RE: Some problems with Virtual Host setup and SSL (UNCLASSIFIED)

2007-08-20 Thread Victor, Dwight P CTR DISA PAC
ot;admin.domain." "I would also redirect the web pages of a software running on localhost:3000 (on the server) to https://admin.server/ntop/"; Read up on the use of the mod_rewrite module: For Apache 1.3 => http://httpd.apache.org/docs/1.3/mod/mod_rewrite.html For Apache 2 =&g

RE: SSLCACertificatePath directive (UNCLASSIFIED)

2007-08-08 Thread Victor, Dwight P CTR DISA PAC
wight Victor, CISSP (Contractor) DISA-PAC EMSS Gateway Hawaii EMAIL: [EMAIL PROTECTED] TEL: (808) 653-3677 ext 229 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Arsen Hayrapetyan Sent: Wednesday, August 08, 2007 2:26 AM To: modssl-users@modssl.org Su

RE: OCSP? (UNCLASSIFIED)

2006-10-12 Thread Victor, Dwight P CTR DISA PAC
Classification: UNCLASSIFIED Caveats: NONE Thank you François! --- Dwight Victor, CISSP (Contractor) TEL: (808) 653-3677 ext 229 -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 11, 2006 10:14 PM To: modssl-users@modssl.org Subject: Re

RE: OCSP? (UNCLASSIFIED)

2006-10-11 Thread Victor, Dwight P CTR DISA PAC
been reading a bit about mod_nss (http://directory.fedora.redhat.com/wiki/Mod_nss). This module sounds interesting, but it isn't supported on HP-UX. I'll have to give it a try and I'll let the list know the results (if I can find some time to play with it). Thanks again, D

OCSP? (UNCLASSIFIED)

2006-05-17 Thread Victor, Dwight P CTR DISA PAC
be appreciated. Best Regards, Dwight... --- Dwight Victor, CISSP (Contractor) Systems Administrator / Webmaster General Dynamics C4 Systems EMAIL: [EMAIL PROTECTED] TEL: (808) 653-3677 ext 229 Classification: UNCLASSIFIED Caveats: NONE smime.p7s Description: S/MIME cryptographic

RE: CRL Checking Uses Excessive Memory

2006-04-21 Thread Victor, Dwight P CTR DISA PAC
Hi Rob, I also work for the DoD and am using the same CRLs as you (downloaded and converted on a daily basis). We're running a Linux webserver with a single 1.8Ghz Celeron, 512MB of RAM, and 1GB of swap. I haven't noticed any memory issues when checking CRLs. My Apache server starts multiple ch

RE: CRL Checking Uses Excessive Memory

2006-04-21 Thread Victor, Dwight P CTR DISA PAC
Hi Phil, As far as I know, nothing that Rob mentioned is classified...especially since he is not naming systems by name or address. The fact that the DoD uses certificates is no secret...there's been many writeups in the various trade magazines regarding the DoD's push to PKI. Dwight... -Or

[OFF-TOPIC] Apache 2 + SSL Binaries for Windows

2002-10-16 Thread Victor Medina
! __ Victor Medina M   -  Route Learning Web Designer and Senior Java Programmer Real Business Solutions, Inc. phone: 58245-5646677 EXT: 269 cellphone: 0416-8494395 e-mail: [EMAIL PROTECTED] web: http://unitec.edu.ve usuario linux: #145671 __

Apache 2.0.40 and OpenSSL

2002-10-05 Thread Medina Malpica Victor
forge project but haven't upload the latest release. (sourceforge.net/projects/ikirux) The latest binary are here: ftp://route.unitec.edu.ve/VictorMedina/IkiruxProject/ FileNamer: IKIRUX_WSP_Pro1Beta4_ENG.zip Victor Medina PS: I would really apreaciate some feedback on this, bugs, etc

RE: Windows binaries for Apache

2002-09-28 Thread Medina Malpica Victor
Title: RE: Windows binaries for Apache  Hi guys! I did mor or less the same, but I added and installer, my copy comes with the apache 2.0.40, openssl0.9.6g, php 4.2.3 and mysql 4 The installer can preconfigure everything Now you guys two distintc setups one with apache 1.3 (provided by hunt

Re: 2.0.36 + mod-ssl + Win2k = Easy Money

2002-06-11 Thread Victor Medina
Most probably you haven´t add path to the ssl dll´s or lib inside VS, go to tools\configure\directories and add the path to the include and bin folders of your OpenSSL installation this should work just fine Best Regards Victor Medina Universidad Tecnologica del Centro Valencia-Venezuela

Re: 2.0.36 + mod-ssl + Win2k = Easy Money

2002-06-08 Thread Victor Medina
Hi there! I can provide Apache binaries with mod_ssl included and zlib (dll's and lib) with no problems, just contact me via my private mail to tell you where to download it, if you haven't done taht yet from any member of the list Victor Medina At 12:39 PM 6/9/2002 +1200, you wro

Re: MM and EAPI

2000-11-06 Thread Victor
Thanks for your help. I will look in the archives (should've done this before though). Victor __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [

MM and EAPI

2000-11-03 Thread Victor
Hi, I wanted to find out, if the MM lib is optional for Mod-SSL, what exactly does it add? Is Mod-SSL with MM more stable then the one without it? Faster? What is the -DEAPI switch. I've compiled Apache with MM and Mod-SSL and now I get a warning that mod_jserv should be recompiled with -DEAPI sw

Re: CRLs in Mod_SSL

2000-09-15 Thread Victor
n the cron (if you are on unix). On windows, I am not sure if there is a cron equivalent, but There are scheduling services, so you might be able to use them to do a graceful restart of apache every 3 or 6 hours (or however often you need to refresh the list). HTH Victor Dag Legernæs wrote: > H

Re: mod_ssl/Apache https problem

2000-09-15 Thread Victor
of the VirtualHost is set and that it is set to allow from all. HTH Victor "Pieter.Donche" wrote: > Hi, > > I set up mod_ssl-2.6.6-1.3.12 for Apache 1.2.12 on Sun/Solaris2.6 (with > built-in PHP4.0 and ApacheJServ-1.1.2), made a self-signed certificate > (make certificate

Re: [PATCH] [BugDB] Segfault on graceful restart (PR#434)

2000-08-01 Thread Victor
Was this issue fixed/addressed? David Rees wrote: > Ralf, > > We've found a pretty significant bug in the mod_ssl 2.6.5, and I've created > a patch for it. This is affecting quite a large number of users (anyone who > builds mod_ssl statically and trys to do a restart or graceful). > > Please c

Re: [BugDB] Segfault on graceful restart (PR#434)

2000-07-26 Thread Victor
ris 2.7 (Apache 1.3.12 + PHP 4.0.1pl2 + ModSSL 2.6.5). I don't think I have the mm lib installed, but I don't use any DSO modules, so it should not matter as I understand it. Victor Mads Toftum wrote: > Could you just check one more thing for me - what exatly gets into the > error l

Re: [BugDB] Segfault on graceful restart (PR#434)

2000-07-26 Thread Victor
r the backtrace I posted, but it didn't seem very helpful to anyone. I can generate it again (probably). Well, I am going to try truss again and see if it will accept the SIGHUP Thanks for the help Victor __

Re: [BugDB] Segfault on graceful restart (PR#434)

2000-07-26 Thread Victor
How can you truss the running apache instance? I am having the same issue (apache dumps core and crashes on restarts when compiled with Mod-SSL) Did anyone find any solution or cause for this behavior? I posted my backtrace, but noone was able to suggest anything to me. Just curious if there was

Re: verisign certificate installation

2000-07-25 Thread Victor
Sorry, disregard that. I thought I was in the Apache-SSL forum. I don't think Mod-SSL requires these directives. Never mind. Victor wrote: > Check to make sure that the global SSL setup has these directives > > SSLVerifyClient 0 > SSLVerifyDepth 10 > > Also make

Re: verisign certificate installation

2000-07-25 Thread Victor
Check to make sure that the global SSL setup has these directives SSLVerifyClient 0 SSLVerifyDepth 10 Also make sure that you can ping www.verisign.com. HTH, Victor Myint Myint Moe wrote: > Hi, > > I have installed verisign certificate on our web server by using two > dir

Re: Apache MOD_SSL and OpenSSL Error

2000-07-20 Thread Victor
I am not sure, but most probably you don't have enough random info. What you need to do is make sure you run this command from you home directory (or directory to which you have read/write perms because the command generates .rnd file which holds some random information). /path-to-openssl-binary/

Re: Problem with Apache

2000-07-20 Thread Victor
lso added > that when recompiling and I no longer have the restart coredump. > Dana > > On Wed, 19 Jul 2000, Victor wrote: > > Well, anyone have any clue as to why this crashing might occur? Here is > > the backtrace again, just in case you didn't see it (I kind of messed

Re: Problem with Apache

2000-07-19 Thread Victor
argv=0xffbefb5c) at http_main.c:5092 (gdb) What is SSL_CTX_ctrl() ? Can some of the settings influence that function? Any help appreciated > - -Original Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Victor > Sent: July 18, 2000 3:05 PM > To: [EMAIL

Re: Problem with Apache

2000-07-19 Thread Victor
Message- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Victor > Sent: July 18, 2000 3:05 PM > To: [EMAIL PROTECTED] > Subject: Problem with Apache > > I have apache 1.3.12 + PHP 4.0.1pl2 + JServ 1.1.2 + ModSSL (latest). > When I start apache, it runs

Re: Problem with Apache

2000-07-19 Thread Victor
:298 #3 0x152350 in ap_init_modules (p=0x2ca1d0, s=0x2ca1f8) at http_config.c:1568 #4 0x1607d4 in standalone_main (argc=4, argv=0xffbefa94) at http_main.c:4719 #5 0x161508 in main (argc=4, argv=0xffbefa94) at http_main.c:5092 (gdb) Victor wrote: > Craig Skelton wrote: > > > -BEGI

