-Original Message-
From: Barry Smoke [mailto:[EMAIL PROTECTED]
Sent: Freitag, 27. August 2004 17:25
To: [EMAIL PROTECTED]
Subject: Re: 1
these e-mails look strange,
virus?
Of course.
The spammer is submitting the mails to mail.modssl.org with the From
field spoofed to [EMAIL
- Original Message -
From: Don Woodward
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Sent: Monday, August 09, 2004 14:44
Subject: Possible virus infected user
Modssl list owner and [EMAIL PROTECTED]:
Please check [EMAIL PROTECTED] - I have received several
dozen e-mail's
Plain text please...
If you got an error in the ssl error-log then apache must be running.
The invalid method error is exactly that - the HTTP method wasn't GET,
POST etc... What request were you making when you got the error?
Cross-check the access log for details...
It looks like your
-Original Message-
From: Udo Schweigert [mailto:[EMAIL PROTECTED]
Sent: Donnerstag, 27. Mai 2004 17:03
To: [EMAIL PROTECTED]
Subject: Re: [ANNOUNCE] mod_ssl 2.8.18
On Thu, May 27, 2004 at 15:21:37 +0200, Ralf S. Engelschall wrote:
Changes with mod_ssl 2.8.18 (11-May-2004 to
Greetings,
This alert has appeared recently. Is anyone aware of it?
http://www.securityfocus.com/bid/10355/info/
There's nothing in CVE, Apache or mod_ssl about it...
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
Diese E-mail ist eine private und
-Original Message-
From: C G [mailto:[EMAIL PROTECTED]
Please don't alter the mail header. Keep the messages on-list.
Yes the key the is encrypted. When I start apache as root and
log on, it
asks me for a pass phrase. But when apache tries to start at
boot-up it just
hangs,
Greetings,
Does the DoS vulnerability reported in
http://secunia.com/advisories/11092/ affect the mod_ssl-2.8.16-1.3.29
codebase?
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
Diese E-mail ist eine private und persönliche Kommunikation. Sie hat
keinen
-Original Message-
From: Mads Toftum [mailto:[EMAIL PROTECTED]
Server Version: Apache/1.3.29 Ben-SSL/1.52 (Debian GNU/Linux)
debian versions: apache-ssl 1.3.29.0.1-5
You're asking on the wrong list then - this is the mod_ssl list, while
you're running apache-ssl which lives at
-Original Message-
From: Dale Weaver [mailto:[EMAIL PROTECTED]
I have Apache 1.3.27 compiled with mod SSL using openssl 0.9.6.g
OS=AIX 5.1.
The SSL site stops executing CGI scripts when load gets a little
high. I checked the process list and found 106 httpd servers running.
-Original Message-
From: John [mailto:[EMAIL PROTECTED]
I'm stuck... I have an understanding of how apache and ssl works but I
am having troubles in finding a way to set up this server. Most of the
searches I do seem to point to the fact that virtual name based hosting
will not work with
Just to ask the question... Is a mod_ssl_2.8.16-1.3.29 forseen?
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
-Original Message-
From: Zvi Har'El [mailto:[EMAIL PROTECTED]
Sent: Donnerstag, 30. Oktober 2003 09:54
To: [EMAIL PROTECTED]
Cc: [EMAIL
-Original Message-
From: Andreas Gietl [mailto:[EMAIL PROTECTED]
Mr Engelschall said yesterday on this list:
Arggg... I must've missed this... And I was especially looking out for
it!
my bad...
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
Yes,
-Original Message-
From: Torvald Baade Bringsvor [mailto:[EMAIL PROTECTED]
Sent: Donnerstag, 25. September 2003 08:19
To: '[EMAIL PROTECTED]'
Subject: Https problems with MSIE
Hello.
We have a user with MSIE 6.00.2800.1106 who is unable to
connect to one of
the sites we are hosting
-Original Message-
From: Dave Paris [mailto:[EMAIL PROTECTED]
snip... You claim to
have spent two MONTHS trying to find what I found in under 10
SECONDS.
Er... the difference is that you recognised the problem immediately
because you have seen it before. So you knew exactly what to
-Original Message-
From: Henrik Bentel [mailto:[EMAIL PROTECTED]
I have a web app which serves both static and non static content, both
secure and unsecure(https and http).
