stuff by 2.8.0 ??
Cya
John.
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]
have an example configuration?
Any assistance will be greatly appreciated.
Cya
John.
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED
t
moment, I cannont answer why this is happening.
- John
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager[EMAIL PROTECTED]
on 1.3.19, already.
If I am wrong, please let me know, but from experience this would be my
approach.
- John
On Fri, 20 Apr 2001, Mercier Alain wrote:
> Hi,
>
> Apache 1.3.19 (win32)
> JServ 1.1.2-2
> mod_SSL 2.8.2
>
> When starting apache, a message says :
> [
order of the directory index in ur apache file may be the
problem? Virtual hosting under ssl has a different order maybe. check
ur httpd.conf file
- John
On Sat, 21 Apr 2001, JRicker wrote:
> I've been working on this PHP driven shopping cart program called
> phpshop. Everything
ows but yack, I assume Linux will as well | note: I
add that my clients use Netscape AND Internet Explorer )
So, in closing, my problems are that Netscape bombs on DHTML w/
*.p12 certificates AND requires that I present my certificate more than
one time during a session with my webserver.
Help?!
Has anyone else gotten NS roaming (via mod_roaming) and SSL to behave
together?
I don't believe this problem is with Apache / Mod_ssl, but rather with
netscape 4.5 . . .
Best, John.
ftp://glock.missouri.edu/pub/mo
27;ve found to be best for this list
(or others) that they'd care to share?
Best, John.
ftp://glock.missouri.edu/pub/mod_ssl/
__
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Suppo
main
distribution (or at least available via option "most"), just like the
other useful limitations we can make for timeouts, etc.
Best, John.
__
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_
SL mode, but it
doesn't seem to want to load.
If anyone could revel their working httpd.conf for this, I'd
appreciate it. Off list is fine, if it's large. So far, it seems
that Apache is harder to use on NT than the familiar *nix variants .
. .
Best, John.
ftp://
rvers . . .
Best, John.
__
Apache Interface to OpenSSL (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
http://isg.rainbow.com/products/cs_1.html
Does anyone have any thoughts and / or experience with such things?
Thanks!
Best, John.
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support
methods, they are both still
accessible via ftp :
ftp://modssl.missouri.edu/pub/mod_ssl/and
ftp://openssl.missouri.edu/pub/openssl/
Best, John.
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User
nd web etc
And still we get errors! now we are getting "undefined external _alloca"
errors...
So now we offer money for anyone who can help... we really would like to
get this right so we can write a proper howto, plus we have a critical
project we need to complete.
Than
this right?
John.
- Original Message -
From: "Victor Medina" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Sunday, June 09, 2002 3:33 PM
Subject: Re: 2.0.36 + mod-ssl + Win2k = Easy Money
Hi there!
I can provide Apache binaries with mod_ssl included and z
Thanks Chris,
There is a summary of what we did on the original post to this thread...
any help is appreciated, thanks,
John.
- Original Message -
From: "Chris Hsiang" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Monday, June 10, 2002 11:16 AM
Subject
on linux with no problems,
we are now into our 5th day of stuffing around and still no ssl.
Maybe you can give us some pointers? We are using the default configs as
given with apache but there must be something else that needs to be done
to get windows to work with the ssl?
John.
- Original
We have discovered that if we start Apache from the console with
>apache -D SSL on our windows server, then we have ssl support...
Please, someone, how do we get ssl support running as a service?
It seems we have wasted a couple of days, simply to find this out!
J
in the apache\bin use
>apache -D SSL
to install apache to run as a service with SSL
>apache -i -D SSL
Hope this helps someone out there, and thanks to everyone who helped us!
John.
- Original Message -
From: "Mark Chew" <[EMAIL PROTECTED]>
To: <[EMAIL PROT
L server*
Each domain name has its own userspace.
Can anyone help me here?
Thanks
--
John - [EMAIL PROTECTED] - http://www.reiteration.net/~jfm
For PGP public key finger [EMAIL PROTECTED] or see webpage
__
Apache Interface to O
On Mon, Nov 24, 2003 at 05:12:45PM +0100, Boyle Owen wrote:
[snip loads]
Many thanks for your quick response. I shall try your suggestions
tonight.
cheers
--
John - [EMAIL PROTECTED] - http://www.reiteration.net/~jfm
For PGP public key finger [EMAIL PROTECTED] or see webpage
I've just been informed by Thawte that there are a number of problems with
IE5 and wildcard certificates. I'm looking into the details now and will
post them to this list for everyone's benefit.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institut
able
to IE3 (in fact IE3 does not accept any Thawte security certificates any
more, and there's probably more it doesn't accept either, eg Verisign). This
was fixed with IE4 and appears broken again with IE5.
Good old Microsoft!
-
John Airey
Internet Systems Support Officer, ITCSD, Roy
You will find that all versions of Netscape since 4.72 support 128bit
encryption out of the box.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED
Try visiting http://www.fortify.net/sslcheck.html and see what it says. This
page will negotiate the highest security and state it. For example, using
IE5.01 SP1 I get RC4 128bit.
At first glance it appears you are not afflicted with export restricted
ciphers, so it should be OK.
-
John Airey
27;m right then Netscape
is messing everyone about. This stuff is hard enough as it is!
John
-Original Message-
From: James H. Cloos Jr. [mailto:[EMAIL PROTECTED]]
Sent: 12 July 2000 18:58
To: [EMAIL PROTECTED]
Subject: Re: msie AGAIN
>>>>> "John" == Airey, John <
Once finished eat the floppy disk ;-)
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
-Original Message-
From: Juergen Schreier [m
that you recreate your key. Unless of course
you are using this for a test certificate then it doesn't really matter.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1
http://www.zdnet.com/etestinglabs/stories/benchmarks/0,8829,2326243,00.html
Works great!
> -Original Message-
> From: Craig Skelton [mailto:[EMAIL PROTECTED]]
> Sent: Monday, July 17, 2000 12:22 PM
> To: [EMAIL PROTECTED]
> Subject: benchmarking
>
>
> -BEGIN PGP SIGNED MESSAGE-
ong) about the .csr file containing the
public key. I'm not sure where I read that it contained the private key,
perhaps it was on an old page at the Thawte site.
Obviously, it's best to test all this with the test key first before losing
any money on it.
And no, I do not get commission
tself supports the SSL connection then you will
get errors from the other servers when the client attempts to use a key
these servers know nothing about.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0)
lso talk to Thawte about it
as well and their technicians are available at http://thawte.chatspace.com/
AFAIK Thawte are the only people that do wildcard certs. And I don't get
commission for every wildcard cert that I recommend. (Not yet anyway).
-
John Airey
Internet Systems Support Officer, ITCSD
(IPC_SET)
# when the value of (unsigned)Group is above 6;
# don't use Group nobody on these systems!
#
John
-Original Message-
From: Diana Moreland [mailto:[EMAIL PROTECTED]]
Sent: 20 July 2000 20:03
To: [EMAIL PROTECTED]
Subject: Re: SSLMutex error
So I wonder why mine would
I downloaded and compiled mod_ssl 2.6.5-1.3.12 on a Solaris 2.7 on Intel box
using gcc 2.8.1. When I do a 'make test' everything appears okay. I then
statically link it into Apache 1.3.12 and it does not work. All modules are
compiled and linked static. I try doing
openssl s_client -connect localh
I'm using Webalizer 2.0, but not user authentication... so I haven't used
that feature.
John Helmuth
At 03:37 PM 8/22/00 +0200, you wrote:
>I know this is off-topic,
>but on secure web servers I guess there are some pages where the user has to
>login with
>username and p
t I'd recommend you use an A type where you can. I don't believe that
web browsers do any reverse lookup.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [
I would suggest you remove apache with
rpm -e apache
and then install the open-ssl and apache-mod_ssl rpm files from
http://www.modssl.org/contrib
The rpms definitely work. We are using them ourselves!
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
I think you misunderstand the answer. You can use a 128bit key on your
server, but the end users will probably be connecting using a 40bit browser.
So they won't be getting the maximum level of encryption available.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Inst
ke to thank Ralf and all the other developers for the work they
do. Their understanding of programming is far better than mine, although
I've managed now to get beyond "hello world" (just). Their work on
apache-mod_ssl is even more greatly appreciated.
-
John Airey
Internet Systems
Hi
Running RedHat v6.2 latest Apache and mod_ssl. I cannot figure out how
to install my Thwate certificate. I installed mod_ssl via an RPM. In
/usr/local/ssl/mod_ssl I see three scripts cca.sh,gid_mkcert.sh and sign.sh.
How do I install the Thwate certificate ?
Thank You
John Markunas
Can I make a small correction here? The latest apache-devel is usually
available as a binary RPM at
http://www.modssl.org/contrib
So you don't actually need to rebuild Apache from source. This is not
entirely clear from the documentation as I've posted this information
before.
