use the following command to remove the pass phase.
openssl dsa -in key.pem -out keyout.pem
Ashley M. Kirchner wrote:
How can I have Apache restart without asking every time for the pass phrase
for its certificate? At the moment, it fails automatic startup if and when the
server reboots. S
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Rick Johnson wrote:
| Ashley M. Kirchner wrote:
|
|> How can I have Apache restart without asking every time for the
|> pass phrase
|> for its certificate? At the moment, it fails automatic startup if and
|> when the
|> server reboots. Startup is
Ashley M. Kirchner wrote:
How can I have Apache restart without asking every time for the pass phrase
for its certificate? At the moment, it fails automatic startup if and when the
server reboots. Startup is being done manually so that someone can enter the
pass phrase.
Less safe way is to
How can I have Apache restart without asking every time for the pass phrase
for its certificate? At the moment, it fails automatic startup if and when the
server reboots. Startup is being done manually so that someone can enter the
pass phrase.
--
W | I haven't lost my mind; it's backed up
Thanks for reading this: I don't know if it goes on the
Apache list or the redhat list, so I'm trying the redhat list
first.
My SSL certificate has expired, and I need to create a new
one. I assume that means both a "root" CA certificate and a key
pair.
When I do a "make genkey" in /etc/
On Wed, 2002-08-14 at 09:51, Benjamin R. Mohilef wrote:
>
> It is. Prior to posting I did an rpm -v on a set of rpm's constitutng
> the entire RH 7.0 i386/686 upgrade directories. Of particular
> interest was the kernel, but it verified OK. No missing files
> anywhere
I expected to find unsat
Gordon Messmer wrote:
> Have you tried using up2date to update the system. It should get all
> of the latest packages, and all of the required dependencies. I don't
> have any 7.0 boxes left, so I can't comment regarding the problem.
> However, if it is still a problem after updating with up2da
On Sun, 2002-08-11 at 07:11, Benjamin R. Mohilef wrote:
> I did a periodic 120 day vacuuming and cat hair removal PM and
> found that my SSL server no longer starts apache with ssl (works
> fine if I comment all the ssl lines out of the conf file). The error
> message is :
>
> Cannot load /etc/
I discovered that openssl-0.9.6.9 appears not to have undefined
references. That came out two security updates ago, however.
Has anyone else observed the "OpenSSLDie" problem with the
latest openssl security updates (10 and 14) or do I just have some
quirk in my installation??
--
redhat-
I did a periodic 120 day vacuuming and cat hair removal PM and
found that my SSL server no longer starts apache with ssl (works
fine if I comment all the ssl lines out of the conf file). The error
message is :
Cannot load /etc/httpd/modules/libphp4.so into server:
/usr/lib/libssl.so.1: undefin
Anyone know of an upgrade to fix the apache vulnerability for apache/ssl
(chunk handling overflow vulnerability)?
I used the recommended ones my other "non" ssl apache web servers w/o a
problem. When trying it on the SSL version, it fails.
Th
David,
> >I've obviously gone mental this week. ;-) I looked at the
> >ownership/permissions on /var/log/httpd but for some reason didn't look at
> >the parent directories. The problem was incorrect permissions on the log
> >directory.
>I considered and discarded that thought, because the bit
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Eric Sisler wrote:
>I've obviously gone mental this week. ;-) I looked at the
>ownership/permissions on /var/log/httpd but for some reason didn't look at
>the parent directories. The problem was incorrect permissions on the log
>directory.
I c
I've obviously gone mental this week. ;-) I looked at the
ownership/permissions on /var/log/httpd but for some reason didn't look at
the parent directories. The problem was incorrect permissions on the log
directory.
My thanks to those who offered advise.
-Eric
Eric Sisler
Applications S
David Talkington <[EMAIL PROTECTED]> wrote:
> >It appears as though apache's child process isn't able to open or create a
> >lockfile, but I'm not sure what to do about it. Ownership/permissions on
> >/var/log/httpd are root:apache and 775.