Now, all my ssl configuration is under my secure virtual host,
such that it applies to everything. However, I have
and not try to re-invent the
wheel.
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
On the other hand, with these new 1GHz+ P4 desk- and lap-tops
around, maybe
not.
- Original Message -
From: Boyle Owen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent
Greetings,
I'm trying to compile the new 2.8.15 with apache 1.3.28 but hit a
problem when make tries to run flex on the file
src/modules/ssl/ssl_expr_scan.l.
I'm running Solaris 8 on a Sparc and flex is version 2.4.7.
Up until now, I've always regarded flex as one of those mysterious
little
the source files in the tarball not having the proper
date stamps and
as Mad's mentiones, required a touch of a few files to make flex more
'flexable'?
Thanks,
Ron DuFresne
On Mon, 21 Jul 2003, Mads Toftum wrote:
On Mon, Jul 21, 2003 at 02:23:22PM +0200, Boyle Owen wrote:
Greetings,
I'm
.
- Original Message -
From: Boyle Owen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, May 28, 2003 3:31 AM
Subject: RE: unknown protocol
Plain text please...
It looks like you are not succeeding in starting an SSL VH.
Looking at your config, there is no obvious error, although I
don't
- Original Message -
From: Boyle Owen [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, May 28, 2003 3:31 AM
Subject: RE: unknown protocol
Plain text please...
It looks like you are not succeeding in starting an SSL VH.
Looking at your config, there is no obvious error, although I
don't
Plain text please...
It looks like you are not succeeding in starting an SSL VH.
Looking at your config, there is no obvious error, although I don't know
why you put the Listen 80 inside the IfDefine - this would mean that
even plain HTTP wouldn't work unless you started with SSL.
Just to be
Can we bring these threads together? It would seem we have:
Burkhard:
Apache/1.3.27 mod_gzip/1.3.26.1a PHP/4.3.1 mod_ssl/2.8.13
OpenSSL/0.9.7a
QUESTION: What OS?
And:
Jazz:
mod_ssl 2.8.13, OpenSSL 0.9.6i with apache 1.3.27
... on Solaris 2.6/Sparc
QUESTION: using PHP?
Both
-Original Message-
From: kulkarni veena [mailto:[EMAIL PROTECTED]
I have one machine which has apache+mod_ssl with a
self signed server certificate. is it possible to have
another self signed certificate using the same
Apache+mod_ssl instance but say a different port?
Yes. You simply
PLain text please..
Now you have to plough through the mail below to find my comments
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
-Original Message-
From: Zampognaro Sergio [mailto:[EMAIL PROTECTED]
Sent: Dienstag, 25. Februar 2003 15:05
To:
to do a fresh install involvoing vhosts and
this will become
an important issue.
Thanks!
At 10:02 AM 2.19.2003 -0700, Ian Moon wrote:
I believe that I read somewhere that you must have a different
ip address for each ssl virtualhost.
Ian Moon
On Wed, 19 Feb 2003, Boyle Owen wrote
Moon
On Wed, 19 Feb 2003, Boyle Owen wrote:
-Original Message-
From: Steve Pirk [mailto:[EMAIL PROTECTED]]
Sent: Donnerstag, 6. Februar 2003 02:02
To: [EMAIL PROTECTED]
Subject: Multiple SSL VirtualHosts in apache
I check the mail archives, but could not find a good
-Original Message-
From: Steve Pirk [mailto:[EMAIL PROTECTED]]
Sent: Donnerstag, 6. Februar 2003 02:02
To: [EMAIL PROTECTED]
Subject: Multiple SSL VirtualHosts in apache
I check the mail archives, but could not find a good
answer for this problem I am having.
I am building out a dev
Is any content on the page non-secure? (i.e. all img tags have to be
https too).
