I've tried to rewrite on an SSL request (testing for the env HTTPS==on), and
I've had no success. rewrite.log seems to indicate that it doesn't know what
the https environment is (even though this is an https request).
Is there any way to do a rewrite based on whether or not the request was an
I tried to following configuration, which I expected to work as per my 1.3.24
envirnoment
ErrorLog logs/error2.log
CustomLog logs/access2.log common
ProxyPass / https://my.securehost.com/
ProxyPassReverse / https://my.securehost.com/
Apache then crashed in libapr.
This problem w
On Wed, 12 Jun 2002, Andre Steffens wrote:
> I've installed Apache 2.0.36 with mod_ssl on Win2k. After I create a
> certificate I now have the files test.cert and test.key.
> But the Apache doesn't start! Someone who know what I've to do?
What does the error log say?
--Cliff
__
On Wed, 12 Jun 2002, Jeff Landers wrote:
> What is the recommended way of getting the ssl module for Apache2? Using
> the built in Apache2 SSL or using mod_ssl? I don't see a mod_ssl for
> Apache2 on the mod_ssl site. Does anyone have experience with Apache2
> and ssl?
There's no mod_ssl on the
What is the recommended way of getting the ssl module for Apache2? Using the built in
Apache2 SSL or using mod_ssl? I don't see a mod_ssl for Apache2 on the mod_ssl site.
Does anyone have experience with Apache2 and ssl?
__
Ap
On Mon, Jun 10, 2002 at 04:13:12PM -, [EMAIL PROTECTED] wrote:
> Well here's the situation. I need openssl 0.9.6 but I also need openssl
> 0.9.5a. So RedHat came out with three packages:
> openssl-0.9.6 (refered to as 0.9.6)
> openssl-0.9.5a (refered to as 0.9.5a)
> openssl095a-0.9.5a (refere
Full_Name: Philippe Jourdain
Version: 2.8.8
OS: Linux & Windows
Submission from: (NULL) (62.23.37.12)
My case:
We have an AC with 2 public keys, one is used to sign our SmartCard certificate
and the other is used to sign the CRL according to the SmartCard certificate.
The DN is the same for the
Hi,
I've installed Apache 2.0.36 with mod_ssl on Win2k. After I create a
certificate I now have the files test.cert and test.key.
I add the following lines to my httpd.conf File:
SSLMutex sem
SSLRandomSeed startup builtin
SSLSessionCache none
SSLLog logs/SSL.log
SSLLogLevel info
SSLEngine
How can you customize the output to the apache access-log on a ssl
connection. I am trying to use awstats and the ssl connections do not
report the browser/os type and awstats gets mad about that.
My httpd.conf does not have a seperate directive for the access-log in
the ssl section but I get dif
Well, the problem is that, when I install Mod_perl, each Apache process uses
several MBytes more... and I don't have anything to spare anymore.
David Marshall wrote:
> Yes. What are your resource constraints?
>
> -Original Message-
> From: Wim Godden [mailto:[EMAIL PROTECTED]]
> Sent:
Yes. What are your resource constraints?
-Original Message-
From: Wim Godden [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 12, 2002 7:46 AM
To: [EMAIL PROTECTED]
Subject: Re: 1 certificate for several sites using redirection ?
Hi David,
Thanks, but does this require Mod_perl as I ha
Yes
-Original Message-
From: Wim Godden [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, June 12, 2002 7:46 AM
To: [EMAIL PROTECTED]
Subject: Re: 1 certificate for several sites using redirection ?
Hi David,
Thanks, but does this require Mod_perl as I haven't got that install (it
eats
too m
Hi David,
Thanks, but does this require Mod_perl as I haven't got that install (it eats
too much resources).
Greetings,
Wim
David Marshall wrote:
> To rewrite content you might look at the Perl module Apache::ProxyRewrite. I
> was given an assignment to Front-end MS EXCHANGE OWA with Apache H
To rewrite content you might look at the Perl module Apache::ProxyRewrite. I
was given an assignment to Front-end MS EXCHANGE OWA with Apache HTTPS.
After review of options, I took a copy of the Perl module
Apache::ProxyRewrite and added the ability to ReplaceText in the content as
well, I renamed
My case:
We have an AC with 2 public keys, one is used to sign our SmartCard
certificate and the other is used to sign the CRL according to the SmartCard
certificate.