Re: Problem with Apache

2000-07-19 Thread Victor
ine doing wierd stuff. > > Cheers, > Craig Skelton > /* > ___ _ > ( \ (_) | | > ) ) _ _ | | ___ ___ > | __ ( / ___) |/ || |/ _ |/ _ )/___)/ ___) _ \|\ > | |__) ) | | ( (_| ( ( | ( (/ /|___ ( (__| |_| | | | | > |__/|_| |_|\|\_|| |\|___(_))___/|_|_|_| > (_| > > */ > > - -Original Message- > From: [EMAIL PROTECTED] > [mailto:

Problem with Apache

2000-07-18 Thread Victor
I have apache 1.3.12 + PHP 4.0.1pl2 + JServ 1.1.2 + ModSSL (latest). When I start apache, it runs fine, but when I restart it (-HUP), it dumps core and quits. Any ideas ? Thanks Any suggestions welcome __ Apache Interface to Ope

PHP and SSL authentication

2000-06-02 Thread Victor STANESCU
If some user authenticates by a key, using a simple script like the classical printenv in apache, i can see its name in the environment variable SSL_CLIENT_S_DN_CN. The problem is that using php, this variable is not set. How can i know the name of the user that authenticated itself by a ssl key,

Re: Urgent: remove password from server cert?

2000-06-01 Thread Victor STANESCU
First question: Is there any logical reason to reboot every week? If you are speaking a real, production-environment server, it is stupid to do such a thing.. It should have months or years of uptime.. The only excuse for a reboot can be: - hardware upgrade / failure - operating system upgrade /

IE 5 is not accepting certificates

2000-05-27 Thread Victor STANESCU
After installing the mod_ssl package, i got the following problem: certificates that i created are accepted without any problem by the Netscape Navigator, but not by MSIE. I am creating the keys with the following script (which is a combination of lines from the F.A.Q and cca.sh. I needed to use

Re: mod_ssl in fronend-backend Apache configuration

2000-02-02 Thread Khimenko Victor
1-Feb-00 13:11 you wrote: > I saw some discussions about configuration of "lightweight" > mod_proxy+mod_ssl server and mod_perl server. > But, sorry, I can't call mod_proxy+mod_ssl "light" server. Mod_ssl adds a 1 > Meg to size of process. Who cares ? 1MiB or 20MiBs - no matter. It's just shared

Re: [BugDB] gunzip (PR#261)

1999-08-03 Thread Khimenko Victor
3-Aug-99 23:15 you wrote: >> Either your gzip is broken or (what I think is more true) you downloaded >> incorrectly. Perhaps via FTP but without Binary mode or via HTTP and your > If you downloaded via http/netscape, try rename the file to {file}.gz > and then gunzip it ... My netscape messes t

Re: mod_ssl for apachw 1.2.6?

1999-08-03 Thread Khimenko Victor
3-Aug-99 22:37 you wrote: > "Holdich, Kristian" wrote: >> >> why don't you build a 1.3.6 apache with mod_ssl and mod_proxy / mod_rewrite, >> run it on port 80 and proxy the connection to the old version of apache? >> This works nicely for us. >> >> Kristian > how's the speed with this setup? i fo

Re: Possible FAQ?

1999-08-01 Thread Khimenko Victor
30-Jul-99 18:29 you wrote: > First, I apologize if this is a FAQ, I did a search on the archive > but didn't find anything useful. > Here's my setup: > RedHat 6.0 with all updates > apache-1.3.6-7 rpm > I've downloaded and compiled openssl-0.9.3a > I've also downloaded modssl-2.3.10-1.3.6 >

Re: mutex ipc semaphore

1999-07-29 Thread Khimenko Victor
28-Jul-99 13:14 you wrote: > On Wed, Jul 28, 1999, Simon Weijgers wrote: >> I can't seem to find a configure option to enable ipc semaphore support >> in modssl. Does this mean it isn't stable yet? >>From the user manual under "SSLMutex": > (http://www.modssl.org/docs/2.3/ssl_reference.html) >

RE: SSL variables running APACHE on Windows NT 4.0

1999-07-23 Thread Khimenko Victor
23-Jul-99 09:03 you wrote: > Hi Ralf, > it's me again. I don't understand the use of ap_hook_use and how it would > solve my problem. In my modules "URI to filename translation" phase I'd like > to call the ssl's module handler "ssl_hook_fixup" which is setting up all > SSL variables so the would

Re: [BugDB] Portability problem (flex) (PR#214)

1999-07-23 Thread Khimenko Victor
23-Jul-99 09:31 you wrote: > Full_Name: Laurent FAILLIE > Version: mod_ssl-2.3.6-1.3.6 > OS: HP-UX 10.20 > Submission from: gk-fr2.michelin.com (195.115.130.37) > When I try to compile mod_ssl-2.3.6-1.3.6 on my HP-UX 10.20 box, > the compilation fail because some files (like ssl_expr_yy) needs f

Re: Can I use RSA algorithms in Canada for mod_ssl?