-
c (because he'll never have had time
to do any work on it). This may of course be native to Geordie-land)
Keep up the good work, anyway Ralf!
John
-Original Message-
From: Mads Toftum [mailto:[EMAIL PROTECTED]]
Sent: 22 September 2000 08:57
To: [EMAIL PROTECTED]
Subject: Re: Can Search En
sr to another
Certification Authority, eg Verisign or Thawte.
General disclaimer: I am not a lawyer (but I have taken legal action in
person that went all the way to the Court of Appeal).
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell
icted countries to use, but I don't know
this particular law that well.
This question is probably answered in the mail archives, however there is no
mention of any support restrictions at
http://www.modssl.org/support/
Thanks in advance, everyone!
-
John Airey
Internet Systems Support Offi
Oops. I meant www.modssl.org!
John
-Original Message-
From: Airey, John [mailto:[EMAIL PROTECTED]]
Sent: 28 September 2000 10:38
To: Modssl-Users (E-mail)
Subject: mod-ssl support for US restricted countries?
This is a question which is probably best answered by Ralf, however a
I use Linux because of the stability, security, usability, manageability and
speed. Who needs Windoze 2K?
John
-Original Message-
From: Owen Boyle [mailto:[EMAIL PROTECTED]]
Sent: 29 September 2000 13:33
To: [EMAIL PROTECTED]
Subject: Re: standard certificates work wildcard wont
Tony
talled the security update.
Regardless what you run, install the security patches as soon as practically
possible. Test them on a development machine first if you like. This
obviously includes updates to mod-ssl.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for
strar of the domain name other than Network Solutions.
Network Solutions, therefore, does not guarantee its accuracy or
completeness.
_
John Neil, MS, PhD Myers Internet Services
Sr. Programming Manager
hope!),
and we don't all immediately think we've been hacked every time something
goes wrong.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PR
Perhaps we should give him Snake Oil's telephone number? ;-)
John
-Original Message-
From: James Ford [mailto:[EMAIL PROTECTED]]
Sent: 11 October 2000 19:55
To: [EMAIL PROTECTED]
Subject: Re: Who is this clueless moron?
On Wed, 11 Oct 2000, James Treworgy wrote:
>The ans
Could you give us the versions of mod_ssl and openssl that you are using
please?
I suspect you may be using versions that are out of date now and you would
be best advised to update to the latest version. That is currently Apache
1.3.12 with mod_ssl 2.6.6 and openssl 0.9.6.
Thank you.
-
John
you expect them to.
(What I've been doing is removing Apache from RedHat 6.2 machines and
installing opensll and Apache-mod_ssl separately. Looks like from RedHat 7.0
onwards I won't need to anymore.)
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Yes. In fact they released the patent almost 10 days earlier than 9/20.
-Original Message-
From: Nate Carlson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, October 12, 2000 8:28 AM
To: ModSSL Users
Subject: Legality of RSAref in USA?
Hi,
Since the patent for RSA expired on Sep 20, is it
Don't worry, he didn't mean you. We recently had someone spam this list who
was, to be polite, a little paranoid.
He seems to have gone away now, leaving a trail of hundreds of unnecessary
emails.
John
-Original Message-
From: Moss, Peter [mailto:[EMAIL PROTECTED]]
Sent:
their ftp site,
which does seem odd. I'll look into it and get back to you.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
-Original Me
t;httpd -l" please Carlos?
Thanks.
John
-Original Message-
From: R. DuFresne [mailto:[EMAIL PROTECTED]]
Sent: 23 October 2000 15:20
To: [EMAIL PROTECTED]
Subject: RE: mod_ssl on Redhat 7
Is that the most current for redhat? there was a update rpm released a
week or so ago
exactly the same content "This
is a SSL Virtual Host", which is to be expected. (It appears your poor
laptop might be getting hammered by SSL requests as I couldn't always manage
to connect).
Sorry to disappoint you.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal Nationa
ple upgrade to the latest version at the
earliest possible time. This is far easier using Apache and mod_ssl than the
MS offering.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +
ate a different protocol.
In other words
http://localhost is equivalent to http://localhost:80
https://localhost is equivalent to https://localhost:443
Other than that, you can't mix and match them.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for
-1.3.14.2.7.1-1.i386.rpm
or
http://www.modssl.org/contrib/apache_mod_ssl-1.3.14.2.7.1-1.i686.rpm
if you have a Pentium II or above.
