>> I'm having difficulty getting mod_ssl working with
>> Apache 1.3.3 on my machine (Digital Unix 4.0d)
>I'm sure you ignored or overlooked the NOTEs in the
>INSTALL file and configured SSLeay with
>"perl Configure gcc" instead of
>"perl Configure alpha-gcc", although your Digital
>box is Alp
On Mon, 2 Nov 1998, Whit Blauvelt wrote:
> Mark,
>
> I understand you won't be distributing source. But my real question is, as
> mod_ssl becomes a true module, will you be offerring a product with a
> mod_ssl module (compiled) that can be plugged into a custom-compiled
> version of Apac
According to George Adams:
> SSLeay> s_client -host localhost -port 8443
>
> CONNECTED(0003)
> depth=0 /C=XY/ST=Snake Desert/L=Snake Town/O=Snake Oil, Ltd/OU=Certificate
>Authority/CN=Snake Oil [EMAIL PROTECTED]
> verify error:num=18:self signed certificate
> verify return:1
>
> [p
hi,
I would like to setup a secure web server on our linux server. When I
look around I found there is a apache-ssl and mod-ssl which are different.
Which one would be better to use ?
I don't want to start a relegius war, I just want to know the difference
and mainly the benefits both of them.
Tha
Hello,
I played around with NS-Browser and the 128 bit step-up. Because the browser
does a second SSL negotiation it is necessary to handle this kind of error
condition (renegotiation). The following patch does work, but most probably
it is not the whole truth, that means there are probably other
On Tue, Nov 03, 1998, Levente Farkas wrote:
> I would like to setup a secure web server on our linux server. When I look
> around I found there is a apache-ssl and mod-ssl which are different. Which
> one would be better to use ? I don't want to start a relegius war, I just
> want to know the d
On Tue, Nov 03, 1998, Matthias Loepfe wrote:
> I played around with NS-Browser and the 128 bit step-up.
What exactly do you mean here? The fact that you used a Fortify'ed NS or that
you disabled some ciphers or that you used some special certs?
> Because the browser
> does a second SSL negoti
Ralf S. Engelschall wrote:
>
> On Tue, Nov 03, 1998, Matthias Loepfe wrote:
>
> > I played around with NS-Browser and the 128 bit step-up.
>
> What exactly do you mean here? The fact that you used a Fortify'ed NS or that
> you disabled some ciphers or that you used some special certs?
special
I do this:
$ s_client -host localhost -port 443
and gets the answer:
CONNECTED(0003)
27435:error:140770F8:SSL
routines:SSL23_GET_SERVER_HELLO:unknownprotocol:s23_clnt.c:451:
and in error_log this:
[error] [client 130.235.92.154] Invalid method in request 80
Extract from http
On Tue, Nov 03, 1998, Andreas Järund wrote:
> I do this:
> $ s_client -host localhost -port 443
>
> and gets the answer:
> CONNECTED(0003)
> 27435:error:140770F8:SSL
> routines:SSL23_GET_SERVER_HELLO:unknownprotocol:s23_clnt.c:451:
>
> and in error_log this:
> [error] [clien
While I don't currently have a production server using ssl in use I build the
mod_ssl version from time to time to track its evolution and ease of install.
It is much better than apache-ssl in this respect.
Rick Saltzman
> hi,
> I would like to setup a secure web server on our linux server. W
Hallo Ralf,
jetzt wo Dein Server schon SSL kann, solltest Du auch den PGP-Key
via HTTPS anbieten :-)
X-pgp-public-key: http://www.engelschall.com/ho/rse/pgprse.asc
X-pgp-fingerprint: 00 C9 21 8E D1 AB 70 37 DD 67 A2 3A 0A 6F 8D A5
Gruss,
Jan
PS: ich arbeite noch am mod_ssl;
momenta
Sorry for german stuff on this list;
mail should go directly to Ralf.
__
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manage
Ralf S. Engelschall wrote:
> On Tue, Nov 03, 1998, Andreas Jdrund wrote:
>
> > I do this:
> > $ s_client -host localhost -port 443
> >
> > and gets the answer:
> > CONNECTED(0003)
> > 27435:error:140770F8:SSL
> > routines:SSL23_GET_SERVER_HELLO:unknownprotocol:s23_clnt.c:451:
> >
On Tue, Nov 03, 1998, Andreas Järund wrote:
>[...]
> Better! but now netscape complains with:
> "The security library has experienced an out of memory error. Please try to
> reconnect."
> and error_log says:
> [error] mod_ssl: SSL_accept failed
> [error] SSLeay: error:14094412:SSL ro
:On Tue, Nov 03, 1998, Andreas J{\"a}rund wrote:
:
:> I do this:
:> $ s_client -host localhost -port 443
:>
:> and gets the answer:
:> CONNECTED(0003)
:> 27435:error:140770F8:SSL
:> routines:SSL23_GET_SERVER_HELLO:unknownprotocol:s23_clnt.c:451:
:>
:> and in error_log this:
:>
> SSLeay> s_client -host localhost -port 8443
>
> CONNECTED(0003)
> depth=0 /C=XY/ST=Snake Desert/L=Snake Town/O=Snake Oil, Ltd/OU=Certificate
>Authority/CN=Snake Oil [EMAIL PROTECTED]
> verify error:num=18:self signed certificate
> verify return:1
>
> [program hangs]
>> Perhaps
On Tue, Nov 03, 1998, Fredj Dridi wrote:
> :This ok, but seems like on port 443 SSL is not actually enabled. Check your
> : section: It has to correctly use the IP or hostname _and_ port
> :_and_ has to use the SSLEnable.
>[...]
>
> I had the same problem. The solution is to change the port num
Rick Saltzman wrote:
>
> While I don't currently have a production server using ssl in use I build the
> mod_ssl version from time to time to track its evolution and ease of install.
Do you also track apache-ssl?
> It is much better than apache-ssl in this respect.
Please define "much better".
Hi,
in my test environment I got it running:
apache-1.3.3, fully modularized with additional share modules:
mod_frontpage, mod_perl and or course: mod_ssl :-)
Ralf: As I mailed you (and by accident to the list) before
concerning the problems while patching the source against
1.3
On Tue, Nov 03, 1998, Adam Laurie wrote:
>[...]
> > It is much better than apache-ssl in this respect.
>
> Please define "much better". I have no idea what the install process is
> for mod_ssl
>[...]
FYI and to let you compare it to your Apache-SSL process yourself:
o The stripped down versio
On Tue, Nov 03, 1998, Jan Wedekind wrote:
> in my test environment I got it running:
>
> apache-1.3.3, fully modularized with additional share modules:
> mod_frontpage, mod_perl and or course: mod_ssl :-)
Great.
>[...]
> or better integrate this stuff into libssl.module (module definition fil
22 matches
Mail list logo
