Re: RSA_PKCS1_RSAref : That old question

2000-12-03 Thread JoshNarins 

Thanks all.

I hadn't properly considered what the combination of 
"RSA is now free"
"openssl-0.9.5a is now openssl-0.9.6"
meant.

The consequences, no doubt, of spending a couple months
programming for the Palm.

Thanks again!

Re: Need Help with Virtual Hosts

2000-05-23 Thread JoshNarins 

Rick Widmer ([EMAIL PROTECTED]) writes:
Sorry about the second post, I just reread your message and noticed
your desire to use separate log files.  Be aware that will severely
reduce the number of VirtualHosts you can have.  There is a per-process
limit on the number of open files, and if I remember right I ran out of
file handles around 30 VirtualHosts when I allowed each to have its own
access and error logs.  I am now over 60 VirtualHosts with no problems
after eliminating private log files.

The per process file opening limit was a configurable parameter of your OS.
It was either a user resource limit (ulimit) or a tunable kernel config found 
in 
param.c or param.h (NFILES??) or UNIX has invented yet another way to put
reins on processes.

So, you just might be able to make one log per process, if you change the
ulimit's for the user the web server is running as OR you tune your kernel
and rebuild.
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]

Re: restrict access to a servlet

2000-05-22 Thread JoshNarins 

In a message dated 5/22/2000 10:23:01 PM Eastern Daylight Time, 
[EMAIL PROTECTED] writes:

 Is there a way I can restrict access to a servlet unless it is an
  https request ?  I am able to incoprate mod-ssl into apache.
  

Sure, I do it all the time with mod_perl.

The ServletRequest object has different attributes, and if
one of them is PORT, well, then you can decline all requests
unless the port is 443.

Sorry I can't name the specific attribute for you, it's been
almost a year since I did any Servlet work.
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]

Re: Help please with opening port 443 for Apache on Slackware 7

2000-05-11 Thread JoshNarins 

IN httpd.conf

Listen 443

and then a VirtualHost (something)443/VirtualHost
directive. They have a good sample one in httpd.conf.default
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]

Re: rotatelogs

2000-05-08 Thread JoshNarins 

In a message dated 5/8/2000 6:54:45 PM Eastern Daylight Time, [EMAIL PROTECTED] 
writes:

 .0957540240

It's the number of seconds since Jan 1, 1970. 
UNIX epoch time.
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]

Re: installing through RPM

2000-04-28 Thread JoshNarins 

In a message dated 4/28/2000 7:47:22 AM Eastern Daylight Time, 
[EMAIL PROTECTED] writes:

 after I install the RPM, is it possible if I
  will add php3 + mysql + imap + ldap ?

I don't know about them, but I am sure mod_perl works
very badly with the RPM Apache.

Beyond that, RPM Apache is not the latest, most secure
version.

-Josh
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]

Re: installing through RPM

2000-04-28 Thread JoshNarins 

ERRATA:

I was referring to the RedHat Apache RPM, not
the combined Apache/SSL rpms from ssl sites.


I don't know about them, but I am sure mod_perl works
very badly with the RPM Apache.

Beyond that, RPM Apache is not the latest, most secure
version.
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]

[install] FixPatch or Mod_ssl?

2000-04-27 Thread JoshNarins 

I'm trying to build Apache with mod_perl, mod_php, mod_ssl
and a couple easier to install mod_s(i.e. rewrite,proxy,so).

The conflict comes between
(I) mod_ssl-2.6.3-1.3.12
AND
(II) apache_1.3.12+ssl_1.40

If I build (I) first, then when I try to patch apache with
(II)'s FixPatch it fails with a couple Makefile errors
(skipping certificate, overriding certificate) and some
gcc errors when working with http_config.c (SSL_MAGIC_COOKIE
undeclared)

If I use (II)'s FixPatch first, I can't apply mod_ssl.

:The mod_ssl/2.6.3 can be used for Apache/1.3.12 only.
: Your Apache source tree is version 1.3.12 Ben-SSL/1.40


I was pretty sure that I needed to patch Apache.
I've gotten the 10x repeated build procedure pretty well
documented now, it's just that it doesn't seem to all 
come together.

For the record:
Redhat 6.1
Perl   5.6.0 (same gcc used for stuff below)
Apache 1.3.12
modperl  (3 days old version, from CVS)
php-4.0RC1.tar.gz
mod_ssl-2.6.3-1.3.12
and all the stuff I could add for it like...
 rsaref20
 open_ssl-0.9.5a
 mm-1.0.12
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]

Re: HOW TO?: mod_ssl w/RASref + mod_perl

2000-04-23 Thread JoshNarins 

The instructions are in the mod_ssl-2.6.3-1.3.12/INSTALL
file near the bottom. "Apache + mod_ssl/OpenSSL + mod_perl/Perl"

Basically, you hook up ssl and then mod_perl and then 
apache. Php is applied to the then working Apache.

No, I haven't gotten working yet, but that I am following
the instructions (except for the part where I am trying to 
use DSO instead of APACI).

My problem is that I am not getting a libperl.a (regular 
output of mod_perl's installation) in src/modules or
anywhere else, but that's a topic for the mod_perl list. :)
__
Apache Interface to OpenSSL (mod_ssl)   www.modssl.org
User Support Mailing List  [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]