To the group,
I'm running the configuration listed below. I've delayed adding SSL for as long as I
can, but now I have to do it. It is for a government site and they want their sites
to use SSL all the time (no port 80 connections at all).
So, is Apache 2.x and mod_perl ready for
front-end server.
> Any ideas?
If you can proxy-pass HTTP and HTTPS requests to different ports on the
backend server, you just need to check which port the backend is listening
on to tell if the request came through SSL or not.
http://perl.apache.org/docs/1.0/guide/config.html#Knowing_the_proxy_pass_ed_Connection_Type
-carolyn
John Siracusa <[EMAIL PROTECTED]> writes:
> Assume I have a front-end (non-mod_perl) proxy server that supports both
> HTTP and HTTPS. I want to know, from within my Perl code on the back-end
> (HTTP-only) mod_perl server, if the current request was ProxyPass-ed to me
> based on an original HTTP
On Thu, 14 Nov 2002, John Siracusa wrote:
> On 11/14/02 2:12 PM, Randy Kobes wrote:
> >
> > If your front-end proxy server has 'ProxyVia on' enabled, a Via
> > header would get sent. According to rfc2068, the protocol name
> > should, and port may, be supplied in this header if these aren't
> >
On Thu, 14 Nov 2002, John Siracusa wrote:
> Assume I have a front-end (non-mod_perl) proxy server that
> supports both HTTP and HTTPS. I want to know, from within my
> Perl code on the back-end (HTTP-only) mod_perl server, if the
> current request was ProxyPass-ed to me based on an original
> HTT
Assume I have a front-end (non-mod_perl) proxy server that supports both
HTTP and HTTPS. I want to know, from within my Perl code on the back-end
(HTTP-only) mod_perl server, if the current request was ProxyPass-ed to me
based on an original HTTP or HTTPS request from the user.
There doesn't appe
in as a dso.
> Thus, I'd like to go to ports and 'Make' with a bunch of options which
> will compile mod_perl straight into my apache1.3-ssl package. Having run
> make on www/apache1.3-ssl and www/mod_perl, all I get is segfaults. I
> simply want to run one make to buil
On Tue, 12 Nov 2002, Dominic Mitchell wrote:
> > I'm sure that the BSD users amoungst you have all done it 101 times.
>
> Nope, ports only supports mod_perl as a DSO.
oh, poop.
> The alternative is to use something like apache toolbox[1] to install it
> all in one go. If you want to be sneaky, y
7;Make' with a bunch of options which
will compile mod_perl straight into my apache1.3-ssl package. Having run
make on www/apache1.3-ssl and www/mod_perl, all I get is segfaults. I
simply want to run one make to build it in one go.
How???
I'm sure that the BSD users amoungst you have
ptions which
will compile mod_perl straight into my apache1.3-ssl package. Having run
make on www/apache1.3-ssl and www/mod_perl, all I get is segfaults. I
simply want to run one make to build it in one go.
How???
I'm sure that the BSD users amoungst you have all done it 101 times.
Help please?
Cheers,
Rafiq
- Original Message -
From: "Vivek Khera" <[EMAIL PROTECTED]>
Newsgroups: ml.apache.modperl
To: <[EMAIL PROTECTED]>
Sent: Wednesday, November 06, 2002 6:52 PM
Subject: Re: sending ssl certificate according to virtual host
> >>>>> "MJ" ==
On Wed, Nov 06, 2002 at 11:52:13AM -0500, Vivek Khera wrote:
> What they should have done is what is done now with TLS in SMTP. You
> connect to the same port, but issue a "STARTTLS" command to switch
> over to secured mode. With this type of scheme, the header info with
> the desired host could
>>>>> "MJ" == Mathieu Jondet <[EMAIL PROTECTED]> writes:
MJ> Depending on the vh requested I set the SSLCertificateFile and
MJ> SSLCertificateKeyFile which will point to the correct ssl files for the
MJ> requested vh.
You can't do this with
client request
>no matter which vh is requested. After a handler treat the request and
>fetch the
>data where it should be fetch.
