RE: Problem starting mod_ssl and apache
All, Ignore the previous e-mail. After spending time reading through my config, spec and make files, I found my issues and they are now corrected. Thanks :-) Drew -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Drew J. Como Sent: Thursday, July 07, 2005 9:10 PM To: modssl-users@modssl.org Subject: Problem starting mod_ssl and apache All, I am having an interesting problem where I am getting the following error message when I start Apache: Cannot load /usr/lib/apache/mod_sxnet.so into server: shared object not open I have built the following rpms from their source packages, which are all the latest versions. (apache-1.3.33, mod_ssl-2.8.23, openssl-0.9.8) Anyone have an idea as to what is wrong? (Or what I built wrong??) Thanks :-) Drew __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
Problem starting mod_ssl and apache
All, I am having an interesting problem where I am getting the following error message when I start Apache: Cannot load /usr/lib/apache/mod_sxnet.so into server: shared object not open I have built the following rpms from their source packages, which are all the latest versions. (apache-1.3.33, mod_ssl-2.8.23, openssl-0.9.8) Anyone have an idea as to what is wrong? (Or what I built wrong??) Thanks :-) Drew __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
RE: Schedule for mod_ssl 2.8.20-1.3.32?
Bernd, It appears that the updated package is already released. >From what I can tell, it has been up for a few hours now. http://www.modssl.org/source/mod_ssl-2.8.21-1.3.32.tar.gz Cheers! ==== Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com BASCOM Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Bernd Steinert Sent: Friday, October 22, 2004 2:42 AM To: [EMAIL PROTECTED] Subject: Schedule for mod_ssl 2.8.20-1.3.32? Is there a release date for mod_ssl for Apache 1.3.32, already? Thanks! Yours Bernd Steinert __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: openssl upgrade
Beau, The easiest way to upgrade is to simply install the latest RPM for your distibution. These are free downloads and can be easily obtained by going to www.redhat.com. Here is something easier for you. Click on the link below and simply download the patch for the appropriate OS: https://rhn.redhat.com/errata/RHSA-2003-062.html Download the package and then install it using the following command: rpm -Uvh [nameofpackage.rpm] Enjoy :-) Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Robert Lagana Sent: Thursday, March 20, 2003 11:50 AM To: '[EMAIL PROTECTED]' Subject: RE: openssl upgrade Linux 7.2 RedHat Pentium -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Thursday, March 20, 2003 11:45 AM To: '[EMAIL PROTECTED]' Subject: Re: openssl upgrade On 20 Mar 2003 at 11:34, Robert Lagana wrote: > > On a linux 7.2 system, would it be easy to upgrade the current version of > OpenSSL to the most recent? > Are there any directions for this? > > Thanks linux 7.2 what? (RedHat, SuSE, etc.) Aloha => Beau; __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Issue with IE6 and a self-signed cert.
I have run into this problem as well and have not found a resolution to it either. If you do find the answer, please let me know!! Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of James Kilton Sent: Wednesday, February 05, 2003 10:29 AM To: [EMAIL PROTECTED] Subject: Issue with IE6 and a self-signed cert. Hello. I'm trying out modssl for the first time on Apache 1.3.27. I followed the instructions in the modssl INSTALL file to install both modssl and Apache. I went with option 2 because I also needed to integrate PHP with Apache. When I ran 'make certificate', I used TYPE=custom because I wanted to self-sign it. This all seemed to go well -- the CA cert was created, then the server's cert was created and signed. When I go to the site in IE, however, I always get the pop-up that warns about the cert being signed by an untrusted CA. If I try to install the cert into my trusted root store, IE says the import has succeeded but the cert doesn't appear in the store, and I continue to get the popup warning. I've tried this several times to no avail. I've never run into anything like this so I'm somewhat at a loss. I created and imported a cert in Tomcat he other day and it went fine, but for some reason IE doesn't seem to like this one. Has anyone ever experienced anything like this? Any advice would be appreciated. Thanks. __ Do you Yahoo!? Yahoo! Mail Plus - Powerful. Affordable. Sign up now. http://mailplus.yahoo.com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Version number
Martin, Actually, you may need to recompile Apache (w/ PHP if you need that.) When building Apache from sources, you have to specify where the OpenSSL libraries are installed. If you happened to not use the ones specified by the RPM and used OpenSSL sources, upgrading the RPM will not help you and you will need to rebuild Apache with the new libraries. Let me know if you need help with this... Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Martin Nyberg Sent: Friday, September 20, 2002 3:55 PM To: modssl-users Subject: Version number Hi ! I've just upgraded OpenSSL 0.9.6d to 0.9.6g on FreeBSD, but Apache says that it's running OpenSSL 0.9.6a! Where is this version number and how to change it? I read somewhere in the archive that a solution might be to recompile PHP... But what does PHP have to do with Apache (something I don't know) ? Thanks. Martin Nyberg __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: problem build apache_1.3.26 with modssl