>... But that's not the directory that it's whining ab
le-1.75-26.72.3
mod_perl-1.26-2
While I'm on the subject, why doesn't setting
SSLEngine off
in the "SSL Global Context" section of apache's config file seem to make
any difference. If I'm reading the documentation right, setting it thusly
should disable apache s
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Eric Sisler wrote:
>
>It appears as though apache's child process isn't able to open or create a
>lockfile, but I'm not sure what to do about it. Ownership/permissions on
>/var/log/httpd are root:apache and 775.
... But that's not the directory th
I had a similiar problem with apache when upgrading to the latest kernel
however I don't recall exactly what the error was. Anywhoo, the problem
turned out to be I somehow missed the mod_perl update. Make sure you've
installed that RPM.
On Thursday 04 April 2002 10:27 am, you wrote:
> Greeting
Greetings,
I recently upgraded the kernel on my 7.2 server from 2.4.9-21 to 2.4.9-31,
applying all other update rpm's as well. Apache now refuses to start
properly, with the following error in /var/log/httpd/error_log:
[error] mod_ssl: Child could not open SSLMutex lockfile
/etc/httpd/logs/s
Dear all,
I got a problem with apache-ssl...
My system as below:
RH6.2: 2.2.14-5.0
apache-1.3.12-2
apache-ssl-1.3.12_1.40-2k
My apache is running fine, just I can't get my apache-ssl up??
I've generated *.crt, *.csr, *.key and request a trail key from
Verisign.com, how ever, when I
On Thu, 26 Apr 2001, Eddie Strohmier wrote:
> No, if you create the link just rpm -ivh it. I was giving
> you an alternative
> to the symlink but I think apache-ssl will be looking for
> perl5 in /usr/local/bin so your safe bet is just to leave
> the symlink there and instal
dperl
I've created the symbolic link for perl5 in /usr/local/bin/
so, in order to get apache-ssl installed with rpm, I need to issue
"rpm --nodeps" command? but will it cause any problem for apache-ssl to run
properly?
thanks for all help...
rdgs,
gary
- Original Message -
F
No, if you create the link just rpm -ivh it. I was giving
you an alternative
to the symlink but I think apache-ssl will be looking for
perl5 in /usr/local/bin so your safe bet is just to leave
the symlink there and install with rpm -ivh.
Eddie Strohmier
-Original Message-
From: [EMAIL
PROTECTED]
Subject: Re: apache-ssl setup problem?
I downloaded the following once and install, but still
getting error msg as
below:
~
# rpm -ivh apache-ssl-1.3.12_1.40-2k.i586.rpm
error: failed dependencies:
/usr/local/bin/perl5 is needed by
I downloaded the following once and install, but still getting error msg as
below:
~
# rpm -ivh apache-ssl-1.3.12_1.40-2k.i586.rpm
error: failed dependencies:
/usr/local/bin/perl5 is needed by apache-ssl-1.3.12_1.40-2k
shd i get i386 once? what is the different?
thanks,
gary
- Original Message -
From: Charles Galpin <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, April 26, 2001 11:48 AM
Subject: Re: apache-ssl setup problem?
