Re: Apache with mod_ssl
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Even more revealing was the passphrase prompt, not required for plain httpd... Thanks, Ron DuFresne On Tue, 19 Jun 2007, Omar W. Hannet wrote: Are you quite certain that the LoadModule for mod_ssl has been commented out? The reason I ask: the output from 'apachectl start' which you provided below shows 'mod_ssl/2.2.4'. In the log file /opt/apache-2.2.4/logs/error_log, on lines that contain 'Apache/2.2.4' and 'configured -- resuming normal operations', do you see 'mod_ssl/2.2.4'? If so, it is still being loaded from somewhere in your configuration. Saikat Saha wrote: Sorry for late response on this one. This is what we have in httpd.conf which is generated at compile time. This problem does not go away even if I comment out last four lines and restart apache. Could you please advise what else could be leading apache to think it is https rather than http? # Secure (SSL/TLS) connections #Include conf/extra/httpd-ssl.conf # # Note: The following must must be present to support # starting without SSL on platforms with no /dev/random equivalent # but a statically compiled-in mod_ssl. # SSLRandomSeed startup builtin SSLRandomSeed connect builtin With above commented out, when I try to start apache, I get following passphrase prompt and apache does not start even after saying passphrase successful, no logs in logs directory although log level is "debug" ]# ./apachectl start httpd: Could not reliably determine the server's fully qualified domain name, using 10.3.110.109 for ServerName Apache/2.2.4 mod_ssl/2.2.4 (Pass Phrase Dialog) Some of your private key files are encrypted for security reasons. In order to read them you have to provide the pass phrases. Server 10.3.110.109:443 (RSA) Enter pass phrase: OK: Pass Phrase Dialog successful. [EMAIL PROTECTED] bin]# Thanks you very much for your help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet Sent: Monday, June 18, 2007 8:34 AM To: modssl-users@modssl.org Subject: Re: Apache with mod_ssl Do you have tags surrounding all SSL directives in your configuration file? For example: SSLPassPhraseDialog builtin # etc. Saikat Saha wrote:_module> Apache was compiled as below ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock disk_cache" --prefix=/opt/apache-2.2.4 Httpd -l gives below [EMAIL PROTECTED] bin]# httpd -l Compiled in modules: core.c prefork.c http_core.c mod_so.c How do I compile so that it does not load mod_ssl automatically and loads only if httpd.conf is configured. Surprisingly there are no error logs even at debug level. Thank you so very much for the kind help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet Sent: Friday, June 15, 2007 4:13 PM To: modssl-users@modssl.org Subject: Re: Apache with mod_ssl Saikat Saha wrote: We have apache 2.2.4 compiled with all modules but commented out all load modules. Do not have anything in httpd.conf file to state that this is https. But when I start apache, it tries to goto https and prompts for pass phrase. How does apache determine that this is https whereas this is actually a http server. Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this. After I enter a passphrase, it shows successful but the server never starts up. Can someone please help? The reason probably can be found in Apache's error_log file. Also can apache support both http and https at different ports at the same time? Yes. The defaults are port 80 for http and port 443 for https. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED] - -- ~~ admin & senior security consultant: sysinfo.com http://sysinfo.com Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629 ...We waste time looking for the perfect lover instead of creating the perfect love. -Tom Robbins -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.5 (GNU/Linux) iD8DBQFGer+zst+vzJSwZikRAlhnAJ4rLby4nNIlTNYwr0Vq2bQdI1TGmwCgwn1e itrUfe7Vl+cuoIdY3KOVw8M= =LeZD -END PGP SIGNATURE- __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
Re: Apache with mod_ssl
Are you quite certain that the LoadModule for mod_ssl has been commented out? The reason I ask: the output from 'apachectl start' which you provided below shows 'mod_ssl/2.2.4'. In the log file /opt/apache-2.2.4/logs/error_log, on lines that contain 'Apache/2.2.4' and 'configured -- resuming normal operations', do you see 'mod_ssl/2.2.4'? If so, it is still being loaded from somewhere in your configuration. Saikat Saha wrote: Sorry for late response on this one. This is what we have in httpd.conf which is generated at compile time. This problem does not go away even if I comment out last four lines and restart apache. Could you please advise what else could be leading apache to think it is https rather than http? # Secure (SSL/TLS) connections #Include conf/extra/httpd-ssl.conf # # Note: The following must must be present to support # starting without SSL on platforms with no /dev/random equivalent # but a statically compiled-in mod_ssl. # SSLRandomSeed startup builtin SSLRandomSeed connect builtin With above commented out, when I try to start apache, I get following passphrase prompt and apache does not start even after saying passphrase successful, no