On Thu, Dec 02, 1999, Fitzpatrick, Matthew wrote:
> So gave up on trying to compile the tarball, and decided to go with a
> simpler, easier RPM (I'm running RH6.1). I grabbed
> apache-mod_ssl-1_3_6_2_3_0-0_i386.rpm, and I installed it. I then installed
> my certificates. I am able to sucessful
-Original Message-
From: Alex Howansky <[EMAIL PROTECTED]>
To: [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date: Thursday, December 02, 1999 3:19 AM
Subject: confused about RSAref
>
>Hi all,
>
>I've searched the docs and mailing list archives and can't find a
definitive
>answer to my question
Doh!
I missed one directory in the permissions change.
All now works.
Thousands of apologies, Ralf.
Blair.
--- begin forwarded text
X-Sender: [EMAIL PROTECTED]
Date: Thu, 2 Dec 1999 16:34:00 -0700
To: [EMAIL PROTECTED]
From: Blair Lowe <[EMAIL PROTECTED]>
Subject: Re: httpd is serving noth
Also,
All directories are rwxr-xr-x, and all files are owned by nobody (who
runs the daemon on my development server).
Thanks,
Blair.
--- begin forwarded text
X-Sender: [EMAIL PROTECTED]
Date: Thu, 2 Dec 1999 15:25:04 -0700
To: [EMAIL PROTECTED]
From: Blair Lowe <[EMAIL PROTECTED]>
Subject:
I did order the certificate for Stronghold, since I guessed this was the
closest thing to Apache + mod_ssl. The output from "openssl x509 ..." only
mentions the extra Netscape flag, doesn't say anything about a Microsoft
flag.
X509v3 Extended Key Usage:
Netscape Ser
So gave up on trying to compile the tarball, and decided to go with a
simpler, easier RPM (I'm running RH6.1). I grabbed
apache-mod_ssl-1_3_6_2_3_0-0_i386.rpm, and I installed it. I then installed
my certificates. I am able to sucessfully connect to http://myserver, but
when I try to get to htt
Full_Name: Matt Braithwaite
Version: 2.4.1
OS: BSD/OS
Submission from: zildjian.hq.alink.net (207.135.64.149)
I don't really see any reason for this:
[02/Dec/1999 13:37:04] [warn] Init: (fg.alink.net:443) RSA server certificate
CommonName (CN) `*' does NOT match server name!?
[Thu Dec 2 13:37
On Thu, Dec 02, 1999, randyboy wrote:
> One of my client certs expired. What is the best to go about renewing it?
> Should I just delete xx.pem in ca.db.cert and re-create it or is there some
> more graceful way of doing it?
Renewing usually just means that the old CSR is again signed to form
On Wed, Dec 01, 1999 at 12:45:23PM -0600, Alex Howansky wrote:
I'm sure that you've all looked at this, and I was just wondering
if anyone has checked to be absolutely sure that it isn't going
to affect the security of mod_ssl Apache installations using
RSAREF2 with the buffer overflow.
Also, a
Hi,
One of my client certs expired. What is the best to go about renewing it?
Should I just delete xx.pem in ca.db.cert and re-create it or is there some
more graceful way of doing it?
thank you
r.
__
Apache Interface to Ope
This line (from my httpd.conf file) is the same as the httpd.conf-dist:
Listen 80
Listen 443
If I do a ps ax I get:
root 734 0.0 1.2 2876 1632 ?S22:51 0:00
/home/fnord/apache_1.3.9/bin/httpd -DSSL
nobody1015 0.0 0.0 00 ?Z22:52 0:00 [httpd
]
n
Hi,
I am trying to install
* Apache 1.3.9 (with DS0 support)
* mm-1.0.12 (static)
* mod_ssl 2.4.9 (as DSO)
* php-3.0.12 (as DSO via APXS)
on a HP-UX 11.00 R class server with PA-RISC 2.0 architecture
and gcc 2.95.2. Because I want the most runtime flexibility I
want to install everything as a
Hello again,
> > When I connect securely to my Apache Server (mod_ssl enabled) using
> > Netscape Version 4.5 and greater (Solaris/Win95/NT) I always get
> > "Netscape encountered bad data from the server" error.
> > Everything works fine using Netscape4.05 for Linux.
> >
> > I do not have any
AFAIK, if you point the browser to a URL of a file of type ".crt",
and the WWW server (apache) is configured to say that .crt files
are certificates, then the netscape wizard comes up and asks you
all those sort of questions...
I think in the default apache installation, in the srm.conf file, t
On Wed, Dec 01, 1999 at 03:09:45PM -0800, Tom Vaughan wrote:
> I searched the archives (ran through the debugger, just called netscape
> support, ...) and came up empty, so...
Well, there should be similar messages in the archive, but never mind,
since no answer was ever found...
> When our serve
Matthias Loepfe wrote:
> Also I think it would probably be a good idea to think about supporting
> the MS-StepUp in OpenSSL.
Is there a spec for it?
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are two kinds of people: those
who work and those who
Hi,
We had probably the same problem. Please check if your GlobalID Cert has
both of the SGC ext. key usage flags set (NS and MS) or only NS.
IE chooses a different stepup procedure if the GlobalID Cert contains the
MS SGC flag, which is not supportet by OpenSSL. This flavour of step up
is a ch
17 matches
Mail list logo