Actually, you can, but your using the wrong version of mod_ssl. You will need to use mod_ssl-2.8.9-1.3.26. Hope this helps!! Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of J S Sent: Wednesday, June 19, 2002 4:57 AM To: [EMAIL PROTECTED] Subject: problem build apache_1.3.26 with modssl How do I compile mod_ssl-2.8.8-1.3.24 with apache_1.3.26? When I run configure --with-apache=../apache_1.3.26 I get the foolowing error: Configuring mod_ssl/2.8.8 for Apache/1.3.24 ./configure:Error: The mod_ssl/2.8.8 can be used for Apache/1.3.24 only. ./configure:Error: Your Apache source tree under ../apache_1.3.26 is version 1.3.26. ./configure:Hint: Please use an extracted apache_1.3.24.tar.gz tarball ./configure:Hint: with the --with-apache option, only. Does this mean I can't build apache_1.3.26 with mod-ssl compiled in? JS. _ Send and receive Hotmail on your mobile device: http://mobile.msn.com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Dummy SSL Certs and W32/Internet Explorer
Frank, *Smiles*. That was good! Anyway, the certs are signed (I didn't understand the signing process until I read the past post), actually it was done at the time I generated the certs. It's gotta be a problem within IE since Netscape works just fine. I'll keep looking... (PS - What's a good cleaner to get this green marker off my monitor :-) ) Thanks :-) Drew -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Frank Reichenbacher Sent: Thursday, April 25, 2002 2:19 PM To: [EMAIL PROTECTED] Subject: Re: Dummy SSL Certs and W32/Internet Explorer Bring it up in pico, then write your signature on the monitor with a Vis-A-Vis. Actually there is a script included in the mod_ssl tarball, called, interestingly enough, "sign.sh", that does it for you. Again, I forget the details (sorry). But no! I just found it in the archives from only two months ago: http://www.mail-archive.com/modssl-users@modssl.org/msg13272.html Frank P.S. - If this doesn't work try using a permanent ink pen. - Original Message - From: "Drew J. Como" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, April 25, 2002 10:41 AM Subject: Dummy SSL Certs and W32/Internet Explorer > Frank, > > That may be it.. Let me be stupid for a second. How > do I 'sign' the cert? > > Thanks :-) > > Drew > > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Frank Reichenbacher > Sent: Thursday, April 25, 2002 12:37 PM > To: [EMAIL PROTECTED] > Subject: Re: Dummy SSL Certs and W32/Internet Explorer > > > Drew - > > Did you sign the certificate? I forgot to mention that I was unable to get > my IE 6 to accept the CA without prompting until I signed my certificate. > > Frank > > > > - Original Message - > From: "Drew J. Como" <[EMAIL PROTECTED]> > To: <[EMAIL PROTECTED]> > Sent: Thursday, April 25, 2002 9:27 AM > Subject: RE: Dummy SSL Certs and W32/Internet Explorer > > > > Aryeh, > > > > I did everything that you had mentioned, but it is > > still coming up with the message even after I install > > them. (I haven't rebooted my machine yet, so I don't > > know if that has anything to do with it.) > > > > I'll reply back to the list after I reboot and let you > > know if that did it. > > > > Thanks :-) > > > > > > > > -Original Message- > > From: [EMAIL PROTECTED] > > [mailto:[EMAIL PROTECTED]]On Behalf Of Aryeh Katz > > Sent: Thursday, April 25, 2002 11:08 AM > > To: [EMAIL PROTECTED] > > Subject: RE: Dummy SSL Certs and W32/Internet Explorer > > > > > > > Aryeh, > > > > > > It shows up in the 'Intermediate Certification Authorities' > > > area, but not in any others. > > > > > > Is this the problem, and if so, how can I get the cert to > > > be accepted permanently (atleast until it expires)? > > > > > Install Certificate Wizard->Next-> > > Place all Certificates into the following store->Browse-> > > Show Physical Stores->Trusted Root CAs->Registry-> > > OK > > etc. > > --- > > Aryeh Katz > > VASCO > > www.vasco.com > > > > __ > > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > > User Support Mailing List [EMAIL PROTECTED] > > Automated List Manager[EMAIL PROTECTED] > > > > __ > > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > > User Support Mailing List [EMAIL PROTECTED] > > Automated List Manager[EMAIL PROTECTED] > > > > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] > > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] > __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Dummy SSL Certs and W32/Internet Explorer
