Re: apache_1.3.12 SSL error
I've just installed apache_1.3.12 and when I start apache ssl I get the following error :/# /etc/apache1/bin/apachectl startssl Syntax error on line 1024 of /etc/apache1/conf/httpd.conf: Invalid command 'SSLEngine', perhaps mis-spelled or defined by a module not included in the server configuration /etc/apache1/bin/apachectl startssl: httpd could not be started Any help would be greatly appreciated Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. This is an extract from my httpd.conf as generated, can someone see what is wrong?? ## SSL Global Context ## ## All SSL configuration in this context applies both to ## the main server and all SSL-enabled virtual hosts. ## # # Some MIME-types for downloading Certificates and CRLs # IfDefine SSL AddType application/x-x509-ca-cert .crt AddType application/x-pkcs7-crl.crl /IfDefine IfModule mod_ssl.c # Pass Phrase Dialog: # Configure the pass phrase gathering process. # The filtering dialog program (`builtin' is a internal # terminal dialog) has to provide the pass phrase on stdout. SSLPassPhraseDialog builtin # Inter-Process Session Cache: # Configure the SSL Session Cache: First either `none' # or `dbm:/path/to/file' for the mechanism to use and # second the expiring timeout (in seconds). #SSLSessionCachenone #SSLSessionCache shm:/etc/apache1/logs/ssl_scache(512000) SSLSessionCache dbm:/etc/apache1/logs/ssl_scache SSLSessionCacheTimeout 300 # Semaphore: # Configure the path to the mutual explusion semaphore the # SSL engine uses internally for inter-process synchronization. SSLMutex file:/etc/apache1/logs/ssl_mutex # Pseudo Random Number Generator (PRNG): # Configure one or more sources to seed the PRNG of the # SSL library. The seed data should be of good random quality. # WARNING! On some platforms /dev/random blocks if not enough entropy # is available. This means you then cannot use the /dev/random device # because it would lead to very long connection times (as long as # it requires to make more entropy available). But usually those # platforms additionally provide a /dev/urandom device which doesn't # block. So, if available, use this one instead. Read the mod_ssl User # Manual for more details. SSLRandomSeed startup builtin SSLRandomSeed connect builtin #SSLRandomSeed startup file:/dev/random 512 #SSLRandomSeed startup file:/dev/urandom 512 #SSLRandomSeed connect file:/dev/random 512 #SSLRandomSeed connect file:/dev/urandom 512 # Logging: # The home of the dedicated SSL protocol logfile. Errors are # additionally duplicated in the general error log file. Put # this somewhere where it cannot be used for symlink attacks on # a real server (i.e. somewhere where only root can write). # Log levels are (ascending order: higher ones include lower ones): # none, error, warn, info, trace, debug. SSLLog /etc/apache1/logs/ssl_engine_log SSLLogLevel info /IfModule IfDefine SSL ## ## SSL Virtual Host Context ## VirtualHost _default_:443 # General setup for the virtual host DocumentRoot "/etc/apache1/htdocs" ServerName computer.domain.name ServerAdmin [EMAIL PROTECTED] ErrorLog /etc/apache1/logs/error_log TransferLog /etc/apache1/logs/access_log # SSL Engine Switch: # Enable/Disable SSL for this virtual host. SSLEngine on # SSL Cipher Suite: # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. #SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: apache_1.3.12 SSL error
I've just installed apache_1.3.12 and when I start apache ssl I get the following error :/# /etc/apache1/bin/apachectl startssl Syntax error on line 1024 of /etc/apache1/conf/httpd.conf: Invalid command 'SSLEngine', perhaps mis-spelled or defined by a module not included in the server configuration /etc/apache1/bin/apachectl startssl: httpd could not be started Any help would be greatly appreciated Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. This is an extract from my httpd.conf as generated, can someone see what is wrong?? ## SSL Global Context ## ## All SSL configuration in this context applies both to ## the main server and all SSL-enabled virtual hosts. ## # # Some MIME-types for downloading Certificates and CRLs # IfDefine SSL AddType application/x-x509-ca-cert .crt AddType application/x-pkcs7-crl.crl /IfDefine IfModule mod_ssl.c # Pass Phrase Dialog: # Configure the pass phrase gathering process. # The filtering dialog program (`builtin' is a internal # terminal dialog) has to provide the pass phrase on stdout. SSLPassPhraseDialog builtin # Inter-Process Session Cache: # Configure the SSL Session Cache: First either `none' # or `dbm:/path/to/file' for the mechanism to use and # second the expiring timeout (in seconds). #SSLSessionCachenone #SSLSessionCache shm:/etc/apache1/logs/ssl_scache(512000) SSLSessionCache dbm:/etc/apache1/logs/ssl_scache SSLSessionCacheTimeout 300 # Semaphore: # Configure the path to the mutual explusion semaphore the # SSL engine uses internally for inter-process synchronization. SSLMutex file:/etc/apache1/logs/ssl_mutex # Pseudo Random Number Generator (PRNG): # Configure one or more sources to seed the PRNG of the # SSL library. The seed data should be of good random quality. # WARNING! On some platforms /dev/random blocks if not enough entropy # is available. This means you then cannot use the /dev/random device # because it would lead to very long connection times (as long as # it requires to make more entropy available). But usually those # platforms additionally provide a /dev/urandom device which doesn't # block. So, if available, use this one instead. Read the mod_ssl User # Manual for more details. SSLRandomSeed startup builtin SSLRandomSeed connect builtin #SSLRandomSeed startup file:/dev/random 512 #SSLRandomSeed startup file:/dev/urandom 512 #SSLRandomSeed