The DN is the same for the both keys but the Subject Key Identifier are
differents.
When you look into the certificat and the CRL
Excuse me,
I have installed mod_ssl.
I must authenticate known clients based on certificate and **I need to
test this feature.
I have installed a self-signed crt using something like
# require a client certificate which has to be directly
# signed by our CA certificate in ca.crt
SSLVer
thats basically right.
the proxy spec in http/1.1 etc copes with rewriting headers - but
nothing I've seen rewrites the actual html content - this would be
possible of course, but there would have to be a new module for apache
to do it, and architecturally you'd be creating a potential bottlen
I just recently built the 2.0.36 + ssl tree and had similar results.
Although the error messages were slightly different, the root cause
might be the same.
Turns out that several .c and .h files are delivered with dates earlier
than the .y and .l files they are built from. However, the .c an
So there's no system which allows me to really proxy pages and 'modify' them so
that all future connections go through this 'proxy' as well ?
Greetings,
Wim
Peter Viertel wrote:
> yes, i think thats whats happening - you need to review the website
> content you are pointing at. For this to wor
yes, i think thats whats happening - you need to review the website
content you are pointing at. For this to work you can't have any
absolute hrefs, and also the backend site may issue redirects, for these
to work you need a ProxyPassReverse which will rewrite the Location:
header on any redir
Sounds like you have some absolute links rather than relative links. You can
also use
proxypass /test https://other-subdomain.ourdomain.com
If the data needs to be secured between the proxy and the destination
server.
-
John Airey
Internet systems support officer, ITCSD, Royal National Institu
proxypass /test http://other-subdomain.ourdomain.com
doesn't work properly... I get errors about the images being insecure and all links
point to the wrong position.
Peter Viertel wrote:
> You could do that using reverse proxy, ie mod_proxy.
> Redirects are not going to help.
>
> Wim Godden wro
There's always the possibility of a wildcard certificate, but you'd need to
have the same domain name throughout. Some browsers don't work with them.
See www.thawte.com for details.
-
John Airey
Internet systems support officer, ITCSD, Royal National Institute of the
Blind,
Bakewell Road, Peter
You could do that using reverse proxy, ie mod_proxy.
Redirects are not going to help.
Wim Godden wrote:
>Hi,
>
>I'd like to use a certificate to secure several of our subdomains...
>buying hundreds of certificates is simply too expensive.
>Is there some way to do this :
>
>- Install certificate
Hi,
I'd like to use a certificate to secure several of our subdomains...
buying hundreds of certificates is simply too expensive.
Is there some way to do this :
- Install certificate on secure.ourdomain.com
- Let people surf to
https://secure.ourdomain.com/other-subdomain.ourdomain.com/what-ever
Whether this can be done is something you should talk to the vendor of
your HSM about. If you're still looking for one to buy, I can confirm
that it can be done with nCipher's gear using openssl-engine and some
extra binaries they provide, I personally have experience with Solaris
and using an
Engine support inlcudes offloading RSA/DSA operations but I haven't found
any way to notify moddssl that the key is in hardware key storage. Modssl
always looks for disk files for private key and certificate files and I
haven't figured out how to use hardware key storage. Apache will never start
Hi,
If we generate a site certificate for name1.com can we use this certificate
for name2.name1.com?
Thanks,
Sri
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List
> Could you give me a pointer to this howto your speaking of?
> I'm just starting to work with certificates and was just about to look
> for such a document.
http://www.modssl.org/docs/2.8/ssl_howto.html#ToC6
For thawte (free!) certificates take a look at:
http://www.thawte.com/getinfo/products
> I tried to activate user authentication via personal certifacates from Thawte,
> exactly like described in the HowTo under:
>
Could you give me a pointer to this howto your speaking of?
I'm just starting to work with certificates and was just about to look
for such a document.
TIA,
Dennis Sp
Hello,
I am using:
Apache 1.3.23,
mod_ssl 2.8.7,
openssl 0.9.6c
(Also perl and php)
I tried to activate user authentication via personal certifacates from Thawte,
exactly like described in the HowTo under:
How can I authenticate only particular clients for a some
URLs based on certificates but
31 matches
Mail list logo
