RE: Apache SSL proxy to Weblogic fails

penssl.org [mailto:owner-openssl-us...@openssl.org] On Behalf Of Thulasi Goriparthi Sent: Tuesday, 23 September, 2014 03:20 To: openssl-users@openssl org Subject: Re: Apache SSL proxy to Weblogic fails On 19 September 2014 22:34, Stromas, Aaron mailto:aaron.stro...@rsa.com>> wrote: Greetings, I am l

Re: Apache SSL proxy to Weblogic fails

On 19 September 2014 22:34, Stromas, Aaron wrote: > Greetings, > > > > I am looking for help with a problem I've ran into a using > mod_proxy/mod_ssl. The Apache HTTP server on SLES 11 SP3 64 bit, OpenSSL > 1.0.1.f acts as SSL proxy to the Weblogic 10.3 running on Redhat. The > mod_ssl is confi

RE: Apache SSL proxy to Weblogic fails

Sent: Friday, 19 September, 2014 14:11 To: openssl-users@openssl.org Subject: Re: Apache SSL proxy to Weblogic fails Hi, Aaron... On 09/19/2014 01:04 PM, Stromas, Aaron wrote: > > Greetings, > > I am looking for help with a problem I've ran into a using > mod_proxy/mod

Re: Apache SSL proxy to Weblogic fails

Hi, Aaron... On 09/19/2014 01:04 PM, Stromas, Aaron wrote: Greetings, I am looking for help with a problem I've ran into a using mod_proxy/mod_ssl. The Apache HTTP server on SLES 11 SP3 64 bit, OpenSSL 1.0.1.f acts as SSL proxy to the Weblogic 10.3 running on Redhat. The mod_ssl is configu

Apache SSL proxy to Weblogic fails

Greetings, I am looking for help with a problem I've ran into a using mod_proxy/mod_ssl. The Apache HTTP server on SLES 11 SP3 64 bit, OpenSSL 1.0.1.f acts as SSL proxy to the Weblogic 10.3 running on Redhat. The mod_ssl is configured correctly - it works when proxying to SSL connections to no

The question about the Apache SSL

Hello, I have a question about the apache SSL,please help me. Thanks.(httpd-2.2.15-win32-x86-openssl-0.9.8m-r2.msi) Operation： 1、I made a SSL certification files by myself, and start the openssl s_server； OpenSSL> s_server -cert server.pem -key server_nokey.pem -accept -state -de

Apache SSL configuration issue

I have set up a CA chain with a CA and a subCA. The subCA is used to issue user certificates and also to issue certificate for the Apache httpd/opnessl/modssl configuration. I went ahead and created a private key for the Apache server using openssl. Then I created the csr file for using the priv

Apache/SSL prob.

I have HTTPS set up for my web server (Apache 1.3.33). Apache in windows server 2K crashes frequently with error:--[Thu Feb 10 10:37:26 2005] [crit] (10038)An operation was attempted on something that is not a socket: Parent: WSADuplicateSocket failed for socket 320.[Thu Feb 10 10:37

Re: WG: Apache SSL

On Wed, 27 Oct 2004, Thomas Anders wrote: Arne Ansper wrote: The one in Woody has dysfunctional session cache when used together with client authentication. Client cert makes the encoded session structure too big and it is not stored in cache. The original query said "Debian 3.1" which is Sarge,

Re: WG: Apache SSL

Arne Ansper wrote: The one in Woody has dysfunctional session cache when used together with client authentication. Client cert makes the encoded session structure too big and it is not stored in cache. The original query said "Debian 3.1" which is Sarge, not Woody. +Thomas -- Thomas Anders (thoma

Re: WG: Apache SSL

On Wed, 27 Oct 2004, Victor B. Wagner wrote: At least, libapache-mod-ssl package work for me without any problem. I've not tried apache-ssl, but it should be same quality. The one in Woody has dysfunctional session cache when used together with client authentication. Client cert make

Re: WG: Apache SSL

On 2004.10.22 at 19:11:23 +0200, Webmaster wrote: > >Greetings, > > > > > > > >try to compile Apache+ mod_ssl+openssl yourself? > Wrong idea. Debian provides quite useful packages. At least, libapache-mod-ssl package work for me without any p