connect file:/dev/random 512 #SSLRandomSeed connect file:/dev/urandom 512 # Logging: # The home of the dedicated SSL protocol logfile. Errors are # additionally duplicated in the general error log file. Put # this somewhere where it cannot be used for symlink attacks on # a real server (i.e. somewhere where only root can write). # Log levels are (ascending order: higher ones include lower ones): # none, error, warn, info, trace, debug. SSLLog /etc/apache1/logs/ssl_engine_log SSLLogLevel info /IfModule IfDefine SSL ## ## SSL Virtual Host Context ## VirtualHost _default_:443 # General setup for the virtual host DocumentRoot /etc/apache1/htdocs ServerName computer.domain.name ServerAdmin [EMAIL PROTECTED] ErrorLog /etc/apache1/logs/error_log TransferLog /etc/apache1/logs/access_log # SSL Engine Switch: # Enable/Disable SSL for this virtual host. SSLEngine on # SSL Cipher Suite: # List the ciphers that the client is permitted to negotiate. # See the mod_ssl documentation for a complete list. #SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
Re: apache_1.3.12 SSL error
Hi guys, First, I haven't read this message stream closely, so I have probably missed something. I would suggest removing and reinstalling the package from the debian site. You may want to remove the 'standard' apache as well. I had looked at that package sometime back and it worked first try. Best of luck. Greg *** REPLY SEPARATOR *** On 6/29/00 at 5:34 PM Dariush Pietrzak wrote: mod_ssl module (I think that's what you asked the first time). Does it not work for you? It doesen't: apt-get install apache-perl libapache-asp-perl Reading Package Lists... Done Building Dependency Tree... Done The following packages will be REMOVED: apache libapache-mod-ssl The following NEW packages will be installed: apache-perl libapache-asp-perl is there something wrong with dependencies? or maybe there's some reason for that situation? regards, confused Eyck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: apache_1.3.12 SSL error
On Thu, Jun 29, 2000 at 05:34:40PM +0200, Dariush Pietrzak wrote: mod_ssl module (I think that's what you asked the first time). Does it not work for you? It doesen't: apt-get install apache-perl libapache-asp-perl Reading Package Lists... Done Building Dependency Tree... Done The following packages will be REMOVED: apache libapache-mod-ssl The following NEW packages will be installed: apache-perl libapache-asp-perl is there something wrong with dependencies? or maybe there's some reason for that situation? Ok, here's the deal ... libapache-mod-ssl depends on apache, and even though apache-perl provides apache the dependency isn't satisfied. i think that's because the apache dependency is version specific, but that's a guess. IANADD. I compiled my own libapache-mod-ssl package and editted the Depends: line in the debian/control file. I changed this: Depends: ${shlibs:Depends}, openssl, apache (= 1.3.9-1), apache (= 1.3.9-99), make to this: Depends: ${shlibs:Depends}, openssl, apache (= 1.3.9-1) | apache-perl (= 1.3.9-1), apache (= 1.3.9-99) | apache-perl (= 1.3.9-13.1-1.21.2309-1), make Ugly, but it installs. You need apache-dev and libssl09-dev from potato. -- Nathan Norman Eschew Obfuscation Network Engineer GPG Key ID 1024D/51F98BB7http://home.midco.net/~nnorman/ Key fingerprint = C5F4 A147 416C E0BF AB73 8BEF F0C8 255C 51F9 8BB7 pgpEImKFNyYw1.pgp Description: PGP signature
Re: apache_1.3.12 SSL error
On Thu, Jun 29, 2000 at 01:23:22AM +1000, Bill wrote: I've just installed apache_1.3.12 and when I start apache ssl I get the following error :/# /etc/apache1/bin/apachectl startssl Syntax error on line 1024 of /etc/apache1/conf/httpd.conf: Invalid command 'SSLEngine', perhaps mis-spelled or defined by a module not included in the server configuration /etc/apache1/bin/apachectl startssl: httpd could not be started Any help would be greatly appreciated Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. -- Nathan Norman "Eschew Obfuscation" Network Engineer GPG Key ID 1024D/51F98BB7http://home.midco.net/~nnorman/ Key fingerprint = C5F4 A147 416C E0BF AB73 8BEF F0C8 255C 51F9 8BB7 PGP signature
Re: apache_1.3.12 SSL error
Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. is it posible and secure to run apache-perl with mod_sll? I need at least a little crypted access to my ASP pages regards, Eyck -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: apache_1.3.12 SSL error
On Wed, Jun 28, 2000 at 06:32:23PM +0200, Dariush Pietrzak wrote: Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. is it posible and secure to run apache-perl with mod_sll? I need at least a little crypted access to my ASP pages You can run mod_ssl with apache and mod_perl, so I don't see why not. -- Nathan Norman "Eschew Obfuscation" Network Engineer GPG Key ID 1024D/51F98BB7http://home.midco.net/~nnorman/ Key fingerprint = C5F4 A147 416C E0BF AB73 8BEF F0C8 255C 51F9 8BB7 PGP signature
Re: apache_1.3.12 SSL error
Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. is it posible and secure to run apache-perl with mod_sll? I need at least a little crypted access to my ASP pages regards, Eyck
Re: apache_1.3.12 SSL error
On Wed, Jun 28, 2000 at 06:32:23PM +0200, Dariush Pietrzak wrote: Make sure the LoadModule directive for mod_ssl comes before any SSL directives in the config file. is it posible and secure to run apache-perl with mod_sll? I need at least a little crypted access to my ASP pages You can run mod_ssl with apache and mod_perl, so I don't see why not. -- Nathan Norman Eschew Obfuscation Network Engineer GPG Key ID 1024D/51F98BB7http://home.midco.net/~nnorman/ Key fingerprint = C5F4 A147 416C E0BF AB73 8BEF F0C8 255C 51F9 8BB7 pgpVdOmRICyz2.pgp Description: PGP signature