Re: [EMAIL PROTECTED] Simple perl question
Unfortunately, that's the price of a chroot... Remember to also install all your Perl modules to the chroot jail for the same reasons... Basically a separate install of Perl would be intelligent. If you want some form of package management/uninstall for the new one, or even just don't want to deal with compiling etc, you might install a binary ActivePerl distribution - I do this on several servers of mine. Issac Israel Brewster wrote: Yeah, I'm coming to that conclusion. I didn't want to go that route, and have two copies of perl on my system, but it is looking as though that will be my best option --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On Jan 11, 2007, at 1:38 AM, Issac Goldstand wrote: mod_perl sounds a bit excessive. Just make sure Perl is installed in your chroot. Issac Serge Dubrouski wrote: For this configuration you need to have mod_perl installed on your server. Why don't you simply put your script into your cgi-bin directory? On 1/10/07, Israel Brewster [EMAIL PROTECTED] wrote: I don't know if what I am trying to do here is even possible (sane?) but I thought I'd ask. I am running Apache 1.3.29 on an OpenBSD 4.0 system, with Apache chrooted to /var/www. I have a perl script CGI (it has the .cgi extention, not .pl, but is actually a perl script) that I need to run. Currently, the script is written to run using the system perl interpreter, with the first line of the script being #!/ usr/bin/perl This obviously doesn't work, since when it runs as a CGI it is chrooted to /var/www, and can not see /usr/bin. Now I would think that Apache should be able to run this script using the perl module, which I have installed, but I can't seem to get it to work. Could someone point me to something that tells me how to properly enable/run perl scripts in Apache? I looked at mod_perl website, but all it says is to add a code block like the following: Alias /perl/ /home/httpd/perl/ PerlModule Apache::Registry Location /perl SetHandler perl-script PerlHandler Apache::Registry Options ExecCGI allow from all PerlSendHeader On /Location which just gives me an 'Invalid command 'PerlModule' This would imply to me that mod_perl isn't being loaded, in spite of being installed, but that leaves me needing to know how to load the perl module. Adding a line like LoadModule mod_perl /usr/local/lib/mod_perl.so (which is the correct path to the mod_perl.so file) just gives me a Can't locate API module structure `mod_perl' in file /usr/local/lib/ mod_perl.so: Unable to resolve symbol What am I missing here? How can I get Apache to run perl scripts? Thanks for any assistance that can be provided --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] ServerAlias with Apache 2.0.40
Hi Owen, That was the problem. Changes in the DNS havent been propagated when I tried the ServerAlias Directive. Now it works for any name which resolv the same IP. Thanks! Cristina Boyle Owen wrote: -Original Message- From: cristina [mailto:[EMAIL PROTECTED]] Sent: Thursday, January 11, 2007 11:11 AM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] ServerAlias with Apache 2.0.40 Hi all, I'm tryint to test one virtual host with some alias. My conf is: VirtualHost 193.168.2.12:80 ServerName www.nombre.es ServerAlias www.nombre.net www.nombre.com www.nombre.org /VirtualHost I've seen that I could use ServerAlias with the same domain: www1.nombre.es www2.nombre.es and so on. But my question is if I can use ServerAlias for "aliasing" www.nombre.net www.nombre.com www.nombre.org because it doesnt work. Do these aliases resolve in DNS? They must resolve to the same IP as www.nombre.es for aliasing to work... Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. Thanks in advance! Cristina -- www.queremosdormir.es - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- www.queremosdormir.es - The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Rewrite does not work
Another thought: Did you set the directive RewritelogLevel at least to
4? (6 = highest used). Below loglevel 4, the processing of conditions
is not being logged.