Rgds,
Owen Boyle
-Original Message-
From: Jan Cohen [mailto:[EMAIL PROTECTED]]
Sent: Montag, 10. Februar 2003 03:50
To: [EMAIL PROTECTED]
Subject: cgi-bin broken lock
Hi all,
I've got ssl up and running
Just to get things clear, openSSL is a library of functions which is
used by (among other things) mod_ssl. So mod_ssl needs to know about
openSSL but openSSL doesn't care which application is using it. Your
installation paths are a bit idiosyncratic, which is OK as long as you
have a clear idea
Please post in plain-text... -
Your error: [Hint: Subject CN in certificate not server name or
identical to CA!?]
means: the Common Name in the certificate is not the same as the
ServerName in the URL - e.g. the certificate belongs to www.abcdef.com
but you are using it in a server whose URL is
-Original Message-
From: Aihong Yin [mailto:[EMAIL PROTECTED]]
Sent: Mittwoch, 29. Januar 2003 11:00
To: [EMAIL PROTECTED]
Subject: [warn] RSA server certificate CommonName (CN) `yin.*' does NOT
match server name!?
Hello all,
I am trying to setup my server (apache 2.0.43, opensl 0.9.6g
PLease post in plain text - my mail client doesn't handle HTML mail...
The thing you type into the browser's Location window has to match
what's in the cert. Does it? If you are doing all this on a standalone
laptop, I doubt it.
-Original Message-
From: Aihong Yin [mailto:[EMAIL
-Original Message-
From: Aihong Yin [mailto:[EMAIL PROTECTED]]
Sent: Mittwoch, 29. Januar 2003 12:47
To: [EMAIL PROTECTED]
Subject: Re: [warn] RSA server certificate CommonName (CN)
`yin.fokus.gmd.de' does NOT match server name!?
Boyle Owen wrote:
PLease post in plain text - my mail
You have inconsistent notation and a confused mapping.
- Do not put a trailing slash on the alias or the directory.
- You should have only one ScriptAlias per CGI directory.
- You can match only one directory to each alias (you can have two
aliases for one directory).
... it's like buses: Two
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
Nearly everything we believe is second hand. For example, less than 500
people have seen the Earth from space, yet the majority of
people believe it is round (or an oblate sphere for the pedants).
Perhaps. But this
-Original Message-
From: rmck [mailto:[EMAIL PROTECTED]]
Whats the benefit of mod_ssl compared to Apache-SSL???
One has got mod in its name and the other hasn't :-)
I am not expert enough to comment on the two implementations of SSL
technology so I restrict myself to the useability
Nope.. It didn't work. We didn't see anything.
-Original Message-
From: Kyle O'Donnell [mailto:[EMAIL PROTECTED]]
Sent: Sonntag, 12. Januar 2003 12:41
To: [EMAIL PROTECTED]
Subject: sorry all, test
test
__
Apache
I believe you can get wildcard certs from Thwate. Check out their site.
NB - wildcards are like *.acme.com so www1.acme.com, www2.acme.com etc
all work. You cannot get *.*.com to work in any case.
Rgds,
Owen Boyle
-Original Message-
From: Barry Smoke [mailto:[EMAIL PROTECTED]]
Sent:
-Original Message-
From: James Collier [mailto:[EMAIL PROTECTED]]
I realise I am on thin ice as it would be a reasonable
optimisation to assign the final virtual host at an earlier
stage than is currently the case with SSL.
I wouldn't worry too much. Currently, in an SSL transaction,
Regards,
James.
PS For those of you who were wondering, we use a private CA to
issue the
wildcard server cert. As someone has already noted, Thawte advertise
them as well.
Boyle Owen wrote:
-Original Message-
From: James Collier [mailto:[EMAIL PROTECTED]]
I realise I am on thin ice
-Original Message-
From: Irving Carrion [mailto:[EMAIL PROTECTED]]
Sent: Donnerstag, 9. Januar 2003 15:42
To: [EMAIL PROTECTED]
Subject: RE: 2 VirtualHosts with 2 Certificates
Everyone knows this question will not stop coming... is it possible to
return an error message to the user when
There is a major thread running on the openssl list about this very
thing (Slapper worm)... Starts here:
http://www.mail-archive.com/openssl-users@openssl.org/msg29762.html
Rgds,
Owen Boyle
-Original Message-
From: Sergey Strakhov [mailto:[EMAIL PROTECTED]]
Sent: Donnerstag, 19.
