From: Hugh E Cruickshank Sent: March 17, 2010 14:18
> From: Jeff Trawick Sent: March 17, 2010 13:50
> >
> > Either this ("/etc/httpd/cgi-bin") is the wrong directory, or you
> > need
> > to also enable SSL envvars for /var/www/cgi-bin. From your envvars
>
ectory. I have made the
suggested correction but I will be unable to test it until this evening
when I can restart the httpd service otherwise I will have a bunch of
upset users. I will post my results.
Thanks very much for all your assistance. It is greatly appreciated.
Regards, Hugh
--
Hugh
ile but both
are virtually identical except for the ServerName, ServerAlias and
DocumentRoot values.
TIA
Regards, Hugh
--
Hugh E Cruickshank, Forward Software, www.forward-software.com
-
The official User-To-User suppor
dlc91e/bin/cgiip
I hope that clarifies things a bit.
TIA
Regards, Hugh
--
Hugh E Cruickshank, Forward Software, www.forward-software.com
-
The official User-To-User support forum of the Apache HTTP Server Project
From: Hugh E Cruickshank Sent: March 17, 2010 11:00
> From: Jeff Trawick Sent: March 17, 2010 04:10
> >
> > See http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#ssloptions
> > (StdEnvVars). SSL_CIPHER_USEKEYSIZE should be set.
>
> That looks perfect. Thank you much
From: Jeff Trawick Sent: March 17, 2010 04:10
> On Tue, Mar 16, 2010 at 9:54 PM, Hugh E Cruickshank
> >
> > I am attempting to find a way of determining the encryption key size.
> > Apparently the old environment variable was HTTPS_KEYSIZE which was
> > renamed SSL_CIPH
rching but can find nothing further on this
subject. So...
Is there any way of determining the encryption key size on Apache 2.2.3?
TIA
Regards, Hugh
--
Hugh E Cruickshank, Forward Software, www.forward-software.com
-
The off
any localsystem location should be fine. For finer
> understanding/convenience u can put it under conf folder like
> conf/certs/
That was my impression but I wanted to make sure before I proceeded
too far.
Thanks for you response.
Regards, Hugh
--
Hugh E Cruickshank, Forward Sof
. From all the research I have done the docs now use
/path/to/this/server.crt and /path/to/this/server.key as the example
locations.
My question is: With Apache 2.2 is the a "standard" or "commonly
accepted" directory that I should be using for storing our certs?
TIA
Regar
ssl.conf file but
this does not seem to have had any effect. Am I missing something?
Any suggestions and/or comments will be greatly appreciated.
TIA
Regards, Hugh
--
Hugh E Cruickshank, Forward Software, www.forward-software.com
From: Hugh E Cruickshank Sent: September 16, 2008 15:32
> From: Sean Conner Sent: September 15, 2008 23:36
> > It was thus said that the Great Hugh E Cruickshank once stated:
> > >
> > > That may be the case but their recommendation is still: Issue a
> > > &q
From: André Warnier Sent: September 16, 2008 15:44
> Hugh E Cruickshank wrote:
> [...]
> > I hear you but the client's security consultant (or whatever) is
> > making the recommendation based on the software's report and the
> > client is exercising due diligence
From: Sean Conner Sent: September 15, 2008 23:36
> It was thus said that the Great Hugh E Cruickshank once stated:
> >
> > That may be the case but their recommendation is still: Issue a
> > "404 - Not Found" response status code for a forbidden resource,
> >
From: Nick Kew Sent: September 15, 2008 19:43
>
> On 16 Sep 2008, at 02:44, Hugh E Cruickshank wrote:
>
> > Right now if someone were to attempt to access these subdirectories
> > (i.e. http://www.example.com/cgi-bin) they would receive a 403
> > Forbidden error mes
ied adding:
order allow,deny
deny from all
but this did not work and it would not allow our application to run
either.
Any suggestions would be greatly appreciated.
TIA
Regards, Hugh
--
Hugh E Cruickshank, Forward Software, www.forward-so
>
[big snip]
Hi Gene:
Thanks for the info. I will definitely give that a try before doing
the "non-standard" upgrade.
Regards, Hugh
--
Hugh E Cruickshank, Forward Software, www.forward-software.com
-
The official User
16 matches
Mail list logo