>Everyhing is working fine, but I would like to add SSL support on
>the system. I want to be able to send the SSL certificate and key files
>for
treat the request and
fetch the
data where it should be fetch.
Everyhing is working fine, but I would like to add SSL support on
the system. I want to be able to send the SSL certificate and key files
for the requested virtual host.
Depending on the vh requested I set the SSLCertifica
27;ve had a tough time trying to get all the
compression bits and pieces to work together.
I've tried mod_gzip and it worked well for non-SSL content ...
however, it didn't work with SSL and the only workaround is proxying to a
second server ... and I couldn't get this t
On Mon, Oct 21, 2002 at 08:11:16AM -0500, Nigel Hamilton wrote:
>
> * Even though your network may be fast - the last mile over a 28.8 K
> modem can be slow - and compression helps here
Most modems use compression protocols such as V.42bis. You don't gain
much, if anything, from compressing dat
cheap.
Adam
-Original Message-
From: Nigel Hamilton [mailto:nigel@;turbo10.com]
Sent: Friday, October 18, 2002 10:47 PM
To: [EMAIL PROTECTED]
Subject: SSL <-> mod_gzip <-> mod_perl = mod_proxy error
Hi,
I'm trying to hand all SSL requests to a backend
On Fri, 18 Oct 2002, Nigel Hamilton wrote:
>Even better ... is there a way to do SSL compression in mod_perl
>with only one server?
mod_deflate. http://sysoev.ru/mod_deflate/mod_deflate-1.0.15.tar.gz
Documentation is in Russian only but feel free to ask me directly.
There is also Bab
Hi,
I'm trying to hand all SSL requests to a backend mod_perl server
with mod_gzip installed for compression.
This means that SSL content is pre-compressed by the backend
server before being encrypted by the frontend (Mini How To - below).
Apparently mod
On Fri, Oct 18, 2002 at 09:46:38PM -0500, Nigel Hamilton wrote:
> Hi,
>
> I'm trying to hand all SSL requests to a backend mod_perl server
> with mod_gzip installed for compression.
>
> This means that SSL content is pre-compressed by the backend
Hi Nigel,
- Original Message -
From: "Nigel Hamilton" <>
To: <[EMAIL PROTECTED]>
Sent: Thursday, October 03, 2002 6:29 PM
> ...
> However, recently I've needed to use SSL, but I've heard the
> combination of mod_gzip and SSL is buggy on some
Hi,
I've been using mod_gzip for the last 18 months and it has worked
really well for dynamic pages and static content.
However, recently I've needed to use SSL, but I've heard the
combination of mod_gzip and SSL is buggy on some browsers.
I'v
On Tue, 24 Sep 2002, Allan P. Magmanlac wrote:
> Hello,
>
>Can anyone advise me on how to build
> apache server with ssl and openssl and
> using mod perl.
>
> this is how I do it WITHOUT mod perl support
> cd to modssl soure directory and then run the followi
> Can anyone advise me on how to build
>apache server with ssl and openssl and
>using mod perl.
It's right there in the user's guide.
http://perl.apache.org/docs/1.0/guide/install.html#mod_perl_and_mod_ssl___op
enssl_
-Fran
Hello Allan P. Magmanlac,
Tuesday, September 24, 2002, 9:07:55 PM, you wrote:
APM> Hello,
APM>Can anyone advise me on how to build
APM> apache server with ssl and openssl and
APM> using mod perl.
APM> this is how I do it WITHOUT mod perl support
APM> cd to modssl s
here's a simple script i use to build one of my servers, it builds
openssl, and apache with mod_ssl / mod_perl
On Tue, 2002-09-24 at 09:07, Allan P. Magmanlac wrote:
> Hello,
>
>Can anyone advise me on how to build
> apache server with ssl and openssl and
> using mo
Hello,
Can anyone advise me on how to build
apache server with ssl and openssl and
using mod perl.
this is how I do it WITHOUT mod perl support
cd to modssl soure directory and then run the following command
./configure \
--with-apache=../apache_1.3.26 \
--with-ssl=../openssl-0.9.6g
>
> > Anybody have a similar example for the same protocol handler over SSL?
