Re: Urgent: remove password from server cert?
Paul, if all else fails you can use 'expect' script, but im sure an rc script should do the job nicely. Paul wrote: In a sudden (and late) moment of epiphany, I just realized (while writing a note to our CSA to please put the new server's startup in the machines boot cycle) that when we reboot (*every* monday morning in the wee hours) it's not terribly likely that anyone's going to be around to feed the password to the startup query. This really needs to be automated. Help? =o) Paul = Friends are those who, when you must inconvenience them, are less bothered by it than you. ;o] __ Do You Yahoo!? Send instant messages get email alerts with Yahoo! Messenger. http://im.yahoo.com/ __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: Auto Reply to your message ...
Can someone please remove this user from the list, Im receiving massive amounts of auto reply spam, as are you. [EMAIL PROTECTED] wrote: - The following text is an automated response to your message - Your message has been received. I will respond to your message on a first come first serve basis. Please be kind and refrain from sending me junk! Frank Casser 724storefront.com, Inc 229 SE 6th Street Grants Pass, OR 97526 Your e-commerce web hosting solution. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: Auto Reply to your message ...
Thanks ;-) "Ralf S. Engelschall" wrote: On Wed, Jun 14, 2000, [EMAIL PROTECTED] wrote: Can someone please remove this user from the list, Im receiving massive amounts of auto reply spam, as are you. - The following text is an automated response to your message - Your message has been received. I will respond to your message on a first come first serve basis. Please be kind and refrain from sending me junk! Frank Casser 724storefront.com, Inc 229 SE 6th Street Grants Pass, OR 97526 Your e-commerce web hosting solution. Already done this evening. I've kicked him out. He's gone... Ralf S. Engelschall [EMAIL PROTECTED] www.engelschall.com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: [BugDB] Expose your business to the Internet (PR#367)
Thanks, Another mail server to add to the spam list ;-) stupid geeks. (?) [EMAIL PROTECTED] wrote: PUT EMAIL MARKETING TO WORK FOR YOU... Call NOW and receive 50,000 additional emails with your order for only $100. Thats 40,000 FREE emails!!! CALL NOW-702-248-1043 WE HAVE OPT-IN LISTS see below for removal. Special Ends Friday April 14, 2000 MLM'ers, We can build your downline. Imagine having a product or idea and selling it for only $10. Now imagine sending an ad for your product or idea to 25 million people! If you only get a 1/10 of 1% response you have just made $250,000!! You hear about people getting rich off the Internet everyday on TV, now is the perfect time for you to jump in on all the action. FACT. With the introduction of the Internet, one primary KEY to conducting your business successfully is creating massive exposure in a cost effective manner. FACT. The experts agree that email marketing is one of the most cost effective forms of promotion in existence today. Electronic mail has overtaken the telephone as the primary means of business communication.(American Management Association) Of online users 41 percent check their email daily. "A gold mine for those who can take advantage of bulk email programs"- The New York Times "Email is an incredible lead generation tool" -Crains Magazine "Blows away traditional Mailing"-Advertising Age "It's truly arrived. Email is the killer app so far in the online world"-Kate Delhagen, Forrester Research Analyst Why not let a professional company handle your direct email marketing efforts for you? *We will assist you in developing your entire campaign! *We can even create your ad or annoucement for you! *No responses? We resend at no cost! For More Information CALL NOW-702-248-1043 For removal see below. SPECIAL RATES SPECIAL ENDS Friday April 14, 2000 Targeted Rates Upon Request. Call NOW and receive 50,000 additional emails with your order for only $100. Thats 40,000 FREE emails!!! Call NOW - 702-248-1043 ++ We are terribly sorry if you received this message in error. If you wish to be removed. Please, type "REMOVE" in the subject line: [EMAIL PROTECTED] ++ __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Happy Holidays!