Wow, that was the break-through.Had a loglevel of 3 until now. Here the
new log entries:
129.129.194.181 - - [12/Jan/2007:10:06:29 +0100]
[server.psi.ch/sid#80c1cc8][rid#8140eb8/initial] (2) init rewrite engine
with requested uri /usage/
129.129.194.181 - - [12/Jan/2007:10:06:29 +0100]
[server.psi.ch/sid#80c1cc8][rid#8140eb8/initial] (3) applying pattern
'^/usage' to uri '/usage/'
129.129.194.181 - - [12/Jan/2007:10:06:29 +0100]
[server.psi.ch/sid#80c1cc8][rid#8140eb8/initial] (4) RewriteCond:
input='129.129.194.181' pattern='\.psi\.ch$' = not-matched
I changed the RewriteCond to
RewriteCond %{REMOTE_HOST} ^129\.129\.
No it works!! Krist van Besien wrote a few mails ago What might also be
an issue here is that reverse DNS doesn't work properly. So it seems
that he was right. I checked it on the machine (server.psi.ch) using
nslookup IP and I got the correct answer. Therefor I thought this
could not be the problem. But apache may to behave different.
Anyway, thanks' a lot to all.
Pedro
-
The official User-To-User support forum of the Apache HTTP Server Project.
See URL:http://httpd.apache.org/userslist.html for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] custom directory listing
How can i get apace to recognize new headername and readmename files? - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Simple perl question
Well, as it turned out, I didn't need to go that route after all. I just needed to use the correct URL when accessing my perl scripts so they would be executed using mod Perl. So it's working now, without needing to copy or re-install perl. --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On Jan 11, 2007, at 11:41 PM, Issac Goldstand wrote: Unfortunately, that's the price of a chroot... Remember to also install all your Perl modules to the chroot jail for the same reasons... Basically a separate install of Perl would be intelligent. If you want some form of package management/uninstall for the new one, or even just don't want to deal with compiling etc, you might install a binary ActivePerl distribution - I do this on several servers of mine. Issac Israel Brewster wrote: Yeah, I'm coming to that conclusion. I didn't want to go that route, and have two copies of perl on my system, but it is looking as though that will be my best option --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On Jan 11, 2007, at 1:38 AM, Issac Goldstand wrote: mod_perl sounds a bit excessive. Just make sure Perl is installed in your chroot. Issac Serge Dubrouski wrote: For this configuration you need to have mod_perl installed on your server. Why don't you simply put your script into your cgi-bin directory? On 1/10/07, Israel Brewster [EMAIL PROTECTED] wrote: I don't know if what I am trying to do here is even possible (sane?) but I thought I'd ask. I am running Apache 1.3.29 on an OpenBSD 4.0 system, with Apache chrooted to /var/www. I have a perl script CGI (it has the .cgi extention, not .pl, but is actually a perl script) that I need to run. Currently, the script is written to run using the system perl interpreter, with the first line of the script being #!/ usr/bin/perl This obviously doesn't work, since when it runs as a CGI it is chrooted to /var/www, and can not see /usr/bin. Now I would think that Apache should be able to run this script using the perl module, which I have installed, but I can't seem to get it to work. Could someone point me to something that tells me how to properly enable/run perl scripts in Apache? I looked at mod_perl website, but all it says is to add a code block like the following: Alias /perl/ /home/httpd/perl/ PerlModule Apache::Registry Location /perl SetHandler perl-script PerlHandler Apache::Registry Options ExecCGI allow from all PerlSendHeader On /Location which just gives me an 'Invalid command 'PerlModule' This would imply to me that mod_perl isn't being loaded, in spite of being installed, but that leaves me needing to know how to load the perl module. Adding a line like LoadModule mod_perl /usr/local/lib/mod_perl.so (which is the correct path to the mod_perl.so file) just gives me a Can't locate API module structure `mod_perl' in file /usr/ local/lib/ mod_perl.so: Unable to resolve symbol What am I missing here? How can I get Apache to run perl scripts? Thanks for any assistance that can be provided --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- -- --- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --- -- The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands,
Re: [EMAIL PROTECTED] Simple perl question