WG: Apache SSL

Title: Apache SSL Greetings,       try to compile Apache+ mod_ssl+openssl yourself?   What the apache logs says? The log say's you if the cert ist loaded or not and when why not.   And dont forget:   http://www.sendmail.org/~ca/email/other/cagreg.html     Greetings St

Apache SSL

Title: Apache SSL I'm attempting to install Apache-ssl on Debian 3.1 but I can't seem to install a new certificate. I'm following the directions at http://www.lavrsen.dk/twiki/bin/view/Motion/SecureWebcamFeeds but after I finish creating and installing a new self-signed certif

Re: apache ssl handshake timeout on ie6 and windows 2000

I believe I have found the solution. Apparently, it was a bug introduced in SP1 and now fixed in SP4 for windows 2000: http://support.microsoft.com/default.aspx?kbid=305217 Thanks, -R R McIntosh wrote: Hello OpenSSL and ModSSL users, I am running apache-1.3.29, mod_ssl-2.8.16-1.3.29, and

apache ssl handshake timeout on ie6 and windows 2000

Hello OpenSSL and ModSSL users, I am running apache-1.3.29, mod_ssl-2.8.16-1.3.29, and openssl 0.9.7c. Users at a specific lan on the internet accessing our cgi application sometimes lock at some random place in our application. Once this happens, it will lock up again at the same page if the

RE: apache-ssl != 1.3.28 - why?

OK. I can understand the reasoning. The patch for 1.3.27 most likely will work with 1.3.28. There aren't big changes in the 1.3.28 distribution but you will need to examine the files changed and the files the Apache-ssl will change. I don't think the security patches affect the SSL area

RE: apache-ssl != 1.3.28 - why?

om: "Jon Barnett" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Date: Sun, 31 Aug 2003 14:15:59 +1000 Subject: RE: apache-ssl != 1.3.28 - why? > I might be way off the mark here, but can't you use mod_ssl? You can > get > it from www.modssl.org and it has the 1.3.28 s

RE: apache-ssl != 1.3.28 - why?

I might be way off the mark here, but can't you use mod_ssl? You can get it from www.modssl.org and it has the 1.3.28 support and is a DSO module. Or is there a specific reason you need apache-ssl? Best regards, JonB > -Original Message- > From: [EMAIL PROTECTED] >

apache-ssl != 1.3.28 - why?

Greetings, I was wondering why there isn't a patch for the 1.3.28 version of apache, that might be compatible with openssl v.0.97b. My big reason for the need for 1.3.28, is to add an additional module as a DSO. But unfortunately it requires 1.3.28 - I'm currently running 1.3.27. Is it possible to

RE: howto startup Apache SSL in batch mode

ILLIOT@;oracle.com] >Sent: Mittwoch, 13. November 2002 11:14 >To: [EMAIL PROTECTED] >Subject: howto startup Apache SSL in batch mode > > >Hi, >I would like to startup apache in batch mode. >when I launch the following command: >httpdsctl startssl >The script is asking me

RE: Apache+SSL Not working ---OpenSSL Error?

] [mailto:owner-openssl-users@;openssl.org] On Behalf Of Manoj Kithany Sent: Tuesday, November 12, 2002 3:19 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Apache+SSL Not working ---OpenSSL Error? Hi Tim: THANKS for your email. What is TEST SERVER Program? > >To make sure that this

Apache+SSL Not working ---OpenSSL Error?

Hi Tim: THANKS for your email. What is TEST SERVER Program? To make sure that this is an openssl issue, and not your apache configuration, or the hardware that you are using (I noticed the ssl_engine_log), try running the test server program that is with the openssl distribution. Regar

Re: Apache+SSL Not working ---OpenSSL Error?

To make sure that this is an openssl issue, and not your apache configuration, or the hardware that you are using (I noticed the ssl_engine_log), try running the test server program that is with the openssl distribution. Regards, Tim --- Manoj Kithany <[EMAIL PROTECTED]> wrote: > Hi Experts: > >

Re: Apache+SSL Not working ---OpenSSL Error?