It is an obvious loop. Why are you suprised that this loops? Please
provide:
1) Example of incoming URL
2) What you want it to translate to
Rgds,
Owen Boyle
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
Sent: Montag, 16. Dezember 2002 15:32
To: [EMAIL PROTECTED]
Your openSSL libs are a bit old - there have been many important code
updates since 0.9.6b. In particular, the most recent update (0.9.6h)
fixed race condition bugs that were causing intermittent failures. Try
an upgrade first, I would advise...
Rgds,
Owen Boyle
-Original Message-
From:
PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: Re: Problem with IP/Port Based (NOT Name Based) virtual hosts.
Hi there. Thanks for the help. I have some followup comments
inline...
On Tue, Dec 10, 2002 at 09:04:35AM +0100, Boyle Owen wrote:
You must be the first guy to figure this out from
See comments..
-Original Message-
From: Alex Tang [mailto:[EMAIL PROTECTED]]
Sent: Dienstag, 10. Dezember 2002 08:07
To: [EMAIL PROTECTED]
Cc: Alex Tang
Subject: Problem with IP/Port Based (NOT Name Based) virtual hosts.
Hi folks.
I've read a bunch about how you can only do virtual
You
can't. Otherwise you could change it to www.amazon.com
You
need a new cert - which might be a problem if it's not
self-signed.
-Original Message-From: Gilberto Garcia Jr.
[mailto:[EMAIL PROTECTED]]Sent: Freitag, 6. Dezember 2002
13:15To: mod sslSubject: changing
From: Cliff Woolley [mailto:[EMAIL PROTECTED]]
But please, people, this is SUCH a frequently asked question.
Definitely one of the top three.
I'd say it is THE most frequently asked question (but I can't be
bothered scanning the archives to prove it :-)
The FAQ
Have you tried?
Post your attempted config directives and describe what happened or went
wrong and I'm sure someone will respond.
-Original Message-
From: Gilberto Garcia Jr. [mailto:[EMAIL PROTECTED]]
Sent: Freitag, 22. November 2002 13:12
To: mod ssl
Subject: can´t configure mod_ssl
You have to describe clearly what you did.
- Post the extract of httpd.conf which defines your SSL virtual host
- cut'n'paste the command you are using to start apache in SSL
- post the *exact* error you receive
- post any messages which appear in the ssl_engine_log and/or error_log
Then we
I think you're misunderstanding something about how apache and SSL work.
It is not that you switch on SSL over all VHs like it was a Romulan
Cloaking Device...
Rather, SSL (more properly, HTTPS) is a protocol you define for a
particular virtual host. This means the SSL directives *must* go inside
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]
are you saying i can use the same ip and two different port to
be able to have more than one vhs under ssl?
Certainly. e.g.
Listen 192.168.1.1:443
VirtualHost 192.168.1.1:443
..etc
Listen 192.168.1.1:444
VirtualHost
Great! But do you know why?
BindAddress is a deprecated directive which is replaced by Listen. What
you have done is said to apache, listen to all active IP addresses.
I think the real problem is to do with your NAT (which you didn't
mention on your original post). This meant that the IP
You are trying to run two name based VHs under SSL. You cannot do this
(see http://www.modssl.org/docs/2.8/ssl_faq.html#ToC47).
The problem is that SSL encapsulates HTTP so the SSL session has to be
negotiated before any HTTP traffic can be seen. But the hostname is in
the HTTP request, so apache
-Original Message-
From: Ludovic Perard [mailto:[EMAIL PROTECTED]]
I'm already using two different IP addresses
Then it should work. Are you sure?
Try defining the IP addresses explicity to reveal any DNS
misconfigurations:
Listen 192.168.1.1:443
VH 192.168.1.1:443
...
Listen
You're correct, there's nothing sacred about using a VirtualHost
container - if you only want one site...
If you do, you just need a single Listen 443 then put all the SSL
directive at server config level. Your server will then serve only SSL
pages on port 443 and will not respond at all on port
Do you have Listen 443, have you set up an SSL VH, does it say
anything in the SSL engine log, error_log etc..?