Yeah, I did need to copy the perl modules I needed, but that was no big deal. --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On Jan 11, 2007, at 11:42 PM, Issac Goldstand wrote: It still needs modules, etc, at the very least while Apache starts (they are usually cached in memory once intially loaded) Issac Serge Dubrouski wrote: modperl doesn't need to have perl installed because it has it embedded. Have you tried to put your script into your /perl directory and run it using Apache::Registry? But most probably it'll have problems anyway because it'll require perl libraries: CGI, strict, etc... unless it's a really generic script. On 1/11/07, Israel Brewster [EMAIL PROTECTED] wrote: On Jan 11, 2007, at 6:22 AM, Serge Dubrouski wrote: DO NOT REMOVE that #!/usr/bin/perl line. Without it OS tries to run it as a binary (ELF or whatever is appropriate for your systen ) file and of course fails. But with it, it can not find /usr/bin/perl (thanks to the chroot), and, of course, fails :-p bit of a catch 22-can't run with it, can't run without it. So after reading the various responses, as well as some additional web searching, I have gone ahead and copied /usr/ bin/ perl to /var/www/usr/bin/perl so the script can see/access /usr/bin/ perl, even when chrooted. This, at least, gets rid of the cant find file/directory and invalid exec format errors. I'm still getting a premature end of script headers error when I try to run it though Apache, however. Running the test script as chroot /var/www/ /cgi- bin/test.cgi gives an Abort trap error. Running it normally (not chrooted) works. Obviously I do not have a proper install of perl in my chroot. Sigh. I'll keep trying. Thanks for the responses! --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On 1/10/07, Israel Brewster [EMAIL PROTECTED] wrote: yeah, perl is not available at all from within the Apache chroot jail, unless I am missing something. Making the change to the LoadModule line you suggested allowed the various perl directives in the config file to load without complaint. Attempting to execute the script, however, results in a [error] (8)Exec format error: exec of / cgi-bin/perl/routers2.cgi failed This error is the same if I try with either a .cgi extension on the file or a .pl extension --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On Jan 10, 2007, at 4:31 PM, Serge Dubrouski wrote: So you don't have perl available at all? Then you definetely need mod_perl. Have you tried to change your LoadModule line for mod_perl like I suggested erlier? On 1/10/07, Israel Brewster [EMAIL PROTECTED] wrote: But with it I get a file not found error since it can't access / usr/ bin/perl from within the chroot (/var/www). If that line can't be removed, then apparently I can't run perl scripts under Apache with Apache chrooted, even with mod_perl running properly-is that correct? or do I just need to change that line to something else? On the brighter side, changing the LoadModule line as suggested did allow the config directives to load properly. Didn't help get the script to run though. --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On Jan 10, 2007, at 2:35 PM, Serge Dubrouski wrote: Do not remove #!/usr/bin/perl line! Without it OS doesn't know how to run that file. On 1/10/07, Israel Brewster [EMAIL PROTECTED] wrote: I installed mod_perl from the package that was distributed with OpenBSD 4.0. The install didn't give any errors, so I have to assume it installed properly. As far as I can tell, it didn't make any configuration changes. Just placing the script in my CGI directory (and removing the #!/usr/bin/perl line) gives [error] (8)Exec format error: exec of /cgi-bin/perl/routers2.pl failed. --- Israel Brewster Computer Support Technician Frontier Flying Service INC. 5245 Airport Industrial Rd Fairbanks, AK 99709 --- On Jan 10, 2007, at 1:39 PM, Serge Dubrouski wrote: For this configuration you need to have mod_perl installed on your server. Why don't you simply put your script into your cgi- bin directory? On 1/10/07, Israel Brewster [EMAIL PROTECTED] wrote: I don't know if what I am trying to do here is even possible (sane?) but I
[EMAIL PROTECTED] issue with proxy rewriting url when in tcp tunnel
I'm having a problem with mod_rewrite with a proxy. Everything works perfect, except when I tunnel to this server localhost:80 to my local 8085, when I access content via the browser http://localhost:8085/epace apache is rewriting the url to http://localhost/epace . If I just go to http://serverDNSname/epace it is handled correctly. #Rewrite configuration RewriteEngine On RewriteRule ^/epace/(.*)\$ http://localhost:8080/epace/\$1; [P] RewriteRule ^/epace\$ http://localhost:8080/epace; [P] # Handle re-writing of data coming back out ProxyPassReverse / http://localhost:8080/ Version: Apache 1.3.33-6 OS: Debian Sarge Thanks in advance. Jerry DuVal Pace Systems Group, Inc. 800.624.5999 www.Pace2020.com smime.p7s Description: S/MIME cryptographic signature
[EMAIL PROTECTED] How to resolve this .htaccess conflict ?
