mod_sll + virtual hosts
When I try to load apache, I get the error: [Fri Aug 16 15:11:41 2002] [warn] NameVirtualHost :80 has no VirtualHosts [Fri Aug 16 15:11:41 2002] [warn] NameVirtualHost yy:80 has no VirtualHosts [Fri Aug 16 15:11:41 2002] [warn] NameVirtualHost xxx:80 has no VirtualHosts /usr/local/apache/bin/apachectl startssl: httpd could not be started contrary to what it says, http runs, but without ssl and I have virtualhosts for each namevirtualhost. How should I make my virtual hosts work with mod_sll? Can someone please provide a example? -- Iuri Fiedoruk Santa Maria, RS, Brazil GnuPG Key fingerprint = 9D5F 7FA6 EF2C 6A5E 914F E01B 9434 AA7D 032B 240F __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: can't load /usr/local/apach2/modules/mod_sll.so into server undefined symbol x509_free
didyou install openssl with shared libs? I recall this being a requirement for the apache 2 code. Also there is a newer version of apache available, it is a security update. Thanks, Ron DuFresne On Fri, 16 Aug 2002, Venkat Reddy Valluri wrote: > Hi, >I installed openssl 0.9.6g engine on redhat 7.3 over which i installed apache >2.0.39, It seems installation to be successful, > but when i tried to start apache with sll > ./apachecntl startssl > iam getiing >can't load /usr/local/apache2/modules/mod_ssl.so into server >/usr/local/apache2/modules/mod_ssl.so > > Any help greatly apprecitated > > Thks in advance > Venkat > -- ~~ admin & senior security consultant: sysinfo.com http://sysinfo.com "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart testing, only testing, and damn good at it too! __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: SSL reverse proxy + Client Cert auth
I'm not sure about checking another authority, but suspect the configs would be in conf/ssl.conf. For doing the reverse proxying, I edited proxy.conf and included it inside ssl.conf. Inside proxy.conf, statements like: ProxyPass /cgi/ http://10.0.10.1/cgi/ ProxyPassReverse /cgi/ http://10.0.10.1/cgi/ are what accomplishes the reverse proxying. In our case, https: comes into the proxy and we talk (behind the DMZ) http to the web servers. Danny Kruitbosch wrote: > Hi, > > We want to build the following situation: > > - Apache with mod_ssl as a reverse SSL proxy (Client ---> SSL/HTTPS > ---> Rev. proxy ---> HTTP ---> Web/App server) > - We need to check for client certificates. These certs are handed out > by another party (not a real TTP). We need to check the signature on > the client certs and the validity of the client certs. > > > What's the best way to do this. I've read the mod_ssl manual, but I > don't understand how I can check client certs from another (third) party. > > How do I setup Apache as an SSL reverse proxy? > > Any help on this would be great! > > Cheers, > > Danny Kruitbosch > > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] > -- .tom -- .tom http://isectd.sourceforge.net __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
can't load /usr/local/apach2/modules/mod_sll.so into server undefined symbol x509_free
Hi, I installed openssl 0.9.6g engine on redhat 7.3 over which i installed apache 2.0.39, It seems installation to be successful, but when i tried to start apache with sll ./apachecntl startssl iam getiing can't load /usr/local/apache2/modules/mod_ssl.so into server /usr/local/apache2/modules/mod_ssl.so Any help greatly apprecitated Thks in advance Venkat __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
SSLPassPhraseDialog on win32
Hi, I'm trying to get apache + mod_ssl work on Win32, but I'm getting this message: Init: SSLPassPhraseDialog builtin is not supported on Win32 (key file E:/Apache2/conf/ssl/www.domaine.dom.key) in the error.log file. Is there anything I can do to make that work? What exec program can I use on Win32 instead of the builtin type? Should I get rid of the password in the key? Thanks Éric __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
SSL reverse proxy + Client Cert auth
Hi, We want to build the following situation: - Apache with mod_ssl as a reverse SSL proxy (Client ---> SSL/HTTPS ---> Rev. proxy ---> HTTP ---> Web/App server) - We need to check for client certificates. These certs are handed out by another party (not a real TTP). We need to check the signature on the client certs and the validity of the client certs. What's the best way to do this. I've read the mod_ssl manual, but I don't understand how I can check client certs from another (third) party. How do I setup Apache as an SSL reverse proxy? Any help on this would be great! Cheers, Danny Kruitbosch __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]