Missing ENV variables....
Setup, apache 1.3.4, ssl_mod 1.32, SSLeay 0.9.0b config:- ServerType standalone Port 443 User nobody Group nobody ServerAdmin root@localhost ServerRoot /usr/local/apache/ TransferLog "|/usr/local/apache/bin/rotatelogs /usr/local/apache/logs/access_log 86400" PidFile logs/httpd.pid ServerName aserver.company.com MinSpareServers 3 MaxSpareServers 20 StartServers 3 SSLCacheServerPath bin/gcache SSLCacheServerPort logs/gcache_port SSLCacheServerRunDir /tmp SSLCACertificatePath /usr/local/apache/conf SSLCACertificateFile /usr/local/apache/conf/httpsd.pem SSLCertificateFile /usr/local/apache/conf/httpsd.pem SSLSessionCacheTimeout 15 SSLRequireSSL AuthType Basic AuthName radadmin AuthGroupFile /dev/null AuthUserFile /usr/local/apache/passwdfile require valid-user ScriptAlias /cgi-bin /usr/local/apache/cgi-bin The httpsd compiles, installs and (almost) runs correctly. My only problem is that several (read as all) enviroment variables are not available to my cgi programs. I tested this with my own programs and the "test" bash script that comes with apache, in each case, I get a blank reponse for each of the variables (QUERY_STRING, SERVER_NAME, SSL_CIPHER...to name a few). If anyone has any ideas, as to what the cause is, please mail the list or me directly. tia dave - sys-admin __ Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/ Official Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
bind: Address already in use
I run this server on Port 80. No other apache 1.3.2 servers running. apachectl startssl gives me this in error_log [Tue Oct 6 13:19:10 1998] ssl_gcache started bind: Address already in use however apachectl start runs fine: [Tue Oct 6 13:19:10 1998] [notice] Apache/1.3.2 (Unix) PHP/3.0.4 mod_ssl/2.0.11 y/0.9.0b configured -- resuming normal operations What is bind complaining about and why can't I run startssl? -Patrick Momentum Online __ Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/ Official Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: bind: Address already in use
After killing gcache, I tried apachectl startssl again, and it wouldn't run. That's when I figured out that I needed the section. I had previously ripped it out thinking it wasn't necessary! After reading messages on this list, I now have a (small) clue! Thanks to all, Patrick __ Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/ Official Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Help! - CA signed cert doesn't work
Hi, I am running Apache 1.3.2 and mod_ssl 2.0.12 I have just picked up my certificate from Thawte Consulting and I get the following error in misc-ssl [21/Oct/1998:09:16:49 +1300] Unable to set private key [21/Oct/1998:09:16:49 +1300] ssl_int_SetCertStuff failed The temporary certificate seems to work fine. All I did was to substitute the new cert for the old one and stop and sslstart apache. Any assistance most appreciated. -- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Glen Eustace, on behalf of GodZone Internet Services, a division of AGRE Enterprises Limited 176 Te Awe Awe Street, Palmerston North, New Zealand Ph: +64 6 356 2562, Fax: +64 6 357 0271 http://www.godzone.net.nz, EMail: [EMAIL PROTECTED], ICQ: 10397208 =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= __ Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/ Official Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Removing passphrase at boot
OK I know this is defeats the purpose of having a password protected certificate, but this will do what you want. Get a program called "expect".here's the expect script that does exactly what you want albiet its for apache 1.2.6 -- Cut Here -- #!/usr/local/bin/expect -- # Expect has to be at least version 5.0, which is ancient! exp_version -exit 5.0 # The passphrase is going to be the pword variable set pword "THE_PASSPHRASE" # Duh, make it big for the hell of it set timeout 60 # Just for the hell of it spawn /usr/bin/kill -TERM `/usr/bin/cat /var/httpd/logs/httpd.pid` # Run the secure version of apache spawn /usr/local/apache/bin/httpsd -f /etc/httpd.conf # Apache will say something like "Enter passphrase:", so lets wait till it says Enter expect "Enter" # Tell it our passphrase send "$pword\r" # Because I'm patient sleep 1 # If you have more than one passphrase you want to bypass, just uncomment these and # if the password is different, create a new variable on top, easy enough.. #expect "Enter" #send "$pword\r" #sleep 1 -- Stop Here - EOF -- You can put this in your rc files so it does this at bootup...in solaris you can put it in /etc/rc2 Sidenote : If you want it to be a little more secure than the above (having the password in plaintext, you can do a "man libexpect" and see how to code a C program using expect) - Original Message - From: <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, June 30, 1999 8:43 AM Subject: Removing passphrase at boot > Hello all, > I know this has been covered before and is documented but we are having power > problems and I don't have any power on my computer where all this info is stored > so I apologize for the repeat. > We have recieved a cert from Verisign. We need to remove the passphrase so that > if we remotely reboot the machine it will not sit and wait for the phrase before > finishing the boot process. > How would I go about doing this? > Thanks, > John > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
wacky setup
has anyone configured apache 1.3.9 + mm 1.0.9 + mod_perl 1.2.1 + php4 (beta2) + openssl 0.9.4 + latest mod_ssl Seems kinda tricky to me...I could leave out mm if that would cause a conflict, which I don't see why it would, but the rest I would really want to keep together. Thanks. In case it matters, its Solaris 2.5.1/sparc... __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