Assume there is the .htaccess file show at the bottom of this posting. At first every read and write access is denied and no permissions are given because no allow statement is entered. Fine. But now I want to allow some users to access these directories but only with authentication (login+password). For these users I setup the three lines AuthName, AuthUserFile and AuthGroupFile. Notice that I mix a deny access instruction not with its counterpart allow but with completely different Auth... statements plus OUTSIDE the Limit scope ! Are these Auth statements recognized at all or does the missing allow statement above prevent any further permissions ? In other words: Do the Auth statements have a higher priority than the non-existence of an allow statement ? If Auth statements are not considered: Does it change anything if I put these Auth statements BEFORE the deny command (on top of the .htaccess file) ? .htaccess file: --- Limit GET POST order deny,allow deny from all /Limit Limit PUT DELETE order deny,allow deny from all /Limit AuthName Authenticated users AuthUserFile /home/myhtaccess/service.pwd AuthGroupFile /home/myhtaccess/service.grp --- Send instant messages to your online friends http://uk.messenger.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] How to resolve this .htaccess conflict ?
I don't know the answer, but suspect you could experiment and find out faster than hearing back from somebody who DOES know the answer... Though whether that's a Documented Feature or not would be a Good Question, maybe... On Fri, January 12, 2007 1:33 pm, Ben Stover wrote: Assume there is the .htaccess file show at the bottom of this posting. At first every read and write access is denied and no permissions are given because no allow statement is entered. Fine. But now I want to allow some users to access these directories but only with authentication (login+password). For these users I setup the three lines AuthName, AuthUserFile and AuthGroupFile. Notice that I mix a deny access instruction not with its counterpart allow but with completely different Auth... statements plus OUTSIDE the Limit scope ! Are these Auth statements recognized at all or does the missing allow statement above prevent any further permissions ? In other words: Do the Auth statements have a higher priority than the non-existence of an allow statement ? If Auth statements are not considered: Does it change anything if I put these Auth statements BEFORE the deny command (on top of the .htaccess file) ? .htaccess file: --- Limit GET POST order deny,allow deny from all /Limit Limit PUT DELETE order deny,allow deny from all /Limit AuthName Authenticated users AuthUserFile /home/myhtaccess/service.pwd AuthGroupFile /home/myhtaccess/service.grp --- Send instant messages to your online friends http://uk.messenger.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Some people have a gift link here. Know what I want? I want you to buy a CD from some starving artist. http://cdbaby.com/browse/from/lynch Yeah, I get a buck. So? - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Apache mod_ssl give SSL Library Error: 336151570
Hello, I have very typical problem: I have a certificate installed for my domain from Thawte. Now if anyone tries to access the webpage using a browser it works perfect. Now one of our clients has a proxy server. When they access to our website using their proxy they cannot access it. They get 500 Internal Server Error. Our logs indicates the following error: [debug] ssl_engine_kernel.c(1762): OpenSSL: Read: SSLv3 read client certificate A [debug] ssl_engine_kernel.c(1781): OpenSSL: Exit: failed in SSLv3 read client certificate A SSL library error 1 in handshake (server abc.com:443) SSL Library Error: 336151570 error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate Subject CN in certificate not server name or identical to CA!? Connection closed to child 1 with abortive shutdown (server abc.com:443) Now according to them they are doing everything perfect as they can access another of our SSL server perfectly well. What am I missing - I am sure our SSL certificate is valid because if I anyone goes through the browser it works perfectly well. Any help is appreciated. Thanks Deval - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Apache mod_ssl give SSL Library Error: 336151570