>
> On Thu, 26 Apr 2001, gary@umc wrote:
>
&g
On Thu, 26 Apr 2001, gary@umc wrote:
> Dear all,
>
> I have downloaded apache-ssl-1.3.12_1.40-1.ppc.rpm, but when I tried to
> install, it prompt me the following dependencies error,
>
>
> # rpm -ivh apache-ssl-1.3.12_1.40-1.pp
Dear all,
I have downloaded apache-ssl-1.3.12_1.40-1.ppc.rpm, but when I tried to
install, it prompt me the following dependencies error,
# rpm -ivh apache-ssl-1.3.12_1.40-1.ppc.rpm
error: failed dependencies:
ld.so.1 is needed by apache-ssl
CTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, February 01, 2001 9:15 AM
Subject: IE and RH7/Apache & ssl
> So, anyone else having the problem where IE won't connect to your secure
> server? The Apache-ssl, mod_ssl and OpenSSL sites have lots of people with
> the same problem, b
So, anyone else having the problem where IE won't connect to your secure
server? The Apache-ssl, mod_ssl and OpenSSL sites have lots of people with
the same problem, but the fixes from the mod_ssl site don't work. Any
suggestions? (Yes, I'm frustrated.) It seems that installin
*** REPLY SEPARATOR ***
On 11/07/00 at 14:51 Gordon Messmer wrote:
>Juan Martinez wrote:
>> I've generated a dummy certificate and the httpsd daemon
>> starts. When I try to load a page however, the client shows
>> a "Network: Broken Pipe" error. For each attempt to read a
>
On Wed, 12 Jul 2000, Greg Wright wrote:
> *** REPLY SEPARATOR ***
>
> On 11/07/00 at 11:21 Juan Martinez wrote:
>
> >Hello listers,
> >
> >I've installed apache-ssl-1.3.6_1.35-3.i386.rpm and
> >openssl-0.9.5a-1.i386.rpm on a RedHat
>
> >Hello listers,
> >
> >I've installed apache-ssl-1.3.6_1.35-3.i386.rpm and
> >openssl-0.9.5a-1.i386.rpm on a RedHat 6.2 system.
> >
> >I've generated a dummy certificate and the httpsd daemon
> >starts. When I try to load a page however, the
e?
# Should we be reusing keys?
# 2) This script unencrypts the private key so that apache can use it.
# Does apache-ssl need the key to function? If not, we can avoid
# keeping an unencrypted key around, and avoid specifying that file
# in apache's configs.
#
# This script sho
*** REPLY SEPARATOR ***
On 11/07/00 at 11:21 Juan Martinez wrote:
>Hello listers,
>
>I've installed apache-ssl-1.3.6_1.35-3.i386.rpm and
>openssl-0.9.5a-1.i386.rpm on a RedHat 6.2 system.
>
>I've generated a dummy certificate and the httpsd daemon
Hello listers,
I've installed apache-ssl-1.3.6_1.35-3.i386.rpm and
openssl-0.9.5a-1.i386.rpm on a RedHat 6.2 system.
I've generated a dummy certificate and the httpsd daemon
starts. When I try to load a page however, the client shows
a "Network: Broken Pipe" error. For ea
> Here is another reason, if you intend getting positiones on a search engine
> , IP's are also needed, even with the normal Apache, reason...because the
> search engine crawlers can tell its a virt host and will not rate it
> highly, or at all possibly. I have taken the word of some people in the
On Fri, 16 Jun 2000, Brian Ashe wrote:
> Hi Charles,
>
> Thanks for the insight. I can see how that makes sense.
>
> So here's another one for you... (this is just curiosity)
>
> What if you set up the virtual hosts to use alternate port?
> ie. a.com 10.10.10.1:4400
> b.com 10.10.10.1:450
Hi Charles,
Thanks for the insight. I can see how that makes sense.
So here's another one for you... (this is just curiosity)
What if you set up the virtual hosts to use alternate port?
ie. a.com 10.10.10.1:4400
b.com 10.10.10.1:4500
This should fix the problem you were describing, but does
*** REPLY SEPARATOR ***
On 16/06/00 at 8:14 Charles Galpin wrote:
>perhaps if I explain my experience with this, it will help
>
>On Thu, 15 Jun 2000, Brian Ashe wrote:
>>
>> 4) I cannot confirm or deny the single IP address theory, as I have not
>> tried it. But I do have som
perhaps if I explain my experience with this, it will help
On Thu, 15 Jun 2000, Brian Ashe wrote:
>
> 4) I cannot confirm or deny the single IP address theory, as I have not
> tried it. But I do have some trouble believing it since the ServerName
> directive is what gets matched against the cert
Brian:
Ti took the work done by Greg Wright and some others on the
apache-ssl-1.3.9.src.rpm and went in to make the customizations so it
would build a the apache-ssl-1.3.12.i386.rpm. So far, it seems to work
correctly. It even installs the apache-ssl stuff in it's own directory,
httpsd in
r one.