logs in logs directory although log level is "debug" ]# ./apachectl start httpd: Could not reliably determine the server's fully qualified domain name, using 10.3.110.109 for ServerName Apache/2.2.4 mod_ssl/2.2.4 (Pass Phrase Dialog) Some of your private key files are encrypted for security reasons. In order to read them you have to provide the pass phrases. Server 10.3.110.109:443 (RSA) Enter pass phrase: OK: Pass Phrase Dialog successful. [EMAIL PROTECTED] bin]# Thanks you very much for your help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet Sent: Monday, June 18, 2007 8:34 AM To: modssl-users@modssl.org Subject: Re: Apache with mod_ssl Do you have tags surrounding all SSL directives in your configuration file? For example: SSLPassPhraseDialog builtin # etc. Saikat Saha wrote:_module> Apache was compiled as below ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock disk_cache" --prefix=/opt/apache-2.2.4 Httpd -l gives below [EMAIL PROTECTED] bin]# httpd -l Compiled in modules: core.c prefork.c http_core.c mod_so.c How do I compile so that it does not load mod_ssl automatically and loads only if httpd.conf is configured. Surprisingly there are no error logs even at debug level. Thank you so very much for the kind help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet Sent: Friday, June 15, 2007 4:13 PM To: modssl-users@modssl.org Subject: Re: Apache with mod_ssl Saikat Saha wrote: We have apache 2.2.4 compiled with all modules but commented out all load modules. Do not have anything in httpd.conf file to state that this is https. But when I start apache, it tries to goto https and prompts for pass phrase. How does apache determine that this is https whereas this is actually a http server. Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this. After I enter a passphrase, it shows successful but the server never starts up. Can someone please help? The reason probably can be found in Apache's error_log file. Also can apache support both http and https at different ports at the same time? Yes. The defaults are port 80 for http and port 443 for https. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
RE: Apache with mod_ssl
Sorry for late response on this one. This is what we have in httpd.conf which is generated at compile time. This problem does not go away even if I comment out last four lines and restart apache. Could you please advise what else could be leading apache to think it is https rather than http? # Secure (SSL/TLS) connections #Include conf/extra/httpd-ssl.conf # # Note: The following must must be present to support # starting without SSL on platforms with no /dev/random equivalent # but a statically compiled-in mod_ssl. # SSLRandomSeed startup builtin SSLRandomSeed connect builtin With above commented out, when I try to start apache, I get following passphrase prompt and apache does not start even after saying passphrase successful, no logs in logs directory although log level is "debug" ]# ./apachectl start httpd: Could not reliably determine the server's fully qualified domain name, using 10.3.110.109 for ServerName Apache/2.2.4 mod_ssl/2.2.4 (Pass Phrase Dialog) Some of your private key files are encrypted for security reasons. In order to read them you have to provide the pass phrases. Server 10.3.110.109:443 (RSA) Enter pass phrase: OK: Pass Phrase Dialog successful. [EMAIL PROTECTED] bin]# Thanks you very much for your help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet Sent: Monday, June 18, 2007 8:34 AM To: modssl-users@modssl.org Subject: Re: Apache with mod_ssl Do you have tags surrounding all SSL directives in your configuration file? For example: SSLPassPhraseDialog builtin # etc. Saikat Saha wrote:_module> > Apache was compiled as below > > ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy > authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock > disk_cache" --prefix=/opt/apache-2.2.4 > > Httpd -l gives below > [EMAIL PROTECTED] bin]# httpd -l > Compiled in modules: > core.c > prefork.c > http_core.c > mod_so.c > > How do I compile so that it does not load mod_ssl automatically and > loads only if httpd.conf is configured. > > Surprisingly there are no error logs even at debug level. > > Thank you so very much for the kind help. > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet > Sent: Friday, June 15, 2007 4:13 PM > To: modssl-users@modssl.org > Subject: Re: Apache with mod_ssl > > Saikat Saha wrote: >> We have apache 2.2.4 compiled with all modules but commented out all >> load modules. Do not have anything in httpd.conf file to state that > this >> is https. But when I start apache, it tries to goto https and prompts >> for pass phrase. How does apache determine that this is https whereas >> this is actually a http server. > > Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this. > >> After I enter a passphrase, it shows >> successful but the server never starts up. Can someone please help? > > The reason probably can be found in Apache's error_log file. > >> Also can apache support both http and https at different ports at the >> same time? > > Yes. The defaults are port 80 for http and port 443 for https. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