>
> the echo protocol working over the socket skips filters, so it won't
> work with SSL.
>
> at the above URL scroll down to the Apache::Eliza2 example, which uses
> bucket brigades and t
Pete Rothermel wrote:
> I've got the example echo() handler working for a non-HTTP protocol as
> outlined on the new web site:
>
> http://perl.apache.org/docs/2.0/user/handlers/handlers.html#Command__Protocol__Phases
>
> Anybody have a similar example for the same pr
I've got the example echo() handler working for a non-HTTP protocol as
outlined on the new web site:
http://perl.apache.org/docs/2.0/user/handlers/handlers.html#Command__Protocol__Phases
Anybody have a similar example for the same protocol handler over SSL?
thanks
Pete Rothermel
[EMAIL PROTECTED] wrote:
> How to restart SSL Apache in -X mode?
This is a wrong forum. See:
http://httpd.apache.org/lists.html#http-users
__
Stas BekmanJAm_pH --> Just Another mod_perl Hacker
http://stas
How to restart SSL Apache in -X mode?
Thanks in advance for your help
Mark
The Doctor wrote:
> It has been a long time since what I have described happened.
...
> /tmp: Permission denied
>
> assertion "0" failed: file "apache_ssl.c", line 1616
This is gcache failing to start (mental note: must make diagnostic more
informative). The line before is perror(cmd), so it lo
On Fri, Jun 21, 2002 at 12:18:37PM +0100, Ben Laurie wrote:
> The Doctor wrote:
> > It has been a long time since what I have described happened.
> ...
> > /tmp: Permission denied
> >
> > assertion "0" failed: file "apache_ssl.c", line 1616
>
> This is gcache failing to start (mental note: must
<=== src/lib
===> src/modules
===> src/modules/experimental
<=== src/modules/experimental
===> src/modules/standard
<=== src/modules/standard
===> src/modules/proxy
<=== src/modules/proxy
===> src/modules/ssl
<=== src/modules/ssl
===> src/modules/perl
<
his version and think I now have my conf files correct in the
> new architecture although I haven't actually run anything under mod_perl yet.
>
> My question is that all my CGIs that I want to convert to mod_perl run under
> SSL, but I can't fi
files correct in the
new architecture although I haven't actually run anything under mod_perl yet.
My question is that all my CGIs that I want to convert to mod_perl run under
SSL, but I can't figure out how to enable SSL in the httpd-perl server.
Am I missing something simple?
Chris
--
C
n and think I now have my conf files correct in the
new architecture although I haven't actually run anything under mod_perl yet.
My question is that all my CGIs that I want to convert to mod_perl run under
SSL, but I can't figure out how to enable SSL in the httpd-perl server.
Am
Hello,
LDM>Having to compile, install, integrate everything yourself is a huge
LDM>waste of time. Your are duplicating all the efforts put in by the
LDM>distributions, for zero added value.
Huh? Having control over what modules go into your Apache, plus having one
compiled on your machine for yo
> On Sat, Mar 09, 2002 at 10:12:32AM -0800, Kirk Rogers wrote:
> > Hi all,
> > So I went ahead and tried to install apache-ssl and am following the
> > instructions to the T.
> >
> > I've acquired:
> > mod_perl-1.26.tar.gz
> > openssl-0.9.6c
On Sat, Mar 09, 2002 at 10:12:32AM -0800, Kirk Rogers wrote:
> Hi all,
> So I went ahead and tried to install apache-ssl and am following the
> instructions to the T.
>
> I've acquired:
> mod_perl-1.26.tar.gz
> openssl-0.9.6c.tar.gz
> apache_1.3.22.tar.gz
> ap
t;
>Thanks,
>K
>
>
>>-Original Message-
>>From: Issac Goldstand [mailto:[EMAIL PROTECTED]]
>>Sent: Monday, March 18, 2002 7:16 AM
>>To: [EMAIL PROTECTED]
>>Cc: modperl
>>Subject: Re: checking a site for ssl cert?