1999-07-23 Thread Khimenko Victor
22-Jul-99 13:04 you wrote: > I've been searching for some source of information about this... > I would like to be able to use OpenSSL + mod_ssl + Apache in order to > produce a secure web server; for a variety of reasons it would be very > nice if I could have one httpd serving both http and htt

Re: [BugDB] Compiling mod_ssl.c problem (PR#212)

1999-07-23 Thread Khimenko Victor
22-Jul-99 20:35 you wrote: > Full_Name: Marco Teunissen van Manen > Version: 2.3.6 > OS: Linux (Slackware 3.5) > Submission from: n16152.telekabel.nl (212.142.16.152) > After configuring and setting up mod_ssl for module use with apache 1.3.6, > I got a message stating that an error was detected

Re: modssl on NT

1999-07-23 Thread Khimenko Victor
22-Jul-99 16:41 you wrote: > Hi, > I just want to ask whether we can secure apache web server on NT using > mod-ssl and openssl. Are the installations steps given fr win32 applicable > for NT also. If not can any one give me the outline of the steps or any > website from where i can follow the st

Re: Apache source (and OpenSSL)

1999-07-21 Thread Khimenko Victor
19-Jul-99 08:57 you wrote: > Hi, answering my own question.. had thought that mod_ssl would would use my > already intalled apache but found I needed to dl and unpack a fresh copy > for mod_ssl to work with. > Now can't find the source tree for OpenSSl, even though the entire > directory in right

Re: compile error in :mod_ssl-2.3.6-1.3.6

1999-07-21 Thread Khimenko Victor
19-Jul-99 20:52 you wrote: > well my configuration: > linux-2.2.10 > pgcc-1.1.3-3mdk > openssl-0.9.3a-3 > Perl 5.005.03 > What I see: ===>> src/modules/ssl > gcc -c -I../../os/unix -I../../include -DLINUX=2 -DMOD_SSL=203106 > -DUSE_HSREGEX -DEAPI `../../apaci` -DSSL_COMPAT -I

Re: Apache just hanging with SSL - SOLVED!!!

1999-07-16 Thread Khimenko Victor
16-Jul-99 08:17 you wrote: > Holger Reif wrote: >> >> Has the ssl_enginge_log told you that all servers have been configured >> already? Are you perhaps using /dev/random and temp key generation is >> somehow slowly? > YES! THAT WAS IT!!! > I really thank you for pointing me to this! But why did

Re: Apache just hanging with SSL - SOLVED!!!

1999-07-16 Thread Khimenko Victor
16-Jul-99 11:23 you wrote: > On Fri, Jul 16, 1999, Jens Leuschner wrote: >> > Has the ssl_enginge_log told you that all servers have been configured >> > already? Are you perhaps using /dev/random and temp key generation is >> > somehow slowly? >> >> YES! THAT WAS IT!!! >> I really thank you for

Re: Cannot load /usr/lib/apache/libssl.so

1999-07-14 Thread Khimenko Victor
14-Jul-99 15:31 you wrote: > Le Wed, 14 Jul 1999, vous avez écrit : >> On Wed, Jul 14, 1999, Nick wrote: >> >> > Hi every body >> > I'm new to this list. and to SSL >> > I have probleme starting apache >> > - >> > the probleme is: >> > [root@xover conf]# /etc/rc.d/init.d/httpd start >>

Re: [BugDB] Permission denied for session cache dbm files (PR#200)

1999-07-14 Thread Khimenko Victor
14-Jul-99 17:55 you wrote: > On Tue, Jul 06, 1999, [EMAIL PROTECTED] wrote: >> We're running Debian Linux (kernel 2.2.7, glibc 2.1), apache 1.3.6 & mod_ssl >> 2.3.5. >> >> Unless we manually chown the ssl_scache.dir and ssl_scache.pag files, we >> get: >> >> Can't open SSLSessionCache DBM file fo

Re: Permission.

1999-07-13 Thread Khimenko Victor
12-Jul-99 11:30 you wrote: > So what (besides using shared memory) is the solution for other distros > using Glibc 2.1 and building mod_ssl from source? In fact mod_ssl will work with GLibC 2.1: since the only thing from used in ndbm.h is definition of type "DB" and the only way this type is use

Re: Question on MM Shared Memory library

1999-07-13 Thread Khimenko Victor
12-Jul-99 15:36 you wrote: > On Mon, Jul 12, 1999, Jeffrey Burgoyne wrote: >> Any idea of what performance gain to expect? We get about 15000 real hits >> a day, about 6 total (including graphics). About 10% of those are SSL. >> I need to justify why we want to make the change to the web serv

Re: modssl, installation problem.