Manoj Kithany wrote: > [12/Nov/2002 10:04:37 28132] [error] Init: Unable to read server certificate > from file /usr/local/ssl/bin/public.csr (OpenSSL library error follows) > [12/Nov/2002 10:04:37 28132] [error] OpenSSL: error:0D09F007:asn1 encoding > routines:d2i_X509:expecting an asn1 sequence

Apache+SSL Not working ---OpenSSL Error?

Hi Experts: I have Apache(with SSL) on my IBM AIX Box. I installed it using RPM. When I run my APACHE as ssl using: "./apachectl startssl" I get following error: -- # ./apachectl startssl ./apachectl startssl: httpd could not be started # --

Re: help, apache+ssl

Try this in your httpd.conf DocumentRoot "/var/www/html" Options Indexes Includes FollowSymLinks MultiViews AllowOverride All > Hi I am sorry for this message it does not belongs completely fr > this list but still people will be knowing here > I wanaa do something with openssl an

help, apache+ssl

Hi I am sorry for this message it does not belongs completely fr this list but still people will be knowing here I wanaa do something with openssl and ssl in my server but I am stucked in the first step I have a machine called jessus, a login called shalen I have installed apache, the organizati

Re: Running Apache/SSL and openSSL on Solaris 7

tions for me:    I already have Apache 1.3.20 installed and running  I would like to get APache/SSL also running, do I remove Apache 1.3.20 and redo the installation of Apache and SSL ??  Please help me out.    Thanks  Waleed  

Running Apache/SSL and openSSL on Solaris 7

  I need a document that states what should be installed first or if it does not matter to install APACHE then OPENSSL    Can you please answer these questions for me:    I already have Apache 1.3.20 installed and running  I would like to get APache/SSL also running, do I remove Apache

Question regarding installing Apache SSL on a Solaris Machine

Hi: We are trying to install the Apache SSL on a Solaris 2.6 machine. Our UNIX knowledge is not very good, and we are having problems understanding the installation instructions. We have the Apache-SSL readme file, which is attached below. The first few lines of the installation instructions

pb with apache-ssl

Hi to the ML, I got a big pb with apache-ssl (debian) It was running well, but now when I want to connect in https, the server ask me if I accept the certificat and after it give me the following message: the connection contained no data. What's on? Thank's. Regards

RE: Apache-SSL Installation questions

nday, November 05, 2001 5:09 PM To: [EMAIL PROTECTED] Subject: Apache-SSL Installation questions I am having some difficulty with the installation of the openssl v0.9.6b and openssl engine v0.9.6b. I have a Win NT 4.0 (sp 6a) Machine running Apache Web Server 1.3 and Jserver 1.0 and wish to inst

Re: (openssl-users) Weird Apache-SSL problem

lib{ssl,crypto}.so /et/httpd/lib/apache/ I personally would avoid this, because only knows what else depends o what's already there. - Link Apache-ssl against OpenSSL-0.9.6 libraries statically. For obvious reasons, I'd take the second choice. Less hassle that way. -- Richard

Re: (openssl-users) Weird Apache-SSL problem

From: Richard Levitte - VMS Whacker <[EMAIL PROTECTED]> >From: [EMAIL PROTECTED] > >support> I'm trying to get Apache-ssl 1.3.14 to build (from source) >and run dynamically >support> on RedHat 7.0. >support> >support> I built openssl-0.9.6 with: >s

Re: (openssl-users) Weird Apache-SSL problem

From: [EMAIL PROTECTED] support> I'm trying to get Apache-ssl 1.3.14 to build (from source) and run dynamically support> on RedHat 7.0. support> support> I built openssl-0.9.6 with: support> support> And get this when I check the Apache config: support> support>

Security Issues with Apache, SSL, IIS5

Hi, Can anyone tell me if there are security issues with Apache SSL IIS5, I was told before 'oohhh dont trust that mate' but given no basis for that, can someone settle the argument for me, is it safe? cheers Baj

Re: please help apache-ssl

I don´t know much about modssl, but If you set SSLVerifyClient to 1 you are telling the server to authenticate its clients (criptographically verify the client´s identity). An entitity (let´s say somebody connecting to your server) needs a certificate in order to be athenticated, but hardly any w

please help apache-ssl

Hello all i am new on this list. linux machine redhat 6.2. i compiled openssl-0.9.6. then patch and compiled apache-1.3.14 with no problems.   after that i have make certs with the following commands: cd /usr/local/ssl/private openssl genrsa -des3 -out MyCA.key openssl genrsa -des3 -out Serve

Re: [apache-ssl] Re: Certs: where to get them?