Happy Holidays modssl users! I hope they're joyous ;-) -- Colin Faber Perl programer, Systems administration fpsn.net, Inc. [EMAIL PROTECTED] www.fpsn.net __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: CA and server certs
Um.. sounds like you didn't sign it correctly.. Following instructions using 'sign.sh' right? hUnTeR wrote: Dear list readers - I have followed the instructions for generating my own CA and server certificate, and signed the server.csr creating the server.crt and put both the server.crt and server.key in /etc/httpd/conf/ and checked the httpd.conf.ssl file to make sure the server was pointing to these files in the corect location. And stopped and restarted the webserver. Now when i go to connect to it via an https request i get the following error: "The server's certificate has an invalid signature. You will not be able to connect to this site securely." I comared the pub and priv keys using the commands from the FAQ and have verified, i believe, that they do indeed match. Any ideas on how to correct this problem? Any help/advice would be GREATLY appreciated. -- Michael B. Weiner Systems Administrator/Partner The UserFriendly Network (UFN) -- / / (_)__ __ __ / /__/ / _ \/ // /\ \/ / //_/_//_/\_,_/ /_/\_\ * * * CHOICE OF A GNU GENERATION * * * __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] -- Colin Faber Perl programer, Systems administration fpsn.net, Inc. [EMAIL PROTECTED] www.fpsn.net __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: CA and certs
your CA information has to be different from the information listed in the key you wish to sign. Try that and it should work. hUnTeR wrote: Dear list readers: I found what i believe to be the problem that i am having. When i go to sign the server.csr, i get the following error after committing: error 7 at 0 depth lookup:certificate signature failure And that is why i am getting the signature error in apache trying to connect to the https. Any ideas? -- Michael B. Weiner Systems Administrator/Partner The UserFriendly Network (UFN) -- / / (_)__ __ __ / /__/ / _ \/ // /\ \/ / //_/_//_/\_,_/ /_/\_\ * * * CHOICE OF A GNU GENERATION * * * __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] -- Colin Faber Perl programer, Systems administration fpsn.net, Inc. [EMAIL PROTECTED] www.fpsn.net __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: [BugDB] mod_ssl dumps core with auth_ldap (PR#319)
Granted it makes life much easier for the newer unix users, But isn't pre compiling something like SSL kind of counter productive? GOMEZ Henri wrote: For Redhat Linux users, I just uploaded : http://www.modssl.org/contrib/apache-mod_ssl-auth_ldap-1.4.0-0.6.0.i386.rpm http://www.modssl.org/contrib/apache-mod_ssl-auth_ldap-1.4.0-0.6.0.src.rpm To be used with apache 1.3.9 + mod_ssl 2.4.6 at least. Direct use under Redhat 6.0. Get source and recompile under Redhat 5.x. Thanks to forward success or failure ... - Henri Gomez ___[_] EMAIL : [EMAIL PROTECTED] (. .) PGP KEY : 4912D659...oOOo..(_)..oOOo... PGP Fingerprint : 8CAD0D50356DA7E45C540B010FFE39E8 __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] -- Colin Faber Perl programer, Systems administration fpsn.net, Inc. [EMAIL PROTECTED] www.fpsn.net __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Off topic for a sec. ;-)
Guys im writing some CGI and im wondering if any of you apache guys know how i can automatically post a username / password so as to bypass a .htaccess prompt while still using .htacces and all its permissions. Anyone? -- Colin Faber Perl programer, Systems administration fpsn.net, Inc. [EMAIL PROTECTED] www.fpsn.net __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: File POST problem using MSIE
Johansson, Do you run into this problem when using SSL + CGI file upload script? Or is it restrictive to just POSTing files for upload. "Johansson, Fredrik" wrote: Greetings. We have encountered a problem concerning the file upload browser feature in MSIE (4 and 5) together with SSL. The transfer hangs, and never completes, if the file (i.e. POST request) is larger than ~30kB. Everything works fine when SSL is disabled. Needles to say but it works just fine with Netscape. An interesting thing is that if we turn on debug level logging for the ssl engine, the upload completes, but takes a lot of time and disk space. We have found some information on an issue with MSIE and IIS sending SSLV3 packets which are to large. There is supposed to exist a config directive for SSLeay called SSL_OP_MICROSOFT_BIG_SSLV3_BUFFER. Anybody succeeded in enabling it? We use: Apache 1.3.9 mod_ssl 2.4.2-1.3.9 win32 platform Anybody else seen anything like this? == Fredrik Johansson Deneb AB __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] -- Colin Faber Perl programer, Systems administration fpsn.net, Inc. [EMAIL PROTECTED] www.fpsn.net __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: installing modssl on frebsd 3.3