Thursday, June 15, 2000, 8:27:53 AM, you wrote:
MJM> Good Morning:
MJM> I'm running Apache-SSL 1.3.12 on my machine at home. I'm interested in
MJM> setting up virtual domains so that at least 2 of the domains I host can
MJM> take advantage of the secure connectio
icate?
# Should we be reusing keys?
# 2) This script unencrypts the private key so that apache can use it.
# Does apache-ssl need the key to function? If not, we can avoid
# keeping an unencrypted key around, and avoid specifying that file
# in apache's configs.
#
# This script
*** REPLY SEPARATOR ***
On 15/06/00 at 10:01 Brian Wright wrote:
>Hi, Mike!
>
>Each domain needs it's own certificate, I believe. :( They base it on the
>domain name, not the IP address. Thawte.com is a good place to go get
info
>on that.
>
Thats true, but what Charles poin
Hi, Mike!
Each domain needs it's own certificate, I believe. :( They base it on the
domain name, not the IP address. Thawte.com is a good place to go get info
on that.
BTW, where did you get the Apache-SSL? Did you use an RPM?
Thanks,
Brian
-Original Message-
From: Mich
Mike
You cannot do this with name based virtual hosting. You need a seperate IP
for each domain you want to have a certificate for.
sorry,
charles
On Thu, 15 Jun 2000, Michael J. McGillick wrote:
> Good Morning:
>
> I'm running Apache-SSL 1.3.12 on my machine at home. I&#
Good Morning:
I'm running Apache-SSL 1.3.12 on my machine at home. I'm interested in
setting up virtual domains so that at least 2 of the domains I host can
take advantage of the secure connection. Under regular Apache, I would go
in and set up the following:
NameVirtualHost 24.
On Tue, 9 May 2000, Michael Ghens wrote:
>Do this if you are brave.
That's not a problem. I do all my install trials on my home PC, which is
a mirror of the server, before trying it on the server.
>For /usr/local/bin/perl5, do:
>
>cd /usr/local/bin
>ln -s /usr/bin/perl perl5
Didn't work.
>
7;
On Mon, 8 May 2000, Glen Lee Edwards wrote:
> Date: Mon, 8 May 2000 21:08:20 -0500 (CDT)
> From: Glen Lee Edwards <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]
> Subject: Can't install Apache-SSL
> Resent-Date: 9 May 2000 03:01:02 -
&g
>> Still no luck:
>>
>> $ rpm -i --force apache-ssl-1.3.6_1.35-3.i386.rpm
>> error: failed dependencies:
>> /usr/local/bin/perl5 is needed by apache-ssl-1.3.6_1.35-3
>>
>> Then I created a hard link from /usr/local/bin/perl to /usr/bin/p
at's location.) This is one case where you should be safe
> >in using the --force option of RPM. This assumes you do have perl installed.
>
> $ perl -v
> This is perl, version 5.005_03 built for i386-linux...
>
> $ which perl
> /usr/bin/perl
>
> Still no l
>in using the --force option of RPM. This assumes you do have perl installed.
$ perl -v
This is perl, version 5.005_03 built for i386-linux...
$ which perl
/usr/bin/perl
Still no luck:
$ rpm -i --force apache-ssl-1.3.6_1.35-3.i386.rpm
error: failed dependencies:
/usr/local/bin/perl5 is nee
At 09:08 PM 5/8/00 -0500, you wrote:
>I'm trying to install Apache-SSL and am getting the following error
>message:
>
>$ rpm -i apache-ssl-1.3.6_1.35-3.i386.rpm
>error: failed dependencies:
>/usr/local/bin/perl5 is needed by apache-ssl-1.3.6_1.35-3
>
>I'v
I'm trying to install Apache-SSL and am getting the following error
message:
$ rpm -i apache-ssl-1.3.6_1.35-3.i386.rpm
error: failed dependencies:
/usr/local/bin/perl5 is needed by apache-ssl-1.3.6_1.35-3
I've installed mod_ssl-2.6.0_1.3.12-1.i586.rpm and
openssl-0.9.4-2.i386.