Re: Apache with mod_ssl
Do you have tags surrounding all SSL directives in your configuration file? For example: SSLPassPhraseDialog builtin # etc. Saikat Saha wrote:_module> Apache was compiled as below ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock disk_cache" --prefix=/opt/apache-2.2.4 Httpd -l gives below [EMAIL PROTECTED] bin]# httpd -l Compiled in modules: core.c prefork.c http_core.c mod_so.c How do I compile so that it does not load mod_ssl automatically and loads only if httpd.conf is configured. Surprisingly there are no error logs even at debug level. Thank you so very much for the kind help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet Sent: Friday, June 15, 2007 4:13 PM To: modssl-users@modssl.org Subject: Re: Apache with mod_ssl Saikat Saha wrote: We have apache 2.2.4 compiled with all modules but commented out all load modules. Do not have anything in httpd.conf file to state that this is https. But when I start apache, it tries to goto https and prompts for pass phrase. How does apache determine that this is https whereas this is actually a http server. Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this. After I enter a passphrase, it shows successful but the server never starts up. Can someone please help? The reason probably can be found in Apache's error_log file. Also can apache support both http and https at different ports at the same time? Yes. The defaults are port 80 for http and port 443 for https. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
RE: Apache with mod_ssl
Apache was compiled as below ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock disk_cache" --prefix=/opt/apache-2.2.4 Httpd -l gives below [EMAIL PROTECTED] bin]# httpd -l Compiled in modules: core.c prefork.c http_core.c mod_so.c How do I compile so that it does not load mod_ssl automatically and loads only if httpd.conf is configured. Surprisingly there are no error logs even at debug level. Thank you so very much for the kind help. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Omar W. Hannet Sent: Friday, June 15, 2007 4:13 PM To: modssl-users@modssl.org Subject: Re: Apache with mod_ssl Saikat Saha wrote: > We have apache 2.2.4 compiled with all modules but commented out all > load modules. Do not have anything in httpd.conf file to state that this > is https. But when I start apache, it tries to goto https and prompts > for pass phrase. How does apache determine that this is https whereas > this is actually a http server. Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this. > After I enter a passphrase, it shows > successful but the server never starts up. Can someone please help? The reason probably can be found in Apache's error_log file. > Also can apache support both http and https at different ports at the > same time? Yes. The defaults are port 80 for http and port 443 for https. -- Omar W. Hannet http://www.allez-oop.net/ __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
Re: Apache with mod_ssl
Saikat Saha wrote: We have apache 2.2.4 compiled with all modules but commented out all load modules. Do not have anything in httpd.conf file to state that this is https. But when I start apache, it tries to goto https and prompts for pass phrase. How does apache determine that this is https whereas this is actually a http server. Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this. After I enter a passphrase, it shows successful but the server never starts up. Can someone please help? The reason probably can be found in Apache's error_log file. Also can apache support both http and https at different ports at the same time? Yes. The defaults are port 80 for http and port 443 for https. -- Omar W. Hannet http://www.allez-oop.net/ __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List modssl-users@modssl.org Automated List Manager[EMAIL PROTECTED]
Re: apache with mod_ssl
Hi Shouban, I am also exactly facing the same problem and struggling to find the solution. I have some clues on this problem. It happens only in the following scenario. If the server has 128bit encrypted server certificate, then it asks the NE client to present the certificate multiple times. It does not happen if we have the following. (1)If the server certificate has 40bit encryption. (2)If both the server and client certificates are issued by same CA. ( even for 128 bit encryption, it asks only once in NE to present the certificate ). It will be extremenly helpful if someone helps how to get the NE not asking to present the client certificate more than once. Shiva --- Shouben Zhou <[EMAIL PROTECTED]> wrote: > I currently use apache-SSL and am switching to the > apache with modssl > module. > The building process is success. The version I am > using to build > apache-modssl is > apache_1.3.23, modssl-2.8.7.