Re: Issue setting up a Verisign certificate
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Robin escribió: | My virtualhost configuration is as follows: | | SSLEngine on | SSLCertificateFile /etc/apache2/public.crt - ^ | SSLCertificateKeyFile /etc/apache2/private.key | SSLCACertificateFile /etc/apache2/interm.crt I think this does not belong here, but I might be wrong. | [Mon Jul 27 16:05:07 2009] [error] Init: Unable to read server | certificate from file /etc/apache2/secure.canadaeast.com.public.crt - ---^ It seems your Apache is looking for the cert in a different file than you think. Probably because there is a different virtual host configuration for the SSL one. - -- - --- G & S Sistemas de Informacion, S.L. | Teléfono: 9 02 01 44 43 Victoriano Giralt| Land line: +34-952-207-241 Torre de San Telmo, 8| Mobile:+34-670-332-720 E-29018 Malaga (Spain) | http://www.gssi.es/ - --- -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) Comment: Using GnuPG with CentOS - http://enigmail.mozdev.org iD8DBQFKbgIWWHlx3l8ZumwRAk81AJ9aINiS57WlUCvEpHLboAsERThPdACfTp2f DZnobVXEnFsucQbkMINLcXQ= =SRHR -END PGP SIGNATURE- __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Managermajord...@modssl.org
Re: change your autoreply configuration!!!!
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Harald Langaker wrote: | Hey! | You autoryply "out of office" to modssl-users@modssl.org | <mailto:modssl-users@modssl.org> | Can you please STOP that, I DO NOT WANT TO GET A MAIL FROM YOU EVERY | TIME SOMEONE SENDS A MAIL TO | modssl-users@modssl.org <mailto:modssl-users@modssl.org>!!! | | Otherwise there has to be taken action to get you off the list! It is even worse, te estupid thing replies to its own replies, so it is an endless loop. - -- - --- G & S Sistemas de Informacion, S.L. | Telefono: 9 02 01 44 43 Victoriano Giralt| Land line: +34-952-207-241 Torre de San Telmo, 8| Mobile:+34-670-332-720 E-29018 Malaga (Spain) | http://www.gssi.es/ - --- -BEGIN PGP SIGNATURE- Version: GnuPG v1.2.6 (GNU/Linux) Comment: Using GnuPG with Fedora - http://enigmail.mozdev.org iD8DBQFCu9MxWHlx3l8ZumwRApfnAJ0QqRgim/IXJLj1Fan9S9p8v//KhQCfXkeR OevZUSbTwtRS/oKTTAtBpaI= =8F3R -END PGP SIGNATURE- __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
Re: mod_ssl, mod_rewrite, apache2 problem.
simontst wrote: > The nasty problem is that when I redirect a request for a page (e.g. > index.html) that contains an tag in the form of: > > http://server/logos.gif";> > > IE 6 continually complains that the page contains insecured items and > refuses to display the yellow padlock. However, an examination of my rewrite > logs indicates that the GET for the logos.gif is being redirected: [snip] > > If I remove the tag from index.html, the complaints go away, > index.html is accessed using https, and the padlock appears. So it would > appear that there is an issue with the GET for the .gif > > Thinking that browser might be getting confused by two redirects in a row > (the first for http://server/index.html, and the second for > http://server/logos.gif) I have tried to GET the logos.gif directly via > http://server/logos.gif. But again, even though the request is redirected to > https://server/logos.gif, the same warning message pops up and IE refuses to > display the padlock. But if I bypass mod_rewrite and GET the gif using the > URL: https://server/logos.gif, IE does not complain. > > Finally, Mozilla does not complain at all!! Jeez! My inclination is to > modify the s so that they all point to a relative path name instead I cannot verify what I'm talking about, both because you have not provided the URLs to test (than can be solved by local testest, but no time at the moment) and because I do not use any for of windoze, I'm just wild gessing IE's reasonig. In a wild gess, IE is right (I hate to say so :), though you are redirecting the request, the source for the page it is presenting has unsecure elements, the parser does not know in advance that the objects it will have to present to the user (your images with absolute references), are really server by secure means, it is asked to retrieve unsecured URLs (src=http:), though the page contains mixed elements. This is another example why absolute URLs shall be avoided when asking for contents from the same server :) -- ------- G & S Sistemas de Informacion, S.L. | Teléfono: 9 02 01 44 43 Victoriano Giralt| Land line: +34-952-207-741 Torre de San Telmo, 8| Mobile:+34-670-332-720 E-29018 Malaga (Spain) | http://www.gssi.es/ --- __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Undefined symbol BN_mod_exp_mont on mips
Hi, I'm trying to run Apache/mod_ssl on a Cobal Qube2 MIPS based system. I've succesfully built openssl-0.9.5a-1 and apache-mod_ssl-1.3.12.2.6.5-0 frm the source RPMS in the contrib area of www.modssl.org. If I do "make test" on the openssl source tree the test suite runs without a glitch, but, when I try to start apache with SSL oenabled I get: Starting httpd: httpd Syntax error on line 245 of /etc/httpd/conf/httpd.conf: Cannot load /usr/lib/apache/libssl.so into server: /usr/lib/libcrypto.so.0: undefined symbol: BN_mod_exp_mont Having searched the list archives and finding nothing, I'm clueless at this moment. Ideas anyone? Thanks in advance. -- --- G & S Sistemas de Informacion, S.L. | Phones: Victoriano Giralt| Land line: +34-952-207-048 Chief Consultant and Owner | Mobile:+34-670-332-720 Torre de San Telmo, 8| Fax: e-mail, looks nicer E-29018 Malaga (Spain) | E-mail: [EMAIL PROTECTED] Member of ISOC (Andalusian Chapter) | http://www.gssi.es/ --- __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]