We have a setup where we have to use MIL CAC's to access our site. It
currently works with SSLVerifyClient require and SSLVerifyDepth 10, but
we want to limit what the users see to just of the certs that is
presented. We tried changing the VerifyDepth to 1 and removed all the
non-email certs in t
Hello Saikiran,
First of all, thanks for asking for help on this.
Many other users may also be having difficulty with these issues.
But one thing to keep in mind, "suggest a fix immediately" is not
something that should be expected of a group of open source volunteers.
The first thing that I
You are missing intermediate certificate i.e, CA certificate.
You should add it after below lines
SSLCertificateFile/etc/apache2/ssl/apache.crt
SSLCertificateKeyFile /etc/apache2/ssl/apache.key
In ssl.conf you will find
Server Certificate Chain:
Certificate Authori
compile with JK connector
Best Regards
Saikiran M
DO BUSINESS BETTER
CONSULTING | SYSTEM INTEGRATION | BUSINESS PROCESS SERVICES
-Original Message-
From: Stéphane Laurencelle [mailto:stephane.laurence...@momentum-tech.ca]
Sent: Tuesday, February 28, 2017 9:53 PM
To: users@
Hi,
We are using below header to fix the vulnerabilities.
Header set Content-Security-Policy "default-src 'none'; script-src 'self';
connect-src 'self'; img-src 'self'; style-src 'self';"
But after that application content is getting blocked while accessing it
through browser.
We have given
Hi again. Is there any way I can get help on my problem? I am pretty
desperate -- I have shared hundreds of links and they are all no good
till I get this working again.
On Wed, 03 May 2017 09:08:35 -0400,
Daniel wrote:
>
> [1 ]
> [2 ]
> Perhaps you should also add how you are configuring htt
Sorry, haven't configured it this way; probably someone who did will
help. I can only advise you to look into SSLProxyMachineCertificatePath,
maybe you could use that.
--
With Best Regards,
Marat Khalili
On 04/05/17 14:54, Markus Gausling wrote:
Thanks for response.
Maybe I did not make it
below is the details of error log file
[Thu May 04 07:35:01.892795 2017] [ssl:warn] [pid 15336:tid
140037655033728] AH01906: 172.19.18.238:443:0 server certificate is a CA
certificate (BasicConstraints: CA == TRUE !?)
[Thu May 04 07:35:01.892876 2017] [mpm_event:notice] [pid 15336:tid
140037655033
Thanks for response.
Maybe I did not make it clear but I need to have the certificates for the
authentication between HTTP Proxy and WebServer. So HTTP Proxy shall
authenticate WebServer and vice versa with the client certificate and
the secret key.
The clients that use the HTTP Proxy shall not b
Daniel, I never heard back from you about how to change the config to
work with fcgi -- I would really like to get my server working again
and nothing I do, makes any difference, I always get the timeout and
the 500 response, so I still need some help.
Thanks in advance for any suggestions.
On We
You configure certificates of your proxy server exactly the same way as
for web server, using SSLCertificateFile, SSLCertificateKeyFile and
possibly SSLCertificateChainFile. Most likely you don't need
SSLProxyMachineCertificateFile (it configures _client_ certificate of
your server before other
You are using 2.4.x better stick to 2.4 directives.
Remove all references to Order/Allow/Deny/Satisfy, stick to Require
directives only.
Also, default behaviour in 2.4 is like "Satisfy any" so it seems you don't
need to specify Require any or anything like that in this case, and If you
are alread
At first sight there is no syntax error. Can you try to describe what error
you get and paste related error.log entries?
2017-05-04 9:30 GMT+02:00 Keerthi Narayan :
> Hi All,
>
> I am trying to implement HTTPS to my local server(apache2) and below is
> configuration file. -UBUNTU SERVER
>
>
Check your CUPS configuration , i think by default only allows access from
localhost to it’s web admin page
From: Luiz Guilherme Nunes Fernandes [mailto:narutospi...@gmail.com]
Sent: Wednesday, May 3, 2017 8:33 PM
To: users@httpd.apache.org
Subject: [users@httpd] Error in log, Idk p
Hi All,
I am trying to implement HTTPS to my local server(apache2) and below is
configuration file. -UBUNTU SERVER
ServerAdmin user@localhost
ServerName x.x.x.x
ServerAlias www.x.x.x.x
DocumentRoot /var/www/html
15 matches
Mail list logo