-1.3.23 and > openssl-0.9.6a. > > I am having 2 problems when using this httpd: > > 1) when access the HTTPS server, netscape is asked > to select the user > certificate, then > passphease. After that netscape is asked again twice > to select user > certificate! This never > happens on my apache-SSL version. > > SSLVerifyClient require > SSLVerifyDepth 1 > > 2) When I switch to HTTP server ( VirtualHost same > node ), most times > netscape crashs! > This also never happens on my apache-SSL version. > > I have tried both shared and static building methods > and no luck. What > am I missing > here? > > > > *--* > * Shouben Zhou | > * > * ICASE | > * > * Mail Stop 132C, Bldg. 1152| Phone: (757) > 864-6558 * > * NASA Langley Research Center | Fax: (757) > 864-6134 * > * Hampton, VA 23681-2199| Email: > [EMAIL PROTECTED] * > *--* > > > __ > Apache Interface to OpenSSL (mod_ssl) >www.modssl.org > User Support Mailing List > [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] __ Do You Yahoo!? Yahoo! Sports - live college hoops coverage http://sports.yahoo.com/ __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Apache with Mod_SSL and multiple certificates
If this is a unix system look at multihoming your NIC. This can be done via multiple ifconfig commands. However, If these are to be a publically accessible sites then these IP addresses must map through to your external internet connection. If these are internal addresses, you should probably get them recorded in your internal dns. Why all this trouble? With SSL everything is encrypted. The only way an SSL server can get the correct certificate is to use the IP address and then use the certificate on that IP address. David Marshall -Original Message- From: Yu, Ming [mailto:[EMAIL PROTECTED]] Sent: Friday, November 02, 2001 10:21 AM To: '[EMAIL PROTECTED]' Subject: RE: Apache with Mod_SSL and multiple certificates I have one NIC in the system with Static IP address, How do I create multiple virtual sites, and each site has its own digital certificate. Can any one give me an example. Thanks in advance. - Ming -Original Message- From: Jim Jagielski [mailto:[EMAIL PROTECTED]] Sent: Friday, November 02, 2001 10:46 AM To: [EMAIL PROTECTED] Subject: Re: Apache with Mod_SSL and multiple certificates At 10:27 AM -0500 11/2/01, Yu, Ming wrote: >Hi - My apache system is running 1.3.20 with mod_ssl 2.8.4. I have one NIC >in the system, does anyone install multiple digital certificates on the >single NIC? If so, please advise how, what is the trade off? > >Thanks for any information. > Depends on what you mean. If you mean can you have multiple SSL sites on a system with a single NIC, the answer is yes, assuming you are using IP-based virtual hosts (name based will NOT work). -- === Jim Jagielski [|] [EMAIL PROTECTED] [|] http://www.jaguNET.com/ "A society that will trade a little liberty for a little order will lose both and deserve neither" __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Apache with Mod_SSL and multiple certificates
I have one NIC in the system with Static IP address, How do I create multiple virtual sites, and each site has its own digital certificate. Can any one give me an example. Thanks in advance. - Ming -Original Message- From: Jim Jagielski [mailto:[EMAIL PROTECTED]] Sent: Friday, November 02, 2001 10:46 AM To: [EMAIL PROTECTED] Subject: Re: Apache with Mod_SSL and multiple certificates At 10:27 AM -0500 11/2/01, Yu, Ming wrote: >Hi - My apache system is running 1.3.20 with mod_ssl 2.8.4. I have one NIC >in the system, does anyone install multiple digital certificates on the >single NIC? If so, please advise how, what is the trade off? > >Thanks for any information. > Depends on what you mean. If you mean can you have multiple SSL sites on a system with a single NIC, the answer is yes, assuming you are using IP-based virtual hosts (name based will NOT work). -- === Jim Jagielski [|] [EMAIL PROTECTED] [|] http://www.jaguNET.com/ "A society that will trade a little liberty for a little order will lose both and deserve neither" __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: Apache with Mod_SSL and multiple certificates
At 10:27 AM -0500 11/2/01, Yu, Ming wrote: >Hi - My apache system is running 1.3.20 with mod_ssl 2.8.4. I have one NIC >in the system, does anyone install multiple digital certificates on the >single NIC? If so, please advise how, what is the trade off? > >Thanks for any information. > Depends on what you mean. If you mean can you have multiple SSL sites on a system with a single NIC, the answer is yes, assuming you are using IP-based virtual hosts (name based will NOT work). -- === Jim Jagielski [|] [EMAIL PROTECTED] [|] http://www.jaguNET.com/ "A society that will trade a little liberty for a little order will lose both and deserve neither" __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: Apache with mod_ssl / openssl
FWIW Scott: I am a UnixWare7.1.1 user. It took me awhile to learn the value of doing so, but I grew weary of SCO not keeping up to date with either Apache or Sendmail, so I have removed their distributions of each and built them from source with very little trouble. The one problem I did experience was with entropy. UnixWare does not provide a /dev/random function . and so I was continually being stalled by the lack of sufficient entropy to serve SSL calls. If that is a problem in your o/s as well, then prngd will relieve all suffering in that regard with minimum fuss. Regards, George Walsh, Managing Director, DSC Directional Service Corp Travel Seewise Pacific Corp Vancouver, Canada [EMAIL PROTECTED] wrote: > > Hi- > > Does anyone know where I can find the binary for the latest Apache with mod_ssl >and openssl for SCO 5.0.5? > > > > Scott Trowbridge, VP > Information Resources > > mailto: [EMAIL PROTECTED] > Web: www.hsmc-ul.com -- George Walsh, Managing Director, Travel Seewise Pacific Corp Vancouver Canada __ Get your own FREE, personal Netscape Webmail account today at http://webmail.netscape.com/ __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: Apache with mod_ssl problems