Frank, That may be it.. Let me be stupid for a second. How do I 'sign' the cert? Thanks :-) Drew -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Frank Reichenbacher Sent: Thursday, April 25, 2002 12:37 PM To: [EMAIL PROTECTED] Subject: Re: Dummy SSL Certs and W32/Internet Explorer Drew - Did you sign the certificate? I forgot to mention that I was unable to get my IE 6 to accept the CA without prompting until I signed my certificate. Frank - Original Message ----- From: "Drew J. Como" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, April 25, 2002 9:27 AM Subject: RE: Dummy SSL Certs and W32/Internet Explorer > Aryeh, > > I did everything that you had mentioned, but it is > still coming up with the message even after I install > them. (I haven't rebooted my machine yet, so I don't > know if that has anything to do with it.) > > I'll reply back to the list after I reboot and let you > know if that did it. > > Thanks :-) > > > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Aryeh Katz > Sent: Thursday, April 25, 2002 11:08 AM > To: [EMAIL PROTECTED] > Subject: RE: Dummy SSL Certs and W32/Internet Explorer > > > > Aryeh, > > > > It shows up in the 'Intermediate Certification Authorities' > > area, but not in any others. > > > > Is this the problem, and if so, how can I get the cert to > > be accepted permanently (atleast until it expires)? > > > Install Certificate Wizard->Next-> > Place all Certificates into the following store->Browse-> > Show Physical Stores->Trusted Root CAs->Registry-> > OK > etc. > --- > Aryeh Katz > VASCO > www.vasco.com > > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] > > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] > __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Dummy SSL Certs and W32/Internet Explorer
Aryeh, I did everything that you had mentioned, but it is still coming up with the message even after I install them. (I haven't rebooted my machine yet, so I don't know if that has anything to do with it.) I'll reply back to the list after I reboot and let you know if that did it. Thanks :-) ======== Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Aryeh Katz Sent: Thursday, April 25, 2002 11:08 AM To: [EMAIL PROTECTED] Subject: RE: Dummy SSL Certs and W32/Internet Explorer > Aryeh, > > It shows up in the 'Intermediate Certification Authorities' > area, but not in any others. > > Is this the problem, and if so, how can I get the cert to > be accepted permanently (atleast until it expires)? > Install Certificate Wizard->Next-> Place all Certificates into the following store->Browse-> Show Physical Stores->Trusted Root CAs->Registry-> OK etc. --- Aryeh Katz VASCO www.vasco.com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Dummy SSL Certs and W32/Internet Explorer
Aryeh, It shows up in the 'Intermediate Certification Authorities' area, but not in any others. Is this the problem, and if so, how can I get the cert to be accepted permanently (atleast until it expires)? Thanks :-) ======== Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Aryeh Katz Sent: Thursday, April 25, 2002 9:58 AM To: [EMAIL PROTECTED] Subject: RE: Dummy SSL Certs and W32/Internet Explorer > Aryeh, > > I actually see the cert in the folder, but for some reason, > it still prompts my users to accept it. > Is the CA's certificate in the browser? --- Aryeh Katz VASCO www.vasco.com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Dummy SSL Certs and W32/Internet Explorer
Aryeh, I actually see the cert in the folder, but for some reason, it still prompts my users to accept it. Things that make you go hmm. Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Aryeh Katz Sent: Thursday, April 25, 2002 9:25 AM To: [EMAIL PROTECTED] Subject: Re: Dummy SSL Certs and W32/Internet Explorer > All, > > I have just installed mod_ssl-2.8.7 with Apache 1.3.23 > on my SuSE system. Everything built ok, but the problem > that I am having is when I am using 'dummy' or fake certificates. > > My Netscape/Mozilla users can easily accept and save the dummy > certificates (the first time to the site) and then on each visit to > the SSL-enabled site, it doesn't prompt them to accept the cert since > it is saved. > > However, (there's always one), Internet Explorer accepts the > certificate and you can even 'import' it into your program, (It even > shows in the list), but if you close the browser and then go back to > the SSL-enabled site, it asks you to save the cert once again, just > like it did the first time. > > Is this a browser bug, an unset-setting, or just MS thinking for us > again? Try rebooting. You should see the certificate in the correct store once you do. Aryeh --- Aryeh Katz VASCO www.vasco.com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Dummy SSL Certs and W32/Internet Explorer
All, I have just installed mod_ssl-2.8.7 with Apache 1.3.23 on my SuSE system. Everything built ok, but the problem that I am having is when I am using 'dummy' or fake certificates. My Netscape/Mozilla users can easily accept and save the dummy certificates (the first time to the site) and then on each visit to the SSL-enabled site, it doesn't prompt them to accept the cert since it is saved. However, (there's always one), Internet Explorer accepts the certificate and you can even 'import' it into your program, (It even shows in the list), but if you close the browser and then go back to the SSL-enabled site, it asks you to save the cert once again, just like it did the first time. Is this a browser bug, an unset-setting, or just MS thinking for us again? Any help would be greatly appreciated!! ======== Drew J. Como Phone: 631-434-6600 Systems Administrator Fax: 631-434-7800 [EMAIL PROTECTED] Web: www.bascom.com Bascom Global Internet Services, Inc. "When quality is the goal, winning is guaranteed." __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]