On Dec 28 Leland V. Lammert wrote: > 2) Purchase a cert from Equifax ($49US). Lowest cost for a cert acceptable > to most browsers. Or get a free one from GlobalSign; http://www.globalsign.net/prod/freeserver.cfm?ID=tnw89505 -- Rial Juan

Re: [apache-ssl] Questions about the "README.SSL" in apache_ssl package

Antai Ning wrote: > > I have serveral questions about the installation process of apache_ssl > described in README.SSL. > I put my questions just after each step in README.SSL > > - > > Installation > > >

Re: [apache-ssl] Where to get patch-2.5.tar.gz?

Antai Ning wrote: > > Hi there, > > When I run PixPatch from apache_1.3.12+ssl_1.41.tar, I got the following > message, > > wcars12f-85> FixPatch > Your version of patch is out-of-date. You need patch 2.1 or 2.5. > N.B. We mean the program called 'patch' needs an update, not that you > have the

RE: Apache+SSL

: [EMAIL PROTECTED] > Objet:Re: Apache+SSL > > On Wed, Jun 21, 2000 at 11:21:03AM +0200, Petr Zeman wrote: > > Hallo! > > Can you help me with my new problem with APACHE? > > I would like to install SSL into my APACHE. > > I downloaded source of A

Re: Apache+SSL

On Wed, Jun 21, 2000 at 11:21:03AM +0200, Petr Zeman wrote: > Hallo! > Can you help me with my new problem with APACHE? > I would like to install SSL into my APACHE. > I downloaded source of APACHE 1.3.12, mod_ssl-2.6.4.-1.3.12, openssl-0.9.5a, > complied it and install it (as is written in mod_ss

RE: Problem with Apache/SSL and IE.

: Tuesday, June 06, 2000 9:41 AM To: '[EMAIL PROTECTED]' Subject: RE: Problem with Apache/SSL and IE. This may be a known bug in IE. See http://www.microsoft.com/windows/ie/security/schannel.asp for more information. -Original Message- From: Asser Moustafa [mailto:[EMAIL PROTEC

RE: Problem with Apache/SSL and IE.

This may be a known bug in IE. See http://www.microsoft.com/windows/ie/security/schannel.asp for more information. -Original Message- From: Asser Moustafa [mailto:[EMAIL PROTECTED]] Sent: Monday, June 05, 2000 5:15 PM To: [EMAIL PROTECTED] Subject: Problem with Apache/SSL and IE. Yello

Problem with Apache/SSL and IE.

Yello again!   Not sure if this got to anyone the first time (I hadn't registered with the group yet).   I am running an Apache+mod_ssl+openssl webserver that uses a Verisign Global ID (128 bit/128 bit secret key).  Some Internet Explorer users with low cipher strengths (i.e. 40 bit or

Re: Error (Apache+SSL)

On Thu, 25 May 2000, Arun Venkataraman wrote: > Date: Thu, 25 May 2000 15:20:12 -0700 > From: Arun Venkataraman <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > Subject: Re: Error (Apache+SSL) > > >I have the following error: >

Re: Error (Apache+SSL)

ost likely, the key you used to create the server certificate request (csr) and the server key pointed to by the appropriate apache directive are not the same. You should check out the apache-ssl mailing list archives (www.apache-ssl.org)...I am sure you will find that helpful. Arun. "The on

Re: [apache-ssl] server not responfing

http://www.apache-ssl.org/#mod_ssl cheers, Adam samuel C wrote: > > Hi there.. I (like most humans) have some problems in my life.. I'm not > expecting you to help me solve all of them, but surely will do with this > one: > > I'm using > Linux RedHat6.1 > apache 1.3.12 >