On Wed, Oct 11, 2000 at 04:34:40PM -0400, Aaron Beveridge wrote: > Some users are having problems connecting to the server I just set up. I am > using Apache_1.3.12, mod_ssl-2.6.6-1.3.12, rsaref-2.0, and openssl-0.9.6 on > a RedHat 6.2 system. They are getting a "Server not found" error. I have > checked the apache error_log and it is reporting this error: First thing I would try is ditching the rsaref-2.0 libraries, you don't need them anymore for building in the USA. -Dave __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: Apache with mod_ssl problems
Are the users that are having problems using IE5 with 56-bit encryption by chance?>>> [EMAIL PROTECTED] 10/11/00 03:34PM >>> Some users are having problems connecting to the server I just set up. I am using Apache_1.3.12, mod_ssl-2.6.6-1.3.12, rsaref-2.0, and openssl-0.9.6 on a RedHat 6.2 system. They are getting a "Server not found" error. I have checked the apache error_log and it is reporting this error: [Wed Oct 11 10:04:14 2000] [error] mod_ssl: SSL handshake interrupted by system[Hint: Stop button pressed in browser?!] (System error follows)[Wed Oct 11 10:04:14 2000] [error] System: Connection reset by peer (errno: 104) Any ideas what the problem is? BTW, I am not an expert on any of this. Aaron Beveridge Systems Administrator Intrinsix Corp.
Re: Apache with mod_ssl caching old pages under https
On Mon, Mar 29, 1999, [EMAIL PROTECTED] wrote: > I'm having a problem where apache will not refresh updated pages under > https after I've made a change to them. I first saw this problem with: > > apache 1.3.4; mod_ssl 2.2.0-1.3.4; SSLeay-0.9.0b; php-3.0.6. > > I have now upgraded to: > > apache 1.3.6, mod_ssl 2.2.6-1.3.6; openssl-0.9.2b; php-3.0.7 > > In an attempt to fix the problem, but it is still there. Under the http > protocol everything works fine, but with https pages are not updated to > the new code. I'm sure this is a problem with apache, not the browser, > because I'm using php3 scripts which access a database and I've changed > the tables and the scripts to match, but under https there is a database > error. > > An extreme example of this problem is that I removed the entire directory > that houses the web site and under https it still displays the pages, > while under http it gets a file not found error. > > If anybody knows what is going on here or where I can look for further > information, please help me. Are you sure this isn't a problem with an intermediate proxy server? Because independent whether you use HTTP or HTTPS, when the stuff was removed from disk, then Apache cannot serve it. It doesn't cache pages - neither under HTTP nor HTTPS. So when you still get the data that's either a browser or proxy configuration issue. Ralf S. Engelschall [EMAIL PROTECTED] www.engelschall.com __ Apache Interface to OpenSSL (mod_ssl) www.engelschall.com/sw/mod_ssl/ Official Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
Re: Apache with mod_ssl caching old pages under https
If you removed the directory than it would be impossible (If I am understanding what you are saying correctly) to still retrieve the information. I would suggest totally flushing out the Netscape cache. There might be a problem where https documents are not removed for some reason or another that I am not aware of. Try another https compliant browser to see if that works... Hope this helps =) > I'm having a problem where apache will not refresh updated pages under > https after I've made a change to them. I first saw this problem with: > > apache 1.3.4; mod_ssl 2.2.0-1.3.4; SSLeay-0.9.0b; php-3.0.6. > > I have now upgraded to: > > apache 1.3.6, mod_ssl 2.2.6-1.3.6; openssl-0.9.2b; php-3.0.7 > > In an attempt to fix the problem, but it is still there. Under the http > protocol everything works fine, but with https pages are not updated to > the new code. I'm sure this is a problem with apache, not the browser, > because I'm using php3 scripts which access a database and I've changed > the tables and the scripts to match, but under https there is a database > error. > > An extreme example of this problem is that I removed the entire directory > that houses the web site and under https it still displays the pages, > while under http it gets a file not found error. > > If anybody knows what is going on here or where I can look for further > information, please help me. > > I'm running linux 2.0.36 > > Thanks, > Afam Agbodike > > __ > Apache Interface to OpenSSL (mod_ssl) www.engelschall.com/sw/mod_ssl/ > Official Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.engelschall.com/sw/mod_ssl/ Official Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]