Incidentally, does anyone know why a plain Pentium rpm isn't being built
anymore?
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institut
Hello
What Apache directive do I use to make
http://my-server
always go to
https://my-server
Thank You
John Markunas
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
Hello
The suggested use of VirtualHost as shown below yields the following
error upon httpd(Apache) start up
Invalid command 'RedirectPermanent' perhaps mis-spelled or defined by a
module not included in the server configuration.
What am I doing wrong ?
Sincerely
Joh
Hi
I do a httpd -l and get
compiled in modules
http_core.c
mod_so.c
suexec: disabled;invalid wrapper /usr/sbin/suexec
Can someone tell me why I get the suexec error and what to do to
fix it ?
I lo
while till I recompiled stunnel against the source
tree of the same version of Openssl. Check your syslog for a definitive
answer as stunnel should be logging any failures there.
I use stunnel for SWAT and mod_ssl on the same machines without any
problems.
-
John Airey
Internet Systems Support Of
e IP address, the request goes to the virtual host.
One solution (I'm sure there are others...) is to set up a separate IP
address (alias) on your box, point the shop.perlnerd.com name to that
address, and adjust your virtual host settings to match.
John Helmuth
[EMAIL PROTECTED]
__
This is probably a daft question, but does the directory
/usr/local/apache/conf/ssl actually exist?
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL
;nobody", it may be worth considering creating a user
for your web server to run under. Change the "User" and "Group" settings in
httpd.conf to reflect this user. Some systems cannot run a web server as
nobody.
John
-Original Message-
From: Göran Fröjdh [mailto:
permissions on /usr. The easy mistakes are
often those that are overlooked.
If you can't change to "nobody", it may be worth considering creating a user
for your web server to run under. Change the "User" and "Group" settings in
httpd.conf to reflect this user. Som
;ve noticed a substantial drop in speed when IE is in
use. Why Microsoft have been unable to implement SSL properly after having
so much time is beyond me. I shudder to think what painful hacks are in
place with IIS in order for IE and SSL to work.
-
John Airey
Internet Systems Support Officer, I
Have a look at www.modssl.org/support/
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
-Original Message-
From: Christopher Cobb
--enable-debug=no \
--enable-safe-mode \
--with-exec-dir=/usr/bin \
--with-mysql=/usr \
--with-system-regex \
--enable-versioning
Getting desperate. Any help much appreciated!
***
John Sutton
SCL Computer Services
URL http:
f information to the screen with
no errors. Has anyone seen anything like this before? I appreciate any
advice that can be sent my way.
,, SrA John Thatcher Hubbard
/()` HQ SSG/SWSN
\ \___ / | Programmer/DBA
We use a similar system here to redirect accesses to internal IP addresses,
and yes it does work PROVIDED that each SSL host has a unique internal IP
number/port combination, as well as having a unique external IP number/port
combination.
-
John Airey
Internet Systems Support Officer, ITCSD
work.
(At this point someone will point out that I've made a mistake. No surprise
there, I only just scraped through the Maths part of my degree).
Personally, I think that we are more likely to see widespread use of IPv6
before any browsers can work round then. In that case shortage of IP w
Can you tell us what system you would like a compiled version for please?
Have you tried www.modssl.org/contrib?
Thank you.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0
hese can be compiled from source in a similar method to above or you can
download some compiled versions from www.modssl.org/contrib/ site.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 3752
what happens if you try "httpd -tDSSL" ?
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
> -Original Message-
> Fro
ubmit an update.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
> > -Original Message-
> > From: Steve [mailto:[EMAIL PROTEC
What you are looking for is the "ErrorDocument" directive, in this case it's
a 400 error.
The line
ErrorDocument 400 /error.html
In your httpd.conf file will mean that the server will display this page
instead for 400 errors.
-
John Airey
Internet Systems Support Office
h it doesn't mention that on the modssl site. Can
this be sorted?)
That's what I like about compilers. You can compile code for a machine you
don't even have!
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2
3.8 and lynx-ssl 2.8.2 (I have got round to a new
package yet) are both working fine.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
_
trib page and "fixed" versions of
the existing rpms. I hope that Steve, who recently posted to this list, will
find these useful as they install without errors (again, on my system).
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell R
track of which versions don't work myself, and (you are going to
hate me for this) I still haven't found a version of aaaheeeh or Netscrape
that doesn't work with modssl. I guess I'm not trying hard enough. I'll have
a go soon though.
-
John Airey
Internet Systems Support
listed below (and saves your fingers!)