Re: apache+ssl on solaris 2.6

Maybe you can go to www.openssl.org's FAQ for answers. Hazel On Sun, 9 Apr 2000 15:55:47 +0200 "goak" <[EMAIL PROTECTED]> wrote: > Hello to all, > > at first sorry for my bad english and ... am I to stupid? I wan't to > configure apache1.3.12 with openssl, php3 and mod_perl on a > UltraSpar

patch for jserv w/ apache-ssl

apologies for the open-ssl list for the repost. i want to make sure that the patch below is correct. a couple of months ago jean-luc rochat told me how to patch jserv to relay client digital certificates to servlets. yesterday, with help of ben laurie, i made jserv to do the same with apache-ssl

HOw to install a Verisign secure certificate with apache-ssl?

Anybody know how to install a secure server certificate from VeriSign using Apache-SSL? BillAnybody know how to install a secure server certificate from VeriSign using Apache-SSL? BillAnybody know how to install a secure server certificate from VeriSign using Apache-SSL? BillAnybody know

Re: Apache SSL side keeps thunkin out...help?

Dear List, I apologize for teh repeats. Apparently there was something wrong with Majordomo? *Grin* I sent 3 to the list, they never got sent out, with delay apparently, they have all made it. Anyhow, to clear a few things up. We are running RedHat 6.1, Apache 1.3.9+mod_ssl, and OpenSSL 0.9.4

Re: Apache SSL side keeps thunkin out...help?

On Mon, 24 Jan 2000, Aaron Gelner wrote: > Dear List, > > Since our initial date of receiving our SSL cert CA'd by Thawte, every > Sunday, Apache seemingly faults out on the Secured Socket Layer side, > thus causing not a connection refused to port 443, instead, a connection > reset error. We'v

Re: [apache-ssl] Trust problem with verisign certificate

DERMINIO, MARLENE wrote: > > >What is the URL of the offending server so we can take a look? > > https://mohost.moric.org/secret2.html > Interesting. My version of Netscape also complains. I think the problem may be that Verisign is now using a new intermediate CA which ends in one of the sta

Re: [apache-ssl] Trust problem with verisign certificate

Hmm...I hope I am not displaying gross ignorance here, but I am really confused by what I just saw. I was always under the impression that SSL clients looked at a few things in a signed certificate to be able to find the root CA that supposedly issued the cert, and that one of these things was Iss

Re: [apache-ssl] Trust problem with verisign certificate

>What is the URL of the offending server so we can take a look? https://mohost.moric.org/secret2.html Marlene Derminio Mohawk Regional Information Center Phone: (315) 361-5760Fax: (315) 361-5566 [EMAIL

Re: [apache-ssl] Trust problem with verisign certificate

DERMINIO, MARLENE wrote: > > Hello > > What did we miss? > > downloaded & installed > > apache 1.3.9 > appach-ssl 1.3.9+ssl_1_37 > openssl 0.9.4 > > on a AIX 4.3.2 box > > made it and tested... it worked > > did the openssl req > > sent the csr off the verisign > > got back a cert fr

Re: apache ssl problems

verPort. So perhaps you just have to remove it from your configfile? Try the mod_ssl homepage, it contains detailed info about every configuration option of mod_ssl, i don't think it differs that much from apache+ssl. (http://w

Server Certificate for Apache SSL (how do I)

Hi folks . I have installed OpenSSL 0.9.3a and Apache_SSL 3.6 and am confused on creating certificates for it . i have a server named panther.xxx.xx.xx but i have the Apache server named www.Tiaxxx.com which i would like reflected in the certificate issued for name, do i have to rename the s

Re: apache+ssl HOWTO?

On Wed, 26 May 1999, geoffrey wrote: > ... > this is the first apache+ssl server I have built; so, my knowledge > of ssl servers, and ssl in general, is very limited. Is there an > apache+ssl HOWTO, or a general primer on ssl servers? I would like to find > a source of info

apache+ssl HOWTO?

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Hi, this is the first apache+ssl server I have built; so, my knