Steve Leach wrote:
>
> Owen,
>
> I just followed this thread - thanks for that condensed 'how it works' for
> certificates - I picked up two things I did not know, and as they say
> knowledge is power :)
>
> I am wondering at the last statement as to whether the limitation lies in
> the ability
zhong duhang wrote:
>
> I want one directory can be visited by https,while others visit by http,how
> should I configure it?
Use port-based virtualhosts. Something like (where 192.168.1.1 = server
ip-addr):
Listen 192.168.1.1:80
DocumentRoot /path/to/http/content
Listen 192.168.1.1:443
The ony other issue one really has that Owen has not covered, is trsting
the issuing CA to do things correctly. There's an incident not too long in
the past whence a site not Microsoft affilliated obtained a fake microsoft
cert. Of course there are also man in the middle exploits, even with ssl
> -Original Message-
> From: Johannes Bertscheit [mailto:[EMAIL PROTECTED]]
> Sent: 04 May 2002 18:27
> To: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Subject: Re: Re: WIN32-apache 1.3.x (windows NT) problem of serving
> concurrent https requests
> snip]
> No question: I would also pref
> -Original Message-
> From: Andrew McNaughton [mailto:[EMAIL PROTECTED]]
> Sent: 06 May 2002 16:55
> To: [EMAIL PROTECTED]
> Subject: Repudiability
>
>
>
> Suppose someone refutes that they have sent information to a Web site
> owner, how is the Web site owner to prove that the informa
> -Ursprüngliche Nachricht-
> Von: Johannes Bertscheit [mailto:[EMAIL PROTECTED]]
> Gesendet: Samstag, 4. Mai 2002 19:27
> An: [EMAIL PROTECTED]
> Cc: [EMAIL PROTECTED]
> Betreff: Re: Re: WIN32-apache 1.3.x (windows NT) problem of serving
> concurrent https requests
(cut)
> Are there any
Hello,
My apologies if this has been discussed before, I did not turn up much in my
archive search. I am new to modssl and to this list. Any help you can provide
would be greatly appreciated.
I have a server wide SSL certificate for my domain, but only need SSL
support in certain areas. I
Use VirtualHost stanzas:
ie:
ServerName www.foo.com
Redirect/private https://www.foo.com/private
DocumentRoot "htdocs"
ServerName www.foo.com
SSLCertificateFile conf/ssl.crt/server.crt
SSLCertificateKeyFile conf/ssl.key/server.key
[EMAIL PROTECTED] wrote:
>>Suppose someone refutes that they have sent information to a Web site
>>owner, how is the Web site owner to prove that the information was in
>>fact received and that it was signed with a given key?
>>
>>To do this, the Web site owner would presumably need to be
>>able
> -Original Message-
> From: Balázs Nagy [mailto:[EMAIL PROTECTED]]
> Sent: 07 May 2002 14:58
> To: [EMAIL PROTECTED]
> Subject: Re: Repudiability
>
>
> [EMAIL PROTECTED] wrote:
>
> >>Suppose someone refutes that they have sent information to
> a Web site
> >>owner, how is the Web site
Peter:
This server is not running with virtual hosts (only a single domain), the
doc root for SSL and non-SSL is the same. Anyway I can do the automatic
redirect without moving the doc roots around?
Thanks for your help.
--
Kind Regards,
David A. Flanigan
-- Original Message --
You shouldnt be afraid of virtual hosts.
If you split them up as vhosts, then you can do what you want. If you don't,
you can't.
In my example i used seperate DocRoot's, but this is not necessary.
P.S. can you fix your PC's clock? your timezone is 13 hours out.
David Flanigan wrote:
On Mon, 6 May 2002, MegaZone wrote:
> (Wisdom I relearned today - use explicit paths. You never know when
> someone else has left an old install laying around earlier in your
> build path. Like, say, a non-shared openssl which makes a shared
> apache+mod_ssl sad... Not that I wasted a lot of t
Hello,
The platform is Solaris 8.
I've installed OpenSSL 0.9.6c, and then Apache 2.0.35 using
./configure --prefix=/local/webhome/apache-2.0.35 --enable-mods-shared="ssl"
I can start Apache without SSL, but when I try to use SSL I receive
this message:
[malarkey:/local/webhome/apache/conf]458
Hi, I had instaled apache with openssl, modssl and php the last two as
modules of apache, I had created my own CA certificate, Server
certificate and User certificate, using openssl functions, and i'm
trying to use it for test my server with SSL and i'm loosing hair
rapidly.
I had some problems
After discussing this with the author I realized I had misread the patch.
The new code moves the check in question from before the "if (!SC->bEnabled)" to later
in the sequence:
(check used to be here)
/*
* We decline operation in various situations...
*/
if (!sc->bEnable
Once upon a time MegaZone shaped the electrons to say...
> The platform is Solaris 8.
[snip]
Whoa, that got stuck in the Ether for a while - I sent this out earlier
last night than the message that came through then.
This was the issue with the non-shared OpenSSL.
-MZ, CISSP #3762, RHCE #80619
17 matches
Mail list logo