>>
>>
>>Ki
rl
>Subject: Re: checking a site for ssl cert?
>
>
>Kirk Rogers wrote:
>
>>hello,
>>kind of a long shot but does anyone know if its possible to check
>a site for
>>ssl certificate information from a mod perl handler or perl script?
>>
>>thanks
>>k
Kirk Rogers wrote:
>hello,
>kind of a long shot but does anyone know if its possible to check a site for
>ssl certificate information from a mod perl handler or perl script?
>
>thanks
>k
>
it's all exported into %ENV if you do:
SSLOptions + StdEnvVars
Issac
hello,
kind of a long shot but does anyone know if its possible to check a site for
ssl certificate information from a mod perl handler or perl script?
thanks
k
Hi there,
On Sat, 9 Mar 2002, Kirk Rogers wrote:
> I've acquired:
> mod_perl-1.26.tar.gz
> openssl-0.9.6c.tar.gz
> apache_1.3.22.tar.gz
> apache_1.3.22+ssl_1.47.tar.gz
I use mod_ssl with no problems, you could try that.
73,
Ged.
Hi all,
So I went ahead and tried to install apache-ssl and am following the
instructions to the T.
I've acquired:
mod_perl-1.26.tar.gz
openssl-0.9.6c.tar.gz
apache_1.3.22.tar.gz
apache_1.3.22+ssl_1.47.tar.gz
I received no errors when installing openssl-0.9.6c.
The first problem comes up
ache-AuthenNTLM-0.14 for ssl VirtualHost
>
>
> Hi,
>
> NTLM needs KeepAlives turned on, because the handshake must
> take place on
> the same connection, I guess you have turned KeepAlive off
> for your ssl
> connection
>
> Gerald
>
>
Hi,
NTLM needs KeepAlives turned on, because the handshake must take place on
the same connection, I guess you have turned KeepAlive off for your ssl
connection
Gerald
-
Gerald Richterecos electronic communication services gmbh
hi
we are using AuthenNTLM from G. Richter to authenticate our intranet users
... works fine for http-server.
unfortunately it doesnt work with ssl aware virtual hosts.
Server Version: Apache/1.3.23 (Unix) mod_perl/1.26 mod_ssl/2.8.7
OpenSSL/0.9.6c
client hangs :-(
last entries in error.log
"Wong, Connie" wrote:
>
> Hello,
>
> I'm running mod_perl with Apache-SSL on Solaris 8.
> I setup a self-certificate for the basic authentication.
> I want to get the login name from the client (REMOTE_USER).
> In CGI, there is an environment variable $E
Hello,
I'm running mod_perl with Apache-SSL on Solaris 8.
I setup a self-certificate for the basic authentication.
I want to get the login name from the client (REMOTE_USER).
In CGI, there is an environment variable $ENV{REMOTE_USER} that I can use.
In mod_perl with SSL, how do I ge
On Mon, 19 Nov 2001, Ian @ International Sports Agnecy wrote:
if you telnet to port 80 and issue a head request manually, what does the
server report exactly? it should list the modules you have properly
installed.
gedanken
I'm having a bit of a problem getting everything to work right.
Ever
Hi there,
On Mon, 19 Nov 2001, Ian @ International Sports Agnecy wrote:
> I'm having a bit of a problem getting everything to work right.
Hmmm. Not very specific.
> I've tried 'make clean && make && make install'
Hm. So I guess you're on Linux, right?
> I've also reset my httpd.conf fi
I'm having a bit of a problem getting everything to work right.
Everything Compiles, then it looks like it's running, but the moment
your client (or telnet) connects, it shuts itself down.
I've tried 'make clean && make && make install' to see if that remedies
the problem, but that doesn't help.
At 01:19 AM 7/26/2001 +0200, Issac Goldstand wrote:
[snipped]
>I see what you mean. I'm not dealing with client certs (yet), and I'm
>thinking that when the system that I'm testing now goes production, it'll be
>a front-end SSL, back-end non-SSL sorta deal... But
> > > The front end server must be configured to understand SSL. Otherwise,
how
> > > else can the HTTP request be pulled apart (decrypted) to understand
that
> >it
> > > has to be forwarded to the backend server.
