I have found this in my httpsd_error_log: No SSL Certificate set for server programs.com:80 How can I set the Certificate? To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Apache-ssl
On Sun, Feb 02, 2003 at 01:27:48PM +0100, Gannater János wrote: I have found this in my httpsd_error_log: No SSL Certificate set for server programs.com:80 How can I set the Certificate? See http://www.modssl.org/docs/2.8/ssl_reference.html#ToC10 or http://httpd.apache.org/docs-2.0/mod/mod_ssl.html#sslcertificatefile You'll probably need to setup certificates in each HTTPS-enabled virtual host on your server, or else the Distinguished Name from the certificate won't match the URL of the site. Cheers, Matthew -- Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks Savill Way PGP: http://www.infracaninophile.co.uk/pgpkey Marlow Tel: +44 1628 476614 Bucks., SL7 1TH UK To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Apache-SSL
I am tring to put apache-ssl on my computer. My problem is that when I use the command: make certificate at the /usr/ports/www/apache13-ssl directory the following error comes up at the end: cp: /usr/ports/www/apache13- ssl/work/apache_1.3.27/SSLconf/conf/httpsd.pem: No such file or directory *** Error code 1 What could be the problem? To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
apache+ssl-1.3.27.1.48_1 has missing libssl.so.2
I just installed the apache+ssl-1.3.27.1.48_1.tgz package on my 4.7 box and the damn thing wont start...has this error message. # httpsdctl start /usr/libexec/ld-elf.so.1: Shared object libssl.so.2 not found /usr/local/sbin/httpsdctl start: httpsd could not be started find / -name libssl.so.2 turns up nothing as its not on the system. i have installed three different openssl packages from the ftp.freebsd.org/ server and cant find the needed lib. i have even removed the apache+ssl app and openssl port so i could try to add back apache by # pkg_add ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-4-current/www/apache+ssl-1.3.27.1.48_1.tgz because usually adding packages this way, the deps get dowloaded automatically. as you can see below it only d/l the apache port. i have apache+mod+ssl on another mache but this is the newer one out and apache recommends it instead of the mod version. Fetching ftp://ftp.freebsd.org/pub/FreeBSD/ports/i386/packages-4-current/www/apache+ssl-1.3.27.1.48_1.tgz... Done. thanks in advance. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Apache-ssl
I compiled apache-ssl safely on my computer. No error came up! When I try to start it: /usr/local/sbin/httpsdctl start The following error comes up: /usr/local/sbin/httpsdctl restart: httpsd could not be started What should I do? To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Apache-ssl
On Fri, 31 Jan 2003, [ISO-8859-2] Gannater Jnos wrote: I compiled apache-ssl safely on my computer. No error came up! When I try to start it: /usr/local/sbin/httpsdctl start The following error comes up: /usr/local/sbin/httpsdctl restart: httpsd could not be started What should I do? try httpsdctl configtest, if its ok then check the error log for more information. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
RE: Installing apache+ssl / frontpage / php
Search the mailing list. It was just last week that I was running a thread on this. I couldn't find a way to get mod_frontpage hacked into my existing setup. I tried several times. Even going so far as to deinstall everything, then rm -r the directories, then reinstalling and only copying over my virtualhost section of the httpd.conf However, by doing a fresh install to 4.7, then compiling (in my case) www/apache13-modssl (as opposed to -ssl), www/mod_php4, www/mod_frontpage, and finally www/frontpage, then running /usr/local/frontpage/version5.0/fp_install.sh I got this to work out of box first try. RTR hasn't felt the need to keep the mod_frontpage apache patch up to date it would seem, but some adventurous folk have been kind enough to put one together that doesn't use the old patch method. Hope this helps, John Straiton [EMAIL PROTECTED] Clickcom, Inc 704-365-9970x101 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Andrew Nelson Sent: Thursday, December 19, 2002 2:10 AM To: [EMAIL PROTECTED] Subject: Installing apache+ssl / frontpage / php Hi, I wonder if anyone has this combination installed? I'm having a great deal of trouble getting SSL on with apache_fp.. I can install apache_fp, or apache_modssl, but can't put the missing mod on afterwards.. The only docs I can find are for much older version.. Is there anyone who's done that and can tell me the secret? thanks, Andrew. _ Tired of spam? Get advanced junk mail protection with MSN 8. http://join.msn.com/?page=features/junkmail To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-isp in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
RE: Installing apache+ssl / frontpage / php
At 09:28 AM 12.19.2002 -0500, John Straiton wrote: Search the mailing list. It was just last week that I was running a thread on this. I couldn't find a way to get mod_frontpage hacked into my existing setup. I tried several times. Even going so far as to deinstall everything, then rm -r the directories, then reinstalling and only copying over my virtualhost section of the httpd.conf However, by doing a fresh install to 4.7, then compiling (in my case) www/apache13-modssl (as opposed to -ssl), www/mod_php4, www/mod_frontpage, and finally www/frontpage, then running /usr/local/frontpage/version5.0/fp_install.sh I got this to work out of box first try. RTR hasn't felt the need to keep the mod_frontpage apache patch up to date it would seem, but some adventurous folk have been kind enough to put one together that doesn't use the old patch method. Hope this helps, John Straiton Hello, John -- glad you got it going. Sounds like the procedure I suggested, except perhaps php4, which I usually install last. Best regards, Jack L. Stone, Administrator SageOne Net http://www.sage-one.net [EMAIL PROTECTED] To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message