-Original Message-
From: Noah Garrett Wallach [mailto:sleek;enabled.com]
Sent: Donnerstag, 14. November 2002 17:09
To: [EMAIL PROTECTED]
Subject: Re: modssl not running properly
It's an ingenious attempt and it may seem to work but there is a lot
going on that you might not be aware of. Consider what happens when
someone types https://domain2/; into their browser:
- the browser gets the IP address for domain2 (which is the same IP
address as domain1) and then sends a
You can't get around the problem with rewrite rules. The essential
problem is that HTTPS encapsulates HTTP. What this means is that when
apache gets an HTTPS request, it has to route it to a virtual host using
*only* its TCP/IP attributes (IP addr and port no). It cannot use any
HTTP attributes
PLease type SSL name-based virtual hosts into Google and read some of
the replies - I can't bear to explain this one again...
-Original Message-
From: Alex [mailto:alex;damngeek.com]
Sent: Donnerstag, 7. November 2002 17:55
To: [EMAIL PROTECTED]
Subject: ModSSL and VirtualHosts
I think
Sorry. That last post was harsh - it's been a long day. But everyone
(including me) who moves into SSL immediately wonders why name-based VHs
don't work. You are the second person *today* to ask this...
The problem is that the packet is encrypted so apache can't see the Host
header so doesn't
+0100
Boyle Owen [EMAIL PROTECTED] wrote:
No. This is called name-based virtual hosting (NBVH). It works fine
for
plain HTTP but is impossible under SSL.
The reason is that NBVH uses the Host header to find the VH. But in
SSL, the connection must be established *before* you get the Host
header
Don't forget:
Listen 192.168.1.2:443
Listen 192.168.1.3:443
-Original Message-
From: Peter Viertel [mailto:peter.viertel;itaction.co.uk]
Sent: Dienstag, 5. November 2002 14:17
To: [EMAIL PROTECTED]
Subject: Re: Configuring Multiple Certicates SSL over an unique IP
I'm thinking you
No. This is called name-based virtual hosting (NBVH). It works fine for
plain HTTP but is impossible under SSL.
The reason is that NBVH uses the Host header to find the VH. But in
SSL, the connection must be established *before* you get the Host
header. So the server cannot decide which VH to
or make commands. Do I need to
edit the Makefile? Can you give me an example?
Regards,
Lawrence
-Original Message-
From: [EMAIL PROTECTED]
[mailto:owner-modssl-users;modssl.org] On Behalf Of Boyle Owen
Sent: Wednesday, October 30, 2002 2:21 AM
To: [EMAIL PROTECTED]
Subject: RE: Startup
Quick fix is to put in the startup script:
LD_LIBRARY_PATH=/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib
before it tries to start apache..
Better fix is to recompile apache with the additional compile-time
options: -L/usr/openwin/lib -R/usr/openwin/lib etc. (one pair for each
lib). This should
I suspect that the problem is that /usr/local/ssl is not on your
LD_LIBRARY_PATH. For a quick fix, add it. For a better solution (since
LD_LIBRARY_PATH is A Bad Thing), recompile with -L/usr/local/ssl
-R/usr/local/ssl..
-Original Message-
From: Zandi Patrick S TSgt AFRL/IFOSS
What you see is predictable - your setup appears to work because apache
fetches the certificate from the first VH (since it can't tell which VH
to use). Once it gets a cert, it can then establish an SSL sssion and so
can then see inside the HTTP request. It can then see the Host header
and serve
What spec do you have on the server and client?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:erwin.vogeleer;deltalloydLife.be]
Sent: Mittwoch, 23. Oktober 2002 16:09
To: [EMAIL PROTECTED]
Subject: SSL - MS Proxy 2.0 - MSIE6
Dear all,
I'm using:
Apache 1.3.26
mod_ssl: 2.8.10
You mean you have one IP address and one FQDN but many physical machines?
Then you need a load-balancer. That is, the LB carries the external IP address so all
packets are routed initially to it. Then it re-routes the packets to one of the
internal servers according to various rules (e.g.