Hello, I have very typical problem: I have a certificate installed for my domain from Thawte. Now if anyone tries to access the webpage using a browser it works perfect. Now one of our clients has a proxy server. When they access to our website using their proxy they cannot access it. They get 500 Internal Server Error. Our logs indicates the following error: [debug] ssl_engine_kernel.c(1762): OpenSSL: Read: SSLv3 read client certificate A [debug] ssl_engine_kernel.c(1781): OpenSSL: Exit: failed in SSLv3 read client certificate A SSL library error 1 in handshake (server abc.com:443) SSL Library Error: 336151570 error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate Subject CN in certificate not server name or identical to CA!? Connection closed to child 1 with abortive shutdown (server abc.com:443) Now according to them they are doing everything perfect as they can access another of our SSL server perfectly well. What am I missing - I am sure our SSL certificate is valid because if I anyone goes through the browser it works perfectly well. Any help is appreciated. Thanks Deval - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache mod_ssl give SSL Library Error: 336151570
On Jan 12, 2007, at 3:01 PM, DEVAL SHAH wrote: [debug] ssl_engine_kernel.c(1762): OpenSSL: Read: SSLv3 read client certificate A [debug] ssl_engine_kernel.c(1781): OpenSSL: Exit: failed in SSLv3 read client certificate A SSL library error 1 in handshake (server abc.com:443) SSL Library Error: 336151570 error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate Subject CN in certificate not server name or identical to CA!? Connection closed to child 1 with abortive shutdown (server abc.com: 443) I take it you are using client-side certificate authentication? What type of proxy is the client using when they see the problem? Thanks, S. -- [EMAIL PROTECTED]http://www.temme.net/sander/ PGP FP: 51B4 8727 466A 0BC3 69F4 B7B8 B2BE BC40 1529 24AF smime.p7s Description: S/MIME cryptographic signature
[EMAIL PROTECTED] Problem building Apache 2.2.4 (may involve mod_ssl)
I have a problem with building Apache2, which may involve openSSL. My server has OpenSSL/0.9.7e-p1, and I'm trying to upgrade Apache2 from 2.2.3 to 2.2.4. My Apache2 configuration command can be as simple as ./configure --prefix=/usr/local/apache2.2.4 --with-mpm=worker -- enable-ssl --with-ssl=/usr --enable-mods-shared=all (My openssl executable is /usr/bin/openssl.) As the configuration script is running, it deals with mod_ssl and openSSL as indicated by the following output lines: checking whether to enable mod_ssl... checking dependencies checking for SSL/TLS toolkit base... /usr checking for OpenSSL version... checking openssl/opensslv.h usability... yes checking openssl/opensslv.h presence... yes checking for openssl/opensslv.h... yes checking openssl/ssl.h usability... yes checking openssl/ssl.h presence... yes checking for openssl/ssl.h... yes OK checking openssl/engine.h usability... yes checking openssl/engine.h presence... yes checking for openssl/engine.h... yes gnome-config: not found checking for SSLeay_version in -lcrypto... yes checking for SSL_CTX_new in -lssl... yes checking for ENGINE_init... yes checking for ENGINE_load_builtin_engines... yes checking for SSL_set_cert_store... no adding -I/usr/include to INCLUDES adding -L/usr/lib to LDFLAGS forcing SSL_LIBS to -lssl -lcrypto gnome-config: not found forcing MOD_SSL_LDADD to $(SSL_LIBS) checking whether Distcache is required... no (default) adding -export-symbols-regex to MOD_SSL_LDADD adding ssl_module to MOD_SSL_LDADD checking whether to enable mod_ssl... shared (all) adding -I$(top_srcdir)/modules/ssl to INCLUDES Note the two lines about not being able to find gnome-config. The configure script gives a normal ending. When I make, the following error occurs: Making all in support /usr/local/apache2/build/libtool --silent --mode=link gcc -L/usr/ local/lib -L/usr/lib -o htpasswd htpasswd.lo -lm /tmp/ httpd-2.2.4/srclib/pcre/libpcre.la /usr/local/apache2/lib/ libaprutil-1.la -ldb41 -lexpat /usr/local/apache2/lib/libapr-1.la - lcrypt -lpthread /usr/bin/ld: cannot find -lvcert *** Error code 1 The name lvcert sounds like it has to do with SSL, which is why I included the output about mod_ssl above. Should I try a newer version of openSSL, or what? Can I provide any other information to help solve this? Thanks to anyone reading this, Craig MacKenna Los Gatos, CA - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] SSI setup help please
We are attempting to setup limited SSI capability in 2.2.3 In httpd.conf we have: LoadModule include_module modules/mod_include.so AddType text/html .shtml AddOutputFilter INCLUDES .shtml And only 1 directory we need to use SSI so: Directory c:/nwls/htdocs/buslist/ Options FollowSymLinks Options +Includes AllowOverride None Order allow,deny Allow from all ## also tried using the AddType and AddOutputFilter directives here ## /Directory And the SSI file has only one line: IP Address: !--#echo var=REMOTE_ADDR -- When reading the file from the server we see only IP Address: I must be missing something really simple here but I don't see it!! - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache mod_ssl give SSL Library Error: 336151570
Hi, I am not using client-side certificate authentication. I have SSLVerifyClient none How do I find the proxy type? Thanks Deval From: Sander Temme [EMAIL PROTECTED] Reply-To: users@httpd.apache.org To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] Apache mod_ssl give SSL Library Error: 336151570 Date: Fri, 12 Jan 2007 15:08:19 -0800 On Jan 12, 2007, at 3:01 PM, DEVAL SHAH wrote: [debug] ssl_engine_kernel.c(1762): OpenSSL: Read: SSLv3 read client certificate A [debug] ssl_engine_kernel.c(1781): OpenSSL: Exit: failed in SSLv3 read client certificate A SSL library error 1 in handshake (server abc.com:443) SSL Library Error: 336151570 error:14094412:SSL routines:SSL3_READ_BYTES:sslv3 alert bad certificate Subject CN in certificate not server name or identical to CA!? Connection closed to child 1 with abortive shutdown (server abc.com: 443) I take it you are using client-side certificate authentication? What type of proxy is the client using when they see the problem? Thanks, S. -- [EMAIL PROTECTED]http://www.temme.net/sander/ PGP FP: 51B4 8727 466A 0BC3 69F4 B7B8 B2BE BC40 1529 24AF smime.p7s - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Configuration Problem
Hello, I have had several versions of the Apache Server on my Windows PC over the last several years. Two months ago I had a HD crash and had to reload all programs including Apache. At this time I opted to download and install the latest official updated release. Part of the update required me to modify the config file to my local system, however I have not been able to get everything set for my requirements. This Apache server is used as a test bed on Windows XP Pro SR2 so there is no external network connection. The problems are as follows: SSI is no longer working in a web browser even though the Include directive has been added to the config file. Images that are nested inside a simple JavaScript to open a popup window do not work. The SSI file and the popup image files are one directory below the web page calling for those files. Here is the big road block that points to my config settings, all of the above files are on an Earthlink web server running Apache and all the files display perfectly. Can anybody guide me into correcting my standalone server so it will perform as a good test bed? Thanks for any assistance. Michael Gordon -- Armadillo Web Design Opening your door of opportunity Armadillo Web Design www.armadilloweb.com Character is doing the right thing... Even when no one is watching... SeaMonkey www.mozilla.org/projects/seamonkey/ The all in one browser, mail, and composer. SeaMonkey the All In One Internet Application Suite - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