Please note that you will need both openssl and openssl-devel packages
installed to build this. Once it is compiled you won't need the
openssl-devel package any more to run it.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Inst
d seem to
satisfy both the server and the browser, since the cert will match.
I guess maybe I should run out and cut myself a cert and play with this...
Many thanks,
John.
--
John Robinson, UN*X hack/software engineer/internet security bod
23 Seaton Drive, Bedford MK40 3BQ. Tel +
ild-std'
> Current working directory /export/developers/rmb/apache-1.3.9/src/apache_1.3.9
> *** Error code 1
> make: Fatal error: Command failed for target `build'
>
> Any ideas/fixes??
>
> Richard Botting,
> Graham Technology,
> Scotland.
>
> __
I have a similar problem. I'm using apache 1.3.14, openssl 0.9.6, and
mod_ssl 2.7.1 on Solaris 2.7. Bone-stock config, but IE5 chokes (and IE4,
actually). I searched and found the following suggested config changes:
---
SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shut
have little doubt that IIS and IE interact in some
unpublished way to work better with each other, and only with each other.
-
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0
d seem to
satisfy both the server and the browser, since the cert will match.
I guess maybe I should run out and cut myself a cert and play with this...
Many thanks,
John.
--
John Robinson, UN*X hack/software engineer/internet security bod
44 Haymarket Terrace Edinburgh EH12 5LA. Tel +
Hi. I want to support strong encryption for multiple domain names, all of
which will be mapped to the same server by my load balancer. My
understanding is that I will need a separate server certificate for each
different domain name. Is this something that I can do using Apache/mod_ssl
- i.e.
gt;
Try emptying your browser cache and see what happens. Newer versions of IE
are caching DNS errors. ie if a site doesn't exist when the browser starts
you get a not found error. Even if the DNS is subsequently changed IE thinks
it doesn't! Only MS could do this kind of silliness.
-
H
son to use
Linux on the desktop in my organisation ,running NT under vmware! That does
connect OK (My current IP is 194.128.22.147). After what I've read about
IE5.5, I'm not changing to it just yet.
-
Happy new Millennium - http://www.rog.nmm.ac.uk/mill/index.htm
John Airey
Internet Systems Su
ificate is written for. is
> there a workaround
> for that too? :)
>
You could use a "starred" cert to get around this for most sensible browsers
(not IE of course). We have one anyway, so I could try this out myself and
mail the list the result.
-
Happy new Millennium -
globalsign.net/en/request/server/
>
> Unless the words "175 Euro" mean "free" in English?
>
> Ray
>
At the current rate of decline of the Euro, they'll be paying us to take
them soon.
-
Happy new Millennium - http://www.rog.nmm.ac.uk/mill/index.htm
John Airey
I
'll need an IP address for each
standard SSL server.
You can contact your local Thawte representative who should be happy to help
you. Contact details for Germany are at
https://www.thawte.com/cgi/server/reps.exe?city=Ilmenau
-
Happy new Millennium - http://www.rog.nmm.ac.uk/mill/index.ht
hout a
password prompt. If you want everyone to have to login, remove the third
line.
You may be getting a second prompt because your "AuthName" field doesn't
match for both directories. Without seeing your .htaccess files it's hard to
say.
-
Happy new Millennium - http://www.rog.
second one though!
-
Happy new Millennium - http://www.rog.nmm.ac.uk/mill/index.htm
John Airey
Internet Systems Support Officer, ITCSD, Royal National Institute for the
Blind,
Bakewell Road, Peterborough PE2 6XU,
Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED]
___
I am useing:
openssl-0.9.6
mod_ssl-2.7.1-1.3.14
apache_1.3.14
I used make certificate and created a certificate; however, it only works
from netscape, not IE.
I tried it on a machine that had both IE and netscape. It only worked on
netscape.
When you go to the secured site via IE it tells you it i
;t think there is anyway to compile apache on the beta workstation.
see http://www.apple.com/macosx/server for info.
but I do not have access to a MacOS X server to help
with the question though.
later
John
begin:vcard
n:Ott;John
tel;work:202 687 8928
x-mozilla-html:FALSE
org:Georgetown Univers
lready told me
about the open source Linux driver, which apparently is part of openssl now
(or will be part of Openssl 0.9.7). I'm recompiling Openssl now to be able
to use the card.
-
Happy new Millennium - http://www.rog.nmm.ac.uk/mill/index.htm
John Airey
Internet Systems Support Officer
1 - 100 of 530 matches
Mail list logo