> >
> >2 words: dumb proxy. The r
At 07:05 PM 7/25/2001 +0200, Issac Goldstand wrote:
> > The front end server must be configured to understand SSL. Otherwise, how
> > else can the HTTP request be pulled apart (decrypted) to understand that
>it
> > has to be forwarded to the backend server.
>
>2 word
> The front end server must be configured to understand SSL. Otherwise, how
> else can the HTTP request be pulled apart (decrypted) to understand that
it
> has to be forwarded to the backend server.
2 words: dumb proxy. The request doesn't need to be pulled apart by the
front
The front end server must be configured to understand SSL. Otherwise, how
else can the HTTP request be pulled apart (decrypted) to understand that it
has to be forwarded to the backend server.
If you configure the back-end server to understand SSL, that's OK, but
beware that all mod_pro
I am trying to make a back-end mod_perl/mod_ssl server. The front-end
server that is currently in place is doing a great job forwarding normal
requests to the back-end, but it is not forwarding SSL. Now, the front-end
server does not understand SSL, itself. What I'm doing is trying to
Hello,
This is slightly off topic, but I can't find a firm specification
anywhere on the Internet that says how big a X.500 Distinguished
Name could be.
I've set up MySQL to have fields cert_subject_dn and cert_issuer_dn
as char(255) not null. But I'm wondering if these things could get
lon
is checking for $ENV{HTTPS} not sufficient?
On Tue, 10 Jul 2001, João Pedro Gonçalves wrote:
> This approach should be ok:
>
> my $s = $r->lookup_uri($r->uri);
> my $ssl = $s->subprocess_env('HTTPS');
>
> I looked at this a while back and this is usually
>>>>> "IG" == Issac Goldstand <[EMAIL PROTECTED]> writes:
IG> I did. Look at my follow-up to Geoffrey's esponse to the post you're
IG> quoting for details... It worked from most simple clients...
Then those clients are wrong. You're reque
which will be accessable by https://nasty.servername/ but
> > > IG> will, in reality, not necessarily be over a secure connection.
> > >
> > > I think you've never actually tried this. You will not get the page
> > > because the client is expecting SSL a
[EMAIL PROTECTED]>
> Organization: Khera Communications, Inc., Rockville, MD
> Newsgroups: ml.apache.modperl
> Date: 11 Jul 2001 15:17:11 -0400
> To: [EMAIL PROTECTED]
> Subject: Re: detecting ssl
>
>>>>>> "IG" == Issac Goldstand <[EMAIL PROTECTED]> writ
- Original Message -
From: Issac Goldstand <[EMAIL PROTECTED]>
To: Geoffrey Young <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, July 10, 2001 3:58 PM
Subject: Re: detecting ssl
> > > > > -Original Message-
> > > > >
> > > > -Original Message-
> > > > From: Issac Goldstand [mailto:[EMAIL PROTECTED]]
> > > > Sent: Tuesday, July 10, 2001 10:44 AM
> > > > To: Geoffrey Young; 'João Pedro Gonçalves'; brian moseley
> > > > Cc: [EMAIL PRO
> > > > -Original Message-
> > > > From: Issac Goldstand [mailto:[EMAIL PROTECTED]]
> > > > Sent: Tuesday, July 10, 2001 10:44 AM
> > > > To: Geoffrey Young; 'João Pedro Gonçalves'; brian moseley
> > > > Cc: [EMAIL PRO
> -Original Message-
> From: Issac Goldstand [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 10, 2001 1:07 PM
> To: Geoffrey Young
> Cc: [EMAIL PROTECTED]
> Subject: Re: detecting ssl
>
>
> > > -Original Message-
> > > From
> > -Original Message-
> > From: Issac Goldstand [mailto:[EMAIL PROTECTED]]
> > Sent: Tuesday, July 10, 2001 10:44 AM
> > To: Geoffrey Young; 'João Pedro Gonçalves'; brian moseley
> > Cc: [EMAIL PROTECTED]
> > Subject: Re: detecting ssl
>
> -Original Message-
> From: Issac Goldstand [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 10, 2001 10:44 AM
> To: Geoffrey Young; 'João Pedro Gonçalves'; brian moseley
> Cc: [EMAIL PROTECTED]
> Subject: Re: detecting ssl
>
>
> Not ne
Looking at the port number still doesn't ensure that the request is a SSL
request. I believe the mention to looking at $ENV{HTTPS} is the best couse
as that is set when the connection is a SSL connection and not just a
connection to port 443.