Chris are you starting httpd with 'httpd -DSSL' ? Chris Manjoine wrote: I have currently installed modssl for testing purposes but when i do a curl https://localhost/ it says that SSL is disabled can someone tell me what I need to have in my httpd.conf or apache.conf file to verify that it is configured properly? Chris Manjoine | DSP Webmaster | 335-3019 | [EMAIL PROTECTED] | 2B-2 Gilmore __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: [BugDB] https does not respond after kill -HUP (PR#298)
I two have this problem. With both my redhat linux 5.2 and 6.0 systems, I guess the only differnce between us, is I've compiled the software locally. [EMAIL PROTECTED] wrote: On Mon, Oct 04, 1999, [EMAIL PROTECTED] wrote: Full_Name: Luca Bonomi Version: 2.4.5 OS: Linux 2.2.5 Submission from: maxwell.fysik.dtu.dk (130.225.86.16) This seems something like bug 114, which is supposed to be closed. I have apache-mod_ssl-1.3.9.2.4.5-0.6.0 rpm installed on my RedHat 6.0 I have seen the same problem with mod_ssl-2.4.2, and upgrading to 2.4.5 did not help. When 'killall -HUP httpd' is issued, apache is correctly restarted, but SSL connections are refused by the server. Note that the killall command is used in the logrotate entry, thus breaking httpsd every week! This then has to be a Linux related problem, because I often stress-test mod_ssl with lots of continued restarts on my FreeBSD development machine and it always survived them correctly. So, can you find out more? For instance, what type of session cache are you using?; are any errors logged in the logfile, etc.? Ralf S. Engelschall [EMAIL PROTECTED] www.engelschall.com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Any public GNU signing sites?
Wondering if there was any public or GNU CA signing sites. or an Org trying to set one up? __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: httpd -l mystery
[EMAIL PROTECTED] wrote: sharri parsell [EMAIL PROTECTED] writes: i hope this is a simple question: -l does not show dynamically loaded modules. i've just finished installing a mod_ssl'd and mod_perl'd apache. i followed the installation docs (there was even an example for my setup) pretty carefully. upon completion, i do an httpd -l and see: There is no --enable-shared=ssl or --enable-shared=max below, so it would seems that mod_ssl should have been buil statically. But then then I have no idea what --some-other-stuff is supposed to do. -Tom Compiled-in modules: http_core.c mod_so.c mod_perl.c should i not see also mod_ssl.c? i thought that i had compiled in mod_ssl? more details below. something fishy which may or may not be related: my httpd.conf file was not backed up and replaced with a ssl'd version. any clues appreciated, sharri === here's the steps i took. i'm using redhat 6.0 with apache 1.3.9 (source RPM), mod_perl 1.21, mod_ssl 2.4.4-1.3.9. # apply mod_ssl to Apache source tree $ cd mod_ssl-2.4. $ ./configure --with-apache=/usr/src/redhat/BUILD/apache_1.3.9 # apply mod_perl to Apache source tree # and build/install the Perl-side of mod_perl $ cd mod_perl-1.21 $ perl Makefile.PL \ EVERYTHING=1 \ APACHE_SRC=/usr/src/redhat/BUILD/apache_1.3.9/src \ USE_APACI=1 \ PREP_HTTPD=1 \ DO_HTTPD=1 $ make $ make install # build/install Apache with mod_ssl and mod_perl # openssl is already installed $ SSL_BASE=SYSTEM $ cd /usr/src/redhat/SPECS # modify the apache.spec file in the relevant place: # configure # --some-other-stuff \ # --enable-module=ssl \ # --activate-module=src/modules/perl/libperl.a \ # --enable-module=perl $ rpm --short-circuit -bc /usr/src/redhat/SPECS/apache.spec $ strip /usr/src/redhat/BUILD/src/redhat_1.3.9/src/httpd $ mv /usr/src/redhat/BUILD/src/redhat_1.3.9/src/httpd /usr/sbin/httpd $ make certificate ### everything's groovy up to here. mod_perl enabled server starts ### up and does its web server thing. but where is mod_ssl? __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] -- Tom Vaughan tvaughan at aventail dot com __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]