What about file permissions ?
Göran Fröjdh wrote:
> I'm experiencing a problem with starting Apache w. modssl. For some reason,
> the ssl cache file doesn't seem to be created. Below are the logs:
>
> [Tue Nov 7 23:04:24 2000] [error] mod_ssl: Cannot open SSLSessionCache DBM
> file `/usr/loca
I guess I started this debate so perhaps we can widen it my making it
more general and hopefully come up with a general solution...
The issue is the following: Suppose I have a site which receives and
transmits sensitive user data. Obviously, I want to protect it with SSL.
However, 90% of the con
I'm trying to do the APACI config with:
SSL_BASE=../openssl/openssl-0.9.6 ./configure [options]
I've also tried SSL_BASE=/usr/bin where I can see that the openssl
binary is.
Either way, I get this:
Configuring for Apache, Version 1.3.14
+ using installation path layout: RedHat (config.layout)
00-11-08 9.22, skrev Marcus Lachmanez på [EMAIL PROTECTED]
följande:
> What about file permissions ?
Well, they are all owned by root, look below:
-rw-r--r-- 1 rootwheel 1273 Aug 21 15:48 ca.crt
drwxr-xr-x 2 rootwheel512 Aug 21 15:48 ca.db.certs
-rw-r--r-- 1 rootwheel11
This is probably a daft question, but does the directory
/usr/local/apache/conf/ssl actually exist?
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECT
00-11-08 13.04, skrev [EMAIL PROTECTED] på [EMAIL PROTECTED]
följande:
> This is probably a daft question, but does the directory
> /usr/local/apache/conf/ssl actually exist?
>
Well... yes...
bash-2.04# pwd
/usr/local/apache/conf/ssl
___
OK, if you change to the "nobody" user (or whoever you run the server as)
can you write to that directory?
Sometimes file permissions get missed. I did this recently and couldn't run
X-windows until I corrected the permissions on /usr. The easy
If you can't change to "nobody", it may be worth c
(Oh dear, brain was in off-line mode when I sent the last post)
OK, if you change to the "nobody" user (or whoever you run the server as)
can you write to that directory?
Sometimes file permissions get missed. I did this recently and couldn't run
X-windows until I corrected the permissions on /u
00-11-08 14.28, skrev [EMAIL PROTECTED] på [EMAIL PROTECTED]
följande:
> OK, if you change to the "nobody" user (or whoever you run the server as)
> can you write to that directory?
Yes, but that isn't very satisfacory security-wise, is it?
> Sometimes file permissions get missed. I did this rec
We have exactly the same problem here with sites being both inside and
outside. However, I'm happy to take the performance hit until I have to look
at SSL acceleration cards. I need to get hold of one, however since my line
manager doesn't understand the problem they are supposed to solve persuadi
Hi,
There is a file named "ca-bundle.crt" in the mod-ssl distribution. This
file basically contains a bundle of X.509 certificates of all
Certificate authorities. Does anybody know how this file is created and
if there is a location where I can find the source for this?
thanks,
Sai
_
Is there a searchable archive of this list anywhere?
cc
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager
Yep.
http://marc.theaimsgroup.com/?l=apache-modssl
Harald
begin:vcard
n:Langaker;Harald
x-mozilla-html:FALSE
org:SECUDE SicherheitstechnologieInformationssysteme GmbHe-security for e-business
version:2.1
email;internet:[EMAIL PROTECTED]
title:
note:German WWW: http://www.secude.de>http://www
Have a look at www.modssl.org/support/
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
-Original Message-
From: Christopher Cobb [mai
14 matches
Mail list logo