Re: format of cert7.db file

1999-05-31 Thread Matthias Loepfe
Ralf S. Engelschall wrote: On Mon, May 24, 1999, Paul Rubin wrote: Does anyone know of any docs on the format of cert7.db, other than http://www.drh-consultancy.demon.co.uk/cert7.html? In particular, I want to write a standalone program that installs new certificates into the file.

[BugDB] child segmentation faults with SSL (PR#181)

1999-05-31 Thread modssl-bugdb
Full_Name: Dirk Kulmsee Version: 2.3.1 OS: SuSe Linux 6.1, Kernel 2.2.5 Submission from: stargate.netgroup.de (195.63.188.1) I compiled and installed an Apache 1.3.4 + PHP 3.0.7 + mod_perl 1.18 + mod_ssl 2.2.4 (SSLeay 0.90b). The server runs fine for non-SSL requests, but the children died on

[BugDB] graceful restart and changing virtualhost domain (PR#182)

1999-05-31 Thread modssl-bugdb
Full_Name: V. Burwitz Version: 2.2.8 OS: Linux Submission from: webcache1.hrz.tu-darmstadt.de (130.83.244.129) I am running a Machine with a lot of Virtual Hosts (150+), every Domain is using the same certificat (*.domain). All the Virtual Hosts are running on subdomains (dom1.domain,

[BugDB] graceful restart and changing virtualhost domain (PR#183)

1999-05-31 Thread modssl-bugdb
Full_Name: V. Burwitz Version: 2.2.8 OS: Linux Submission from: webcache1.hrz.tu-darmstadt.de (130.83.244.129) I am running a Machine with a lot of Virtual Hosts (150+), every Domain is using the same certificat (*.domain). All the Virtual Hosts are running on subdomains (dom1.domain,

Re: MSIE clients with broken SSL close notify

1999-05-31 Thread Bodo Moeller
On Mon, May 31, 1999 at 09:13:43AM -0400, David Harris wrote: [...] I want to know if I can solve the problem with just the ssl-unclean-shutdown flag. I hate to disable the keepalive functionality because of the performance hit it would create. It could work (unless the user tries to follow

Re: [BugDB] child segmentation faults with SSL (PR#181)

1999-05-31 Thread modssl-bugdb
Dies ist eine mehrteilige Nachricht im MIME-Format. --E154CE789F61FE1EADCCB75D Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit [...] I suggest you to rebuild with --enable-rule=SSL_SDBM and try again. [...] Ralf: you were perfectly right. I did as you

Shared Memory Cache

1999-05-31 Thread John Hamlik
How do you enable the shared memory cache or is it not working yet? Seems like something like SSLSessionCache shm should work, isn't this the idea behind mm? Sorry if this has already been talked about, haven't been looking at the list lately. John Hamlik

SSLSetEnvIf for combined SSL/non-SSL VHosts

1999-05-31 Thread David Harris
I don't know what the status of implementing a way to have a VirtualHost section which handles both SSL and non-SSL is. (Something to provide equivalent functionality as my SSLOnlyOnPort directive.) Last I heard this was on the back burner, but I have not been keeping up on the list. Well, I

MSIE clients with broken SSL close notify

1999-05-31 Thread David Harris
Hi, I just read the thread "Practical solution for MSIE problems!?" which was back around 3/28/99 after bumping to the below line in the SSL httpd.conf configuration file in the SSL VHost. SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown I understand that this is a workaround

Re: [BugDB] child segmentation faults with SSL (PR#181)

1999-05-31 Thread modssl-bugdb
On Mon, May 31, 1999, [EMAIL PROTECTED] wrote: Full_Name: Dirk Kulmsee Version: 2.3.1 OS: SuSe Linux 6.1, Kernel 2.2.5 Submission from: stargate.netgroup.de (195.63.188.1) [...] #1 0x40235cd7 in ssl_scache_retrieve (s=0x81dd17c, id=0x81e9ed3 [...] Hoping for the best :-) I suggest

RE: SSLSetEnvIf for combined SSL/non-SSL VHosts

1999-05-31 Thread David Harris
I goofed.. I gave the wrong URL for my patch. The SSLOnlyOnPort patch is at: http://www.davideous.com/misc/apache_1.3.6_sslsetenvif.diff - David Harris Principal Engineer, DRH Internet Services __ Apache Interface to

Client Authentication and Access Control

1999-05-31 Thread Fabrizio Pivari
I've read the mod_ssl documentation about Client Authentication and Access Control part. I've found this part very interesting and I'd like to test it. Could you explain me the OpenSSL commands to create client certificates signed by my CA certificate? I've already created my CA certificate,

.o versus .so modules???

1999-05-31 Thread gil
Hi, I'm building mod_ssl with the most recent versions of apache and openSSL. When I try to start the newly created httpd, I get this error: [root@reliant apache_1.3.6.ssl]# bin/apachectl start Syntax error on line 33 of /usr/src/apache_1.3.6.ssl/conf/httpd.conf: Cannot load