1999-07-13 Thread Khimenko Victor
12-Jul-99 19:25 you wrote: > Hi, I've already installed modssl with tar.gz package, but, > some others modules cause problemes. Now, I have to install > mod_ssl on a rpm_based apache. It's not possible. End of story. > I can't uninstall everything and redo all from the beginning. > I must instal

Re: Question on MM Shared Memory library

1999-07-12 Thread Khimenko Victor
In <[EMAIL PROTECTED]> Jeffrey Burgoyne ([EMAIL PROTECTED]) wrote: JB> On Mon, 12 Jul 1999, Khimenko Victor wrote: >> 12-Jul-99 08:13 you wrote: >> >> > After experienceing some "brownouts" in Stronghold SSL, I changed our web >> > serv

Re: Question on MM Shared Memory library

1999-07-12 Thread Khimenko Victor
12-Jul-99 08:13 you wrote: > After experienceing some "brownouts" in Stronghold SSL, I changed our web > server to modssl last week. We saw a huge increase in performance (of > course, the brownouts really dragged down the stats I expect) in the range > of 50 to 80 percent. > Since our site is a

Re: Configuration question: SSLRequire(SSL), how to *require* use of SSL

1999-07-12 Thread Khimenko Victor
11-Jul-99 22:51 you wrote: > Dear List Members, > We have successfully installed Apache 1.3.6 with openssl 0.9.3a, and mod_ssl > 2.3.3-1.3.6. We are using a httpd.conf file little changed from the one > created by the installation. Having experimented, read the mail list archives, > and read th

Re: Perl Script to proccess Netscape Client and Microsoft certificate Request

1999-07-09 Thread Khimenko Victor
9-Jul-99 14:03 you wrote: > I sent this out with no response. Can some one comment? > Am looking for some Perl CGI script that can proccess Netscape and > Microsoft Clients Certificate Request Automatiquely for mod_ssl-2.3.5 > + openssl_0_9_3a. The scrript must completely automate the process, >

RE: Permission.

1999-07-09 Thread Khimenko Victor
9-Jul-99 16:06 you wrote: > There was a discussion about DBM extension/permission under > GLIBC 2.1 some times ago. In fact even attached patch is not correct :-/ Since you can not just "#include " and be happy ... will include instead of so some defines still will be screwed up unless you are

Re: Does mod_ssl require flex to compile?

1999-07-09 Thread Khimenko Victor
8-Jul-99 13:32 you wrote: > I'm trying to compile mod_ssl 2.3.5 for Apache 1.3.6 on AIX 4.3 but get > stuck at the following: > flex -Pssl_expr_yy -s -B ssl_expr_scan.l > make: flex: Command not found > make: *** [ssl_expr_scan.c] Error 127 > I didn't notice flex being a prerequisite in the INSTA

Re: different certs for v. domains

1999-07-09 Thread Khimenko Victor
8-Jul-99 15:20 you wrote: > call this a stupid question: > i have installed apache 1.3.6 with mod_ssl 2.3.5 and i am using OpenSSL > 0.9.3a. > i am unclear of how to have a different certificate for each virtual > domain. i am able to assign a certificate, but that certificate is the > same for

Re: Permission.

1999-07-09 Thread Khimenko Victor
8-Jul-99 09:40 you wrote: > Hello, > I've been playing around with mod-ssl. I wonder about the following > entries in the general error.log: > [Thu Jul 8 09:12:05 1999] [error] mod_ssl: Cannot open SSLSessionCache > DBM file `/var/run/ssl.dbm' for writing (store) (System error follows) > [Thu

RE: SMP machine causes apache to segfault after hitting SSL server.

1999-07-07 Thread Khimenko Victor
6-Jul-99 13:10 you wrote: > Well I have tried just about everything. I am now just trying to get Apache > 1.3.6, mod_ssl 2.3.5, and OpenSSL working. Basically it seems to work > somewhat during the first request by returning some or sometimes all the > data requested by the browser. I have trie

Re: SSL as Module? (like mod_php3)

1999-07-06 Thread Khimenko Victor
5-Jul-99 10:20 you wrote: > Hello! > I want to install the module for the "Sercure Socket Layer". I have an > apache www-server and i want to install a module. The php3 module was easy > to install as an module. But the module for ssl is realy hard. Yes, it should be :-)) Blame US goverment, not

Re: inactive mod_ssl module may crash server-status

1999-07-06 Thread Khimenko Victor
5-Jul-99 13:28 you wrote: > I built apache_1.3.6/mod_perl-1.20/mod_ssl-2.3.5-1.3.6/openssl-0.9.3a > for Solaris 2.5.1. > When I start the server without -DSSL, any children serving location > /server-status, configured with > ExtendedStatus On > > SetHandler server-status > Order deny,a

Re: accepting/ installing certificates

1999-07-02 Thread Khimenko Victor
1-Jul-99 15:14 you wrote: > Hi, > how do people build SSL systems which do not require the client to > accept certificates? E.g. if you want to order a book at www.amazon.de > and you are using the SSL connection, users do not have to accept the > certificates, although the certificate of the web

Re: [BugDB] PRIVATE: Setting up Apache Server with mod_ssl (PR#199)

1999-07-02 Thread Khimenko Victor
1-Jul-99 12:28 you wrote: > May I politely point out that Win2K is _BETA_. > If something's b0rken, go back to a known, stable platform. And then you'll stuck at the same step 6 :-)) No, beta status of W2K is not as issue here... > -dsp > -Original Message- > From: [EMAIL PROTECTED] <[