--Joe Breeden
--
Sent
> no need to do a lookup or rely on PerlSetupEnv On I wouldn't think...
>
> my $ssl = Apache::URI->parse($r)->scheme =~ m/^https/;
Or maybe just look at the port # of the request.
- Perrin
7675 E0FA 561B
- Original Message -
From: "Geoffrey Young" <[EMAIL PROTECTED]>
To: "'João Pedro Gonçalves'" <[EMAIL PROTECTED]>; "brian moseley"
<[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, July 10,
> -Original Message-
> From: João Pedro Gonçalves [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, July 10, 2001 9:08 AM
> To: brian moseley
> Cc: [EMAIL PROTECTED]
> Subject: Re: detecting ssl
>
>
> This approach should be ok:
>
> my $s = $r->
This approach should be ok:
my $s = $r->lookup_uri($r->uri);
my $ssl = $s->subprocess_env('HTTPS');
I looked at this a while back and this is usually set internally
in apache by the ssl implementation.
João Pedro
brian moseley wrote:
>
> warning: these may be
warning: these may be silly questions. but i've looked
through the guide and not found the answers, so hopefully
they're not that silly.
how can i test in a content handler if the request was
received over an ssl connection? do i have to look for an
environment variable? is there a
Hello,
My apache segfaults when I start it in SSL mode and a page is accessed. If
it is started in standard mode, it runs fine.
I've been able to create a stable apache using apache 1.3.12-Raven
1.4.1-mod_perl 1.24 and perl 5.005_3. I think the problem is more in the
perl version tha
At 02:07 PM 6/29/2001 -0500, Christopher L. Everett wrote:
>Hello all,
>
>I've been running apache+mod_perl servers with apache+mod_ssl
>front-ends, and been quite happy with this type of setup for
>quite some time.
>
>Now I need to use SSL certificates for authenti
On Fri, Jun 29, 2001 at 02:07:50PM -0500, Christopher L. Everett wrote:
> Hello all,
>
> I've been running apache+mod_perl servers with apache+mod_ssl
> front-ends, and been quite happy with this type of setup for
> quite some time.
>
> Now I need to use SSL certi
Hello all,
I've been running apache+mod_perl servers with apache+mod_ssl
front-ends, and been quite happy with this type of setup for
quite some time.
Now I need to use SSL certificates for authenticating users
of an online database. It seems like there's no way to get
the SSL i
Hello all,
I've been running apache+mod_perl servers with apache+mod_ssl
front-ends, and been quite happy with this type of setup for
quite some time.
Now I need to use SSL certificates for authenticating users
of an online database. It seems like there's no way to get
the SSL i
Yes, it's possible. To achieve this, you should use asymetric
encryption, and *not* store the private key in the server.
Then, the question remains : how can I have the server safely
decrypt on demand ?! one possible solution could be to store
the private key in a remote server, dedicated to the u
ere really is no
such thing as absolute security, only probable security. Oh well.
