> > This leads to the third version, of which I don't know if it is
> >possible at all. Does any of the well-known root-CA's assign "intermediate"
> >certificates, allowing us to create client certificates without "shocking"
> the
> >users with the warning dialogs?
>
>
> I think the answer is ye
On Mon, Dec 13, 1999, adam beecher wrote:
> I'm trying to set up (on RH 6.0) openssl/mod_ssl/apache/php3, all latest
> (production) versions, with DSO (apxs). Everything seems to be configuring,
> compiling and installing ok, but when I try and start the server with SSL, I
> get the following err
Full_Name:
Version:
OS:
Submission from: 1cust73.tnt1.new-port-richey.fl.da.uu.net (63.24.241.73)
CERT Advisory CA-99.15 - Buffer Overflows in SSH Daemon and RSAREF2 Library.
Has this been fixed in the latest version of modssl ?
If not it needs to be fixed ;p
Please email me with a response.
Daniel S. Reichenbach wrote:
> Sorry me. Should have read to the end. You said that SSL_INC and
> SSL_LIB could be defined as env vars under Win32. I would vote +1 for
> it. The same is used in PHP4 for Cygwin32 integration in the makefiles.
and [EMAIL PROTECTED] wrote:
> I like the idea that t
> > Is there a way to override the path set by EAPI_MM_CORE_PATH using a
> > httpd.conf directive? or do I have to manually edit the
> > apache_1.3.9/src/apaci file that is created to change this path in the
> > apache binary? A directive would be much cleaner.
>
> Correct, but for technical boo
>>> <[EMAIL PROTECTED]> 12/14/99 04:00AM >>>
>CERT Advisory CA-99.15 - Buffer Overflows in SSH Daemon and RSAREF2
Library.
>Has this been fixed in the latest version of modssl ?
To quote from the same CERT Advisory you reference:
"OpenSSL with RSAREF is not vulnerable."
Next time, please read
Ralf,
Thanks for your reply. The problem seems, as you've said, to be with
OpenSSL, but I've tried "make certificate" again and it doesn't seem to
help. I'm wondering if the problem may be to do with my install, since I've
only just moved into a dedicated machine and could be considered a "make
n
> One last word to the OpenSA people: I believe that it will not be an
> impossible job to make OpenSA portable to UNIX. Windows was always
> harder for such stuff (Apache, mod_ssl, PHP, OpenSSL, etc.) to build
> and install, but UNIX is not for newbies too. Maybe I can help.
Yep, you`re right. Ac
On Tue, Dec 14, 1999, adam beecher wrote:
> Configure and make openssl:
>
> $ cd openssl-0.9.4
> $ sh config \
> $ > no-idea \
> $ > -fPIC
> $ make
>
> (Should I "make install" at this point, or will SSL_BASE=../openssl-blah do
> this?)
SSL_BASE=../openssl-0.9.4 is ok, you don't
Hello,
I am running mod_ssl with Apache, on 2 different servers. I am
using a BIG/IP to do load balancing between the machines. I seem to be
running into a problem using an IE web client attaching to these
sites. Basically what happens is on connect, half the page will come up
than an er
I can see where the confusion stems from, contradictory statements in the
cert:
Installations which used RSAREF2 in compiling ssh are vulnerable, and
we recommend recompiling without RSAREF2 if their local legal
situation permits.
In addition, the following list of software packages
I can see where the confusion stems from, contradictory statements in the
cert:
Installations which used RSAREF2 in compiling ssh are vulnerable, and
we recommend recompiling without RSAREF2 if their local legal
situation permits.
In addition, the following list of software packages
Daniel S. Reichenbach wrote:
> The next release will have a new build scheme, which could be
> near to what Eli might want. The build can be done the Unix way.
> Just run a single "nmake" in Apache_1.3.x\src and then "nmake
> install" and that`s it.
Although it is a very positive progres
Hi,
I checked the 2.4 manual, and there was only a small bit on this but
I was not sure if modssl supports this, or not.
What I would like to do is have the ssl root directory different than
the httpd root directory, whilst running only one apache instance.
I am aware of the DocumentRoot dire
Hi
I have fundamental question regarding choosing the chipher in SSL. The spec
says that the client send the accepted ciphers in the order of preference, and
that the server chooses then the cipher to use.
In the current implementation of ssl3_choose_cipher() it is realy the client's
preference
hi, all
I am trying to install mod_ssl on a redhat linux box, when I tried to
configure, it says "apache requires ANSI C Compiler, such as gcc".
I am using gcc version 2.95.2 (19991024), is it a ANSI C compiler?
thanks a lot.
sincerely
sun
___
On Tue, Dec 14, 1999, Blair Lowe wrote:
> I checked the 2.4 manual, and there was only a small bit on this but
> I was not sure if modssl supports this, or not.
>
> What I would like to do is have the ssl root directory different than
> the httpd root directory, whilst running only one apache
Hi all, I am a new to mod_ssl. I
have ExeterXML server on my machine which is integrated with openssl
0.9.4-1.3.9, modssl 2.4.8-1.3.9 for apche 1.3.9.When i ran the
server, i got this warning saying"[Tue Nov 23 21:19:43 1999]
[warn] Loaded DSO modules/ApacheModuleJServ.dll us
18 matches
Mail list logo