Re: apachectl startssl

1999-06-30 Thread Khimenko Victor
30-Jun-99 16:50 you wrote: > hi,all: > when I do "apachectl startssl" , it would ask me password, I think it will > be not convenient , anyway to pass this? Huh. Read message there :-) You have some keys encrypted. Just use unencrypted ones (make certificate usually asks you if you want encrypte

RE: Question on upgrading from Stronghold

1999-06-30 Thread Khimenko Victor
tion "Run-time configuration directives". > sincerely > sun > ------ > From: Khimenko Victor[SMTP:[EMAIL PROTECTED]] > Reply To: [EMAIL PROTECTED] > Sent: Wednesday, June 30, 1999 2:23 AM > To: [EMAIL PROTECTED]; [EMAIL PROTECTED] > Subject

Re: Question on upgrading from Stronghold

1999-06-29 Thread Khimenko Victor
29-Jun-99 12:15 you wrote: > I'm having a bit of problem with the authentication in changing over from > Stronghold to mod_ssl. In my new conf file I have added : > > AuthType Basic > AuthName Strategis > AuthDBMUserFile /rz6c/stronghold/pw/level1 > require valid-user > > which mod_ssl doesn

Re: Testing SSL server with Netscape

1999-05-31 Thread Khimenko Victor
30-May-99 23:31 you wrote: > I have installed the latest OpenSSL and ModSSL for Apache package. > The system works as for passing the security Certificate. When I then > go to view a secure Web page by typing the URL again with the https > directive I get a Secure Library error. > The error sta

Re: Creating a server certificate

1999-03-11 Thread Khimenko Victor
11-Mar-99 14:06 you wrote: > Sorry, but it's really nasty when people don't want to _READ_! > The gid-mkcert.sh script looks like: > | : > | ## ssleay ... get it from ftp://ftp.psy.uq.oz.au/pub/Crypto/SSL/ > | ## ca-fix ... get it from http://www.drh-consultancy.demon.co.uk/ca-fix.html > |

Re: config, compile, install help - php3, ssl, apache 1.3.x

1999-03-03 Thread Khimenko Victor
In <[EMAIL PROTECTED]> User Rick ([EMAIL PROTECTED]) wrote: >> 2-Mar-99 10:28 you wrote: >> > A note about php. If you choose to integrate database access for example to >> > mysql in the php install, then mysqld must be running for apache to start. >> > This is not very nice and means you must i

Re: config, compile, install help - php3, ssl, apache 1.3.x

1999-03-03 Thread Khimenko Victor
2-Mar-99 10:28 you wrote: > A note about php. If you choose to integrate database access for example to > mysql in the php install, then mysqld must be running for apache to start. > This is not very nice and means you must insure that upon a restart or cold > start that the database daemon is up

Re: config, compile, install help - php3, ssl, apache 1.3.x

1999-03-03 Thread Khimenko Victor
2-Mar-99 06:14 you wrote: >>This seems like a popular combination, perhaps it would be worth someone >>doing up an rpm combining these particular modules (but might be a lot of work >>keeping a package with all the latest versions after each upgrade). > That sounds like it'd be a nightmare for wh

Re: oops, info about system w/ segfaults

1999-02-09 Thread Khimenko Victor
8-Feb-99 12:31 you wrote: > Khimenko Victor wrote: >> >> If you use libc5-based Linux then try to use built-in SDBM ! >> At least Slackware 3.6 has broken DBM :-(( > Uh oh. Yeah, definately a problem here. Slack 3.6 it is. Excuse me for > not knowing exactly what a &

Re: oops, info about system w/ segfaults

1999-02-08 Thread Khimenko Victor
8-Feb-99 10:57 you wrote: > Linux 2.0.36 > SSLeay-0.9.0b > apache_1.3.4 > mod_ssl-2.2.2-1.3.4 > rsaref-2.0 > Anything else needed? Libc version :-)) I'm seen reports about hangs with my RPMs on libc5-based systems (recompiled, of course :-) but could not reproduce it with RedHat 5.2 or KSI-Linu

Re: httpsd -v

1999-02-04 Thread Khimenko Victor
4-Feb-99 04:24 you wrote: > On 04-Feb-99 Ralf S. Engelschall wrote: >> On Wed, Feb 03, 1999, Philp Gwyn wrote: >> >>> How does one find what version of mod_ssl is compiled into a given >>> httpsd? httpsd -v tells me the apache version, but not the >>> mod_ssl >>> version. >> >> Hmmm... yes, that

Re: EAPI vs mod_ssl

1999-02-04 Thread Khimenko Victor
3-Feb-99 16:56 you wrote: > On Tue, Feb 02, 1999, Ronan-Yann Lorin wrote: >> Wouldn't it be nice to have EAPI and mod_ssl available as two distincts >> distribs ? So we know when EAPI has been changed and we must rebuild apache >> binary, or when mod_ssl has been changed and we must rebuild mod_

Re: [BugDB] segmentation fault on slackware 3.6 (PR#97)