Kevin
- Original Message -
From: "Vivek Khera" <[EMAIL PROTECTED]>
Newsgroups: ml.apache.modperl
To: <[EMAIL PROTECTED]>
Sent: Friday, June 15, 2001 2:23 PM
Subject: Re: ssl encryption
> "KS" == Kevin Schroeder <[EMAIL PROTECTED]> writes:
KS> This would make an interesting discussion because I've had the
KS> same question come up in my mind. How do you encrypt things on
KS> your server without giving out the passphrase? Is it even
KS> possible to keep the key in the same
in Trott" <[EMAIL PROTECTED]>
> To: "modperl" <[EMAIL PROTECTED]>
> Sent: Thursday, June 14, 2001 5:00 PM
> Subject: Re: ssl encryption
>
>
>>> When apache is serving a ssl connection, I assume that everything
>>> sent back and forth between the
Kevin
- Original Message -
From: "Benjamin Trott" <[EMAIL PROTECTED]>
To: "modperl" <[EMAIL PROTECTED]>
Sent: Thursday, June 14, 2001 5:00 PM
Subject: Re: ssl encryption
> > When apache is serving a ssl connection, I assume that everything
> > sent ba
n apache is serving a ssl connection, I assume that everything sent
> back and forth between the server and the client is encrypted. I want
> an mod_perl script to encrypt/decrypt credit card numbers obtained over
> the ssl connection for storage in a db on the server. Is there any
>
> When apache is serving a ssl connection, I assume that everything
> sent back and forth between the server and the client is encrypted.
> I want an mod_perl script to encrypt/decrypt credit card numbers
> obtained over the ssl connection for storage in a db on the server.
> Is t
task -- typically this is done by using a block cipher like
Blowfish and a single shared secret. Information is available at:
http://www.counterpane.com/blowfish.html, and there are perl modules on CPAN
as Crypt::Blowfish.
Hope this helps.
> When apache is serving a ssl connection, I ass
When apache is serving a ssl connection, I assume that everything
sent back and forth between the server and the client is encrypted.
I want an mod_perl script to encrypt/decrypt credit card numbers
obtained over the ssl connection for storage in a db on the server.
Is there any access to the
On Wed, 4 Apr 2001, Paul wrote:
> Though I feel rather foolish, the fact remains that I can't seem to
> find my SSL environment variables.
>
> httpd.conf has
>
>
>SSLVerifyClient require
>SSLOptions+StdEnvVars
> # ...
>
>
> Exactly
Hi there,
On Tue, 12 Jun 2001, Gauri wrote:
> If i comment out LoadModule & AddModule statements in httpd.conf for
> negotiation & proxy the apache server starts & works fine.
Try compiling static?
73,
Ged.
API
\ --enable-module=all \ --enable-shared=max \ --disable-rule=WANTHSREGEX
\ --disable-module=auth_dbm \ --disable-module=auth_db \ --enable-suexec
\ --suexec-caller=web \ --suexec-docroot=/home \ --suexec-userdir=/home
\ --with-perl=/usr/local/bin/perl \ --add-module=../$SOURCE2
\ --enable-module=
Hi there,
On Sat, 14 Apr 2001, Wim Kerkhoff wrote:
> > Apache-1.3.19
> > mod_ssl-2.8.1-1.3.19
> > mod_perl-1.25 (DSO!)
> > openssl-0.9.4
> > Linux_2.2.16
> > glibc 2.1.3 (*important*)
>
> Why is using glibc 2.1.3 important? It works fine for me with glibc
> 2.2.2. I'm using the latest versions
* Michael Robinton ([EMAIL PROTECTED]) [14 Apr 2001 17:23]:
> > I've just taken a quick look at the modssl site and the apache-ssl
> > site. Does anyone want to comment on the pros and cons of these 2
> > approaches?
> >
> > Can mod_perl co-exist with either o
> I've just taken a quick look at the modssl site and the apache-ssl site.
> Does anyone want to comment on the pros and cons of these 2 approaches?
>
> Can mod_perl co-exist with either or both of these?
>
> All responses welcome, including "don't do it, go bac
"G.W. Haywood" wrote:
>
> Hi there,
>
> On Fri, 13 Apr 2001, Fred Toth wrote:
>
> > I've just taken a quick look at the modssl site and the apache-ssl site.
> > Does anyone want to comment on the pros and cons of these 2 approaches?
>
> Rec
1 - 100 of 182 matches
Mail list logo
