Hello,
One solution is to deliver private certificates to your clients.
You can create a CA how delivers personal certs and give thoses certs in PKCS12 format protected with a PIN code !
Sylvain
I'm not aware of any hints and tips for proxying SSL connections. I use this
myself extensively, but we have a wildcard certificate from Thawte which
helps.
I believe that the connection between your real world server and your
internal server will be persisent, ie it doesn't have to be
Hi,
I tried to install mod_ssl 2.6.6.1.3.12 support on my RH 6.2 with
PHP4.0.5 and OpenSSL 0.9.6b. I followed the instruction as mentioned in
the document. And I also have made the certificate.
Then when i tried /usr/local/apache/bin/apachectl start, i got it start.
But when i type the command
I don't think it matters that much. Some areas of London fall into other
counties (eg Middlesex), so you can put that. I'm based in Peterborough,
which is now a unitary authority so it is no longer in Cambridgeshire. Our
next SSL certificate will reflect this change.
ISO 3166-1 defines GB as our
I am new to mod-ssl and this users email group, so I will also defer to the
seasoned veterans out there that might have a better answer than this (or
that can explain why - I am curious also).
I ran into the same problem about a month ago and found that I needed to
build Apache (and all of the
Folks,
The certificate at one of our web sites has expired. It's a self-signed
certificate and we want to create another. The problem is when we try to
sign the new certificate by running sign.sh we get the following error
message:
error 7 at 0 depth lookup: certificate signature failure.
I
David,
Have you looked at the modssl FAQ? It is at
http://www.modssl.org/docs/2.8/ssl_faq.html#ToC28
The FAQ contains instructions for using openssl to create a certificate.
They should work. The instructions that you mention look pretty similar but
you never know.
If you could send me the
I voluteer as well, if it is not too late.
---
G S Sistemas de Informacion, S.L. | Teléfono: 9 02 01 44 43
Victoriano Giralt| Land line: +34-952-207-241
Chief Consultant and Owner | Mobile:
Hi,
I'm new to modssl. I have an Apache server running under Windows NT. I tried
to run the configure.bat file that comes with modssl but get numerous errors
with the patch program (I did have to modify a few of it's internal path
checks).
This is the message that I am getting:
hmm... Looks
Hi,
I have done something silimar:
client - https - apache proxy - http - internal server
- Original Message -
From: Roy Preece [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Tuesday, July 10, 2001 3:08 PM
Subject: SSLClient Browser -- Apache Proxypassreverse --
https://192.168.xxx.xxx
Hi all,
I've just whipped up this patch to the latest (one hopes) version of mod_ssl. It
adds a new directive, 'SSLCryptoDeviceCtrl', to supplement the existing
directive that hooks the ENGINE API of OpenSSL (ie. 'SSLCryptoDevice', without
the 'Ctrl' suffix).
On 11 Jul 2001, at 9:51, Lutz Jaenicke wrote:
On Tue, Jul 10, 2001 at 06:12:09PM -0400, Dan Langille wrote:
...
I imported iestuff.p12 into my MSIE browser and select that certificate
when prompted by the browser.
I then used the following SSL related values in my SSL vhost:
I've written several pieces to this list and the apache list about using
hardware acceleration for SSL. Most SSL accelerators today either work with
openssl/modssl or are independant. The nCipher cryptoswift PCI card or
Rainbow Technologies PCI cards work with openssl/modssl. The only thing to
On 9 Jul 2001, at 9:35, Dan Langille wrote:
I've just finished writing a how-to for setting up client authentication
using self-signed certficates. It includes details of creating the
certificate authority, signing the certificate, web server configuration, and
installing the certificate
hai everyone,
i am new to ssl. i am just going throught openssl. i am just wondering if any one has
a sample code that handles multiple www requests, so that it will help me to get
stated.
thanks a lot
ganesh
Buy Feng Shui Package for Rs.
15 matches
Mail list logo