1999-01-31 Thread Khimenko Victor
31-Jan-99 00:33 you wrote: > Full_Name: Mario Medina > Version: 2.2.0-1.3.4 > OS: Linux 2.0.36 (slackware 3.6.0) ELF > Submission from: teccasa21.ccm.itesm.mx (148.241.166.21) > I compile and install all the files ok, i can access to a non-ssl page, but > when i try to acces to a https://machine

RE: apache-mod_ssl-1.3.4-2.1.8 RPMs

1999-01-25 Thread Khimenko Victor
25-Jan-99 15:02 you wrote: >> I just uploaded a version of apache-mod_ssl-1.3.4-2.1.8 >> to ftp://ftp.replay.com/pub/replay/incoming/ >> The directory layout is a hybrid between Apache and RedHat... >> > [GOMEZ Henri] Re-Hi, seems you like both mod_ssl and apache ssl > products. :-) >

RE: [BugDB] coldfusion compatability (PR#88)

1999-01-24 Thread Khimenko Victor
24-Jan-99 16:13 you wrote: > Hello Ashley, >> has anyone been able to get mod_coldfusion (from allaire.com) >> and apache 1.3 and mod_ssl work together? As far as I can tell >> problems are caused by both SSLeay and mod_coldfusion having >> identical symbols in it ... >> >> Any suggestions as how

Re: DSO situations and core dumps

1999-01-16 Thread Khimenko Victor
15-Jan-99 18:35 you wrote: > We've already recognized that on some not-such-smart platforms Apache+mod_ssl > can dump core under the DSO situation. I've already traced it down and the > problem has to do with the fact that Apache _reloads_ the DSOs at startup-time > and that some dangling referen

Re: Re[2]: Sooo many problems with Debian & mod_ssl !

1999-01-04 Thread Khimenko Victor
4-Jan-99 17:20 you wrote: > Thanks for your reply, > I'll then get the sources for apache 1.3.3 ;-) > But have to disagree with you about the solution you gave for the SSL_BASE > variable. Here is the problem: > (first, I wiped the test for the EAPI flag, otherwise, I cannot get further > ;-)

Re: Sooo many problems with Debian & mod_ssl !

1999-01-04 Thread Khimenko Victor
4-Jan-99 15:33 you wrote: > Hello, > I'm trying to isntall mod_ssl on my Debian Linux box, but I couldn't, > there are too many problems with debian packages: > I'm using (trying to ;-) mod_ssl-2.1.5_1.3.3.tar.gz, and the > apache_1.3.3-3, apache-dev, and apache-common debian packages. You coul

Re: DSO compile instructions

1999-01-02 Thread Khimenko Victor
2-Jan-99 16:59 you wrote: > On Sat, Jan 02, 1999, Achille M. Luongo wrote: >> I would like to compile or simply use a mod_ssl module under Linux >> (kernel 2.0.36) as a stand-alone DSO module for an apache 1.3.3 binary >> >> RPM package, but I didn't find istructions. >> Can anyone suggest me how

Re: DSO compile instructions

1999-01-02 Thread Khimenko Victor
2-Jan-99 15:59 you wrote: > Hi! > I would like to compile or simply use a mod_ssl module under Linux > (kernel 2.0.36) as a stand-alone DSO module for an apache 1.3.3 binary > RPM package, but I didn't find istructions. Just since such instrictions could not be written at all :-) > Can anyone s

Re: [BugDB] Function index in ssl_engine_vars.c not found! (PR#69)

1998-12-29 Thread Khimenko Victor
29-Dec-98 00:15 you wrote: > Full_Name: Christian Buysschaert > Version: 2.1.4-1.3.3 > OS: NT > Submission from: eagle.tvd.be (195.162.196.13) > I believe I followed the instruction correctly but I am unable > to compile Apache, more specifically ApacheModuleSSL.dll. > The error indicate he cou

Re: Question regarding user-authentication for a site like https:/www....

1998-12-12 Thread Khimenko Victor
12-Dec-98 10:16 you wrote: > On Fri, Dec 11, 1998, Bruce B. Platt wrote: >> I have a port 80, non-SSL site created for my family which has user >> authentication configured as follows in access.conf: >> >> AuthName "Restricted Access" >> AuthType Basic >> AuthUserFile /usr/local/apache/etc/athori

Re: Annc: NetBSD mod_ssl pkgs now available/updated

1998-12-04 Thread Khimenko Victor
3-Dec-98 19:19 you wrote: > Ops, seems like I was too slow or you too fast. Last weekend I've added full > APXS support to the distribution. I think this would make your life easier. > When you're interesting you can test my APXS support. I've still not comitted > it for mod_ssl 2.1.x because it's

Re: ANNOUNCE: 2.1b9-1.3.3 (2.1.0 to-be)

1998-11-17 Thread Khimenko Victor
17-Nov-98 13:47 you wrote: > On Tue, Nov 17, 1998, Khimenko Victor wrote: >> 17-Nov-98 11:37 you wrote: >> >> 2) in Makefile.nt you invoke mod_ssl's makefile with >> >> >> >> nmake /nologo CFG="mod_ssl - Win32 %LONG%" -f Makefile >&g

