Hi,
I patched ssl_engine_kernel.c to realize an OCSP
responder function
that check cert status on
ldap v2 directory.
I send all my patch to ssl_engine_kernel.c, every routine
start is marked
with Giacob label. The ldap_hook search the
certificate in our ldap directory, by
client
Lin Geng wrote:
Did yuo check the format of the certificate and the key file? Apache uses
PEM.
This may sound daft, but I had a similar problem with a key
sent from BT Trustwise (they are a Verisign partner in the
UK). The problem was a blank line between the last line of
the key, and the
Weird, I had a line break problem with a Thawte certificate. The
certificate usually looks like
--begin certificate---
---end certificate---
and appeared like this in my browser. When I copied the certifcate from the
browser (IE 4) into Notepad, the last line of
Eric,
What you need to do is to add the IP address and 'secure' hostname to one
line in your hosts file, then add the below to you httpd.conf. I assume you
don't mean all hosts('secure' and 'www') from 1 IP. You will need a DNS
entry for secure.hostname.org.
VirtualHost
I am curious. IF the server certificate had a common name www.xxx.org and
the virtual host is yyy.xxx.org, should the browser considering the server
a fake?
On Tue, 11 May 1999, Derek Smith wrote:
Eric,
What you need to do is to add the IP address and 'secure' hostname to one
line in
Hi,
I patched ssl_engine_kernel.c to realize an OCSP
responder function
that check cert status on
ldap v2 directory.
I send all my patch to ssl_engine_kernel.c, every routine
start is marked
with Giacob label. The ldap_hook search the
certificate in our ldap directory, by
client
I know this is a stupid question, but what the heck: why haven't you used
another browser flavour and/or generation/major version/whatever?
Another shotgun blast into the dark: the browser errors, are they being sent
by the web server? If it's the browser, I'd hate to think that Netscape
3.x's
There have been some discussions about the child sig vec on the mailing
list. I did the following, trying to track down the problem
Mod PhP3:
\begin{verbatim}
setenv CC 'gcc -O'
configure --with-apxs=/usr/local/apache/bin/apxs
--with-pgsql=/home/postgres/postgresql
On Tue, May 11, 1999, Tim Armbruster wrote:
When do the performance disadvantages of gcache come into play?
First-time http requests? Second-time http requests? First-time https
requests? Second-time https requests?
gcache? mod_ssl no longer uses gcache since 2.1. Or do you speak just
giacob I patched ssl_engine_kernel.c to realize an OCSP responder function
giacob that check cert status on ldap v2 directory.
Perhaps should you consider sharing the changed file in plain text
instead of in rtf format?
--
Richard Levitte \ Spannvägen 38, II \ [EMAIL PROTECTED]
Tim Armbruster wrote:
When do the performance disadvantages of gcache come into play?
What disadvantages?
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are two kinds of people: those
who work and those who take the credit. He told me to try
- Original Message -
From: Lin [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, May 12, 1999 2:45 AM
Subject: Re: forcing secure via name (off topic?)
I am curious. IF the server certificate had a common name www.xxx.org and
the virtual host is yyy.xxx.org, should the
I am curious. IF the server certificate had a common name www.xxx.org and
the virtual host is yyy.xxx.org, should the browser considering the server
a fake?
If the Browser talks to yyy.x:443 he expects a X509 Cert with CN=yyy.xxx
In the case described by you the CN is invalid (from browsers
I am still having problems getting my certificate from Verisign to
work. I had a GlobalID, but now I have had a SecureSite certificate
issued, but I am still seeing the exact problem as I listed it
originally. See below. I am sure that the key works fine when
prompted for the PEM pass phrase
Title: Help!
Hi !
I need a advice currently I am running Apache 1.2.5 on Solaries 2.6 and I have to set up SSL.
The problem that I having is that I can not create rand.dat using ssleay ( ssleay md5 * rand.dat)
I need module which will allow me to
Generate Certificate and Private
Tim Armbruster wrote:
When do the performance disadvantages of gcache come into play?
Typo...sorry, I of course meant the disadvantages of DBM. The question was
answered ever so nicely by Mr. Engelschall, who claimed (to paraphrase) that
the performance disadvantages of DBM vs. gcache do
Can anyone tell me what I'm doing wrong here? I get
this error when I try to start httpd...
Starting httpd: httpd Syntax error in line 110 of
/etc/httpd/conf/httpd.conf: Cannot
add module via name 'mod_ssl.c': not in list of
loaded modules
Thanks is advance.
Chris Hearn
[EMAIL
On Tue, May 11, 1999, Chris Hearn wrote:
Can anyone tell me what I'm doing wrong here? I get this error when I try to start
httpd...
Starting httpd: httpd Syntax error in line 110 of /etc/httpd/conf/httpd.conf: Cannot
add module via name 'mod_ssl.c': not in list of loaded modules
You
On Tue, May 11, 1999, Genek Kubacki wrote:
I need a advice currently I am running Apache 1.2.5 on
Solaries 2.6 and I have to set up SSL.
The problem that I having is that I can not create rand.dat using
ssleay ( ssleay md5 * rand.dat)
I need module which will
19 matches
Mail list logo