In
order to add mod_ssl to apache, you must recompile. The reason is that the
apache core code is equipped with an application programming interface
(API) which makes it relatively easy for people to write third-party modules and
integrate them with apache. However, mod_ssl is a bit special
The SSL session is established *before* any HTTP traffic takes place. If the session
fails to be set up, the client cannot send any request through to apache, which
operates at the HTTP layer. So the server isn't really aware that any request was made
and so can't very well generate a
I don't have the time to investigate this fully in the context of SSL but from a
general understanding of how apache combines nested directives like this, I think you
might need to change the order of the Location containers. The rules for combining
directives are a bit complicated and (I have
It sounds like you have misunderstood how to set up the SSL and HTTP sites. Basically,
they are two separate port-based virtual hosts... I wrote up some notes on this a few
days ago - check out:
http://marc.theaimsgroup.com/?l=apache-modsslm=102922483406071w=2
Rgds,
Owen Boyle
From: Justin Georgeson [mailto:[EMAIL PROTECTED]]
I have Apache 1.3.17 with mod_ssl. I'm not a real proficient apache
admin just yet, so forgive my if I unintentionally omit some crucial
point, or use the wrong nomenclature. :) I have a vhost which I would
like to add an SSL enabled
From: Sean M Alderman [mailto:[EMAIL PROTECTED]]
Greetings all,
I'm curious if anyone has come across issues with starting apache
using -
# $APACHE_HOME/bin/apachectl startssl
and then having apache hang when issuing this -
# $APACHE_HOME/bin/apachectl restart
I'm running 1.3.26 with the
From: Svein E. Seldal [mailto:[EMAIL PROTECTED]]
Hi guys,
I want to run a http server on port 81 which should only be
available to
the localnet, say 192.168.0.x/24 *and* on https with client
certificates
from the whole world. No passwords should be used in neither methodes.
Now I've got
From: Matt Nelson [mailto:[EMAIL PROTECTED]]
Now, the error I'm getting now that I can't seem to find any
help on, in
the error_log is:
OpenSSL: error:0D06B078:asn1 encoding routines:ASN1_get_object:header too long
Unusual.. Do you see anything in the browser? Also:
- What versions of
See comments,
Rgds,
Owen Boyle
-Original Message-
From: Matt Nelson [mailto:[EMAIL PROTECTED]]
Sent: Mittwoch, 31. Juli 2002 17:01
To: [EMAIL PROTECTED]
Subject: RE: Error message help
Well I may have figured this out, https is now running, cert
was in the wrong place,
..or your
See below,
Rgds,
Owen Boyle
From: Jay States [mailto:[EMAIL PROTECTED]]
I would like to clear up port-based hosting for mod-ssl:
1. https looks for port 443, but you can change that to any port with
modification to the apache configure file and also as long as you
specify the port in the
From: Danalien [mailto:[EMAIL PROTECTED]]
As I know, you can only bind one uniqe ip to one SSL virtual host.
not quite - see below..
and from what I have read, you can't use name-based SSL
virtual host(s) either,
as a work around.
Mostly right, but with one privisio: You cannot do name-based
From: Michael O'Brien [mailto:[EMAIL PROTECTED]]
Can anyone suggest some possible cause to why my htaccess file
is being ignored. The contents of my htaccess file is
AuthUserFile /apps/apache/bin/.htpasswd
AuthGroupFile /dev/null
AuthName Restricted Site
suggestion. What would you recommend
I set it to?
-Original Message-
From: Boyle Owen [mailto:[EMAIL PROTECTED]]
Sent: Monday, July 15, 2002 12:51 AM
To: [EMAIL PROTECTED]
Subject: RE: I am having a heck of a time - Please help.
Could be to do with your version of openssl lib (check
Could be to do with your version of openssl lib (check it is reasonably up to date) or
with your LD_LIBRARY_PATH environment variable..
Check out http://www.delouw.ch/linux/Apache-Compile-HOWTO/html/apache.html
for a good user's summary.
Rgds,
Owen Boyle
-Original Message-
From:
From: liangbin li [mailto:[EMAIL PROTECTED]]
I install apache httpd server with mod_ssl. I broswer a access
controled
html file and it calls a programm under cgi-bin directory.
Is this what you want to happen?
I want to know how I can set up access control with in the cgi-bin's
programm?
Have you created an SSL virtualhost?
As well as installing mod_ssl, you laso have to define a virtual host to make use of
it. Also, you have to tell the server to listen to port 443, e.g.
Listen 192.168.0.1:443
VirtualHost 192.168.0.1:443
...etc
Rgds,
owen Boyle
-Original Message-
86 matches
Mail list logo