Re: ANNOUNCE: 2.1b9-1.3.3 (2.1.0 to-be)

1998-11-17 Thread Khimenko Victor
17-Nov-98 11:37 you wrote: >> 2) in Makefile.nt you invoke mod_ssl's makefile with >> >> nmake /nologo CFG="mod_ssl - Win32 %LONG%" -f Makefile >> nmake /nologo CFG="mod_ssl - Win32 %LONG%" -f Makefile clean >> ... >> >> The define CFG="mod_ssl - Win32 %LONG%" has nothing to do here. The >> other

Re: mod_ssl 2.1 User Manual (preview)

1998-11-15 Thread Khimenko Victor
14-Nov-98 15:01 you wrote: > The last days I spent a lot of time to create the new User Manual for the > forthcoming 2.1.0 release. The current state is that all chapters except for > Chapter 4 (Compatibility) are now finished (at least IMHO ;-). So you now can > have a preview under > http://

New hooks API, patch6

1998-11-14 Thread Khimenko Victor
Changes from patch4: return types and declined values support (API changed) Changes from patch5: use of 'inline' for C++ (API not changed) SYNOPSIS Main Setup: void ap_hook_init (void); void ap_hook_kill (void); Hook Configuration and Registration: ap_hook_define_client(h

New hooks API documentation

1998-11-13 Thread Khimenko Victor
/* * SYNOPSIS * *Main Setup: * void ap_hook_init (void); * void ap_hook_kill (void); * *Hook Configuration and Registration: * ap_hook_define_client(hook_name,hook_parameters,hook_call); * int ap_hook_configure_hook_name(ap_hook_mode modeid); * int ap_

Re: Hew hooks API. Second try

1998-11-12 Thread Khimenko Victor
12-Nov-98 08:48 you wrote: > On Thu, Nov 12, 1998 at 12:52:10AM +0300, Khimenko Victor wrote: >> No more hacks in mod_so. Instead all modules unregister hooks before unload. >> Also some slightly non portable defines (still ANSI compliant AFAIK) moved >> in few separ

Hew hooks API. Second try

1998-11-12 Thread Khimenko Victor
No more hacks in mod_so. Instead all modules unregister hooks before unload. Also some slightly non portable defines (still ANSI compliant AFAIK) moved in few separate defines in top of ap_hook.h and new ap_hook_define_global/ ap_hook_define_realize to make hooks more usable in multifiles client m

Re: New hooks API

1998-11-11 Thread Khimenko Victor
On Wed, 11 Nov 1998, Martin Kraemer wrote: > On Tue, Nov 10, 1998 at 08:03:54PM +0300, Khimenko Victor wrote: > > May be while Ralf is busy with documentation things someone could take a look > > on subj. This is just "working demo", but it's working enough to be

Re: mod_ssl 2.1b9 SNAP: please test

1998-11-10 Thread Khimenko Victor
In <[EMAIL PROTECTED]> [EMAIL PROTECTED] ([EMAIL PROTECTED]) wrote: r> In <[EMAIL PROTECTED]> Ralf S. Engelschall ([EMAIL PROTECTED]) wrote: RE>> Hello mod_ssl hackers, RE>> I've prepared the new mod_ssl distribution layout (actually I wrote new RE>> programs which generate it for me ;_), inco

Re: EAPI = bloatware ? Of I'm just confused ...

1998-11-09 Thread Khimenko Victor
8-Nov-98 12:03 you wrote: > On Sun, Nov 08, 1998, Khimenko Victor wrote: >> EAPI = bloatware ? Of I'm just confused ... > Not intentionally bloatware, of course. More the result of trying to > combine three major requirements: portability (full ANSI C compliant), > fu

EAPI = bloatware ? Of I'm just confused ...

1998-11-08 Thread Khimenko Victor
EAPI = bloatware ? Of I'm just confused ... After look on EAPI I'm could not understood why it's designed to be so bloat and slow. Why other (MUCH more simpler) design is unacceptable: #define hook_define(hook_name,hook_signature,hook_params)\ extern struct hook_struct_##hook_name {

Re: User Interface bug or fundamental SSL bug?

1998-11-05 Thread Khimenko Victor
On Wed, 4 Nov 1998, James wrote: > > Weird. I'm ready to got such question from dumb Winblows user but from > > Linux user... Unbeliveable :-(( > > I'm sorry you misunderstood. That was not a question so much as a > rhetorical question, a comment on the Navigator user interface. > Oops. > >

Re: Building mod_ssl without apache source?

1998-11-04 Thread Khimenko Victor
3-Nov-98 09:37 you wrote: > So far mod_ssl can only be built with apache sources. I've tanken a look at > mod_php3 and it can be built without the apache sources (just the header > files). Yes, but mod_php3 is HORRIBLE here. Right sample would be mod_perl 1.15 or 1.17 (mod_php3 does not use option

  1   2   >