Does anyone have any candid comments on benefits and downsides to Apache-SSL
(free; http://www.apache-ssl.org/ ) and Raven ($$$,
http://www.ravenssl.com/ )? We're looking to make a decision on something we
can link into Apache 1.3.9 (or later) that won't cause a problem with PHP.
make it two to be safe ...
eg echo \n\n
At 16:45 00/01/26 +0100, you wrote:
>On Wed, 26 Jan 2000 [EMAIL PROTECTED] wrote:
>
> > #!/bin/bash
> > echo 'Content-type: text/html'
> > echo ''
>
>The RFCs say that the header (Content-type) needs to be separated from
>the actual html stuff by a newline,
lear text insecure server...
Bruce
Bernhard Rosenkraenzer <[EMAIL PROTECTED]> on 01/26/2000 09:45:12 AM
Please respond to [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
cc:
Subject: Re: apache-ssl + cgi
On Wed, 26 Jan 2000 [EMAIL PROTECTED] wrote:
> #!/bin/bash
> echo 'Content-type
e.edu/~hirsch Give us another
[EMAIL PROTECTED] Chance to do right.
On Wed, 26 Jan 2000 [EMAIL PROTECTED] wrote:
>
>
> I recently installed the apache-ssl-1.3.6_1.35-3 rpm, set up both a secure web
> server and an insecure web server through the directive in the
> apach
On Wed, 26 Jan 2000 [EMAIL PROTECTED] wrote:
> #!/bin/bash
> echo 'Content-type: text/html'
> echo ''
The RFCs say that the header (Content-type) needs to be separated from
the actual html stuff by a newline, so it's
echo 'Content-type: text/html'
echo
echo ''
LlaP
bero
--
Anyone sending uns
I recently installed the apache-ssl-1.3.6_1.35-3 rpm, set up both a secure web
server and an insecure web server through the directive in the
apache config file. When trying to access a cgi page, I get a 'premature end of
headers' error in the errorlog when connecting through
On Mon, 24 Jan 2000, Steve Frampton wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hello:
>
> I'm trying to get Apache-SSL set up from RPM, and working with PHP and
> MySQL. I've having a bit of difficulty doing so, so first I'd like to
>
Oh, yeah, and my friend Mike put rpms of php-3.0.14 on duke a couple of
days ago, too.
MSG
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
Steve Frampton wrote:
> I'm at a loss here, and would appreciate any assistance. Isn't there an
> easy way of doing this via RPM? Or do I need to do everything with Apache
> from now on via source tarballs (grrr...)?
Maybe. Just for fun, I updated my apache-ssl rpms. The
and make install apache. It is
> at this latter stage that PHP files are actually compiled.
I should have mentioned that I use everything from RPM and then build PHP
from source as a loadable module with apxs. I was under the impression
that Apache-SSL was Apache with added SSL capabilities a
On Tue, 25 Jan 2000, Steve Frampton wrote:
> I'm trying to get Apache-SSL set up from RPM, and working with PHP and
> MySQL. I've having a bit of difficulty doing so, so first I'd like to
> walk through how I installed everything, and then discuss the problems I'
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hello:
I'm trying to get Apache-SSL set up from RPM, and working with PHP and
MySQL. I've having a bit of difficulty doing so, so first I'd like to
walk through how I installed everything, and then discuss the problems I'm
havi
Morning Everyone:
For the past month or so, I've been working on getting Apache SSL
installed on my system. Here's what I'm attempting to do.
Around the time Red Hat 5.2 was out, someone showed me Apache SSL and how
it set up very nicely in conjunction with Apache on my system.
On Mon, Nov 15, 1999 at 02:07:14PM -0500, Michael J. McGillick wrote:
: Anyone know where I can pick up the Apache-SSL-1.3.9 and OpenSSL-0.9.4
: RPMs? Anyone know if they exist yet?
Just the other day I did this very thing, well, almost this very thing.
I went to ftp.replay.com, and grabbed
Afternoon Everyone:
Anyone know where I can pick up the Apache-SSL-1.3.9 and OpenSSL-0.9.4
RPMs? Anyone know if they exist yet?
- Mike
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
>Thanks for everyones help and suggestions for getting ApacheSSL >up and
>running..
>I used the SSL rpm and Apache_1.2.4.tar.Z with the
>Apache_1.2.4+ssl.1.2.11.tar.gz patch.
>Everything seems to complie fine (no errors..)
>The only problem that I have now is when I start it it looks for
Thanks for everyones help and suggestions for getting ApacheSSL up and
running..
I used the SSL rpm and Apache_1.2.4.tar.Z with the
Apache_1.2.4+ssl.1.2.11.tar.gz patch.
Everything seems to complie fine (no errors..)
The only problem that I have now is when I start it it looks for the con
"Perry J. Blalock" <[EMAIL PROTECTED]> writes:
> Can anyone out there provide me with some links so I can read up on on the
> cert process for Apache-ssl. We picked up an rpm (ssleay) and Apache-ssl,
> but the documentation is non-existent.
>
I found th
Hello,
The Thawte supports Apache-SSL.
Take a look:
http://www.thawte.com/certs/server/key_apachessl.html
[]s
Wanderlei Antonio Cavassin
Conectiva - Brazil
On Sun, 31 May 1998, Perry J. Blalock wrote:
> Can anyone out there provide me with some links so I can read up on on the
>
Can anyone out there provide me with some links so I can read up on on the
cert process for Apache-ssl. We picked up an rpm (ssleay) and Apache-ssl,
but the documentation is non-existent.
thanks
Perry J. Blalock
BadgerNet Communications
"If your not connected your missing ever
I'm interested in using RedHat's new Apache-SSL product but have some
questions.
What I'd like to do it something like this:
Intranet-Server IP-Masq-Server
|| |
--+--+---++ + To the
On Wed, 22 Apr 1998, Trevor Astrope wrote:
> To followup my own post, I did get the apache-ssl-1.2.6-1.i386.rpm to
> install. It complained of failed dependencies for libssl.so, but the
> apache-ssl rpm installed without a hitch after installing the SSLeay-0.8
> rpm.
>
>
To followup my own post, I did get the apache-ssl-1.2.6-1.i386.rpm to
install. It complained of failed dependencies for libssl.so, but the
apache-ssl rpm installed without a hitch after installing the SSLeay-0.8
rpm.
I think maybe the apache-ssl-1.2.6-2.i386.rpm is broken, because the
replay web
try the --force option.
Rossco
At 04:14 PM 4/21/98 -0400, you wrote:
>I'm having trouble installing the apache-ssl-1.2.6-2.i386.rpm and src.rpm
>that I got from replay.com. When I do : rpm -i
>apache-ssl-1.2.6-2.i386.rpm, I just get an error message saying that the
>rpm can
I'm having trouble installing the apache-ssl-1.2.6-2.i386.rpm and src.rpm
that I got from replay.com. When I do : rpm -i
apache-ssl-1.2.6-2.i386.rpm, I just get an error message saying that the
rpm can not be installed with no explanation why.
I tried using the -UVH options with rpm, but
I am trying to get my "Apache-SSL 1.2.6" so use different
SSLCertificateFiles for each of my virtual web hosts. The httpd.conf
says that you can use all SSL directives in the virtual hosts, and I put
the "SSLCertificateFiles" there and pointed it to another file. If I now
r
Howdy.
I'm trying to run apache_1.2.5 with SSLeay-0.8.0 and it compiles fine
but when I try to run it I get "No SSL certificate set"
I've run the make test certificate command and have it put in my conf
dir but it still won't run. What else do I need to do??
And where can I get a very restricted
82 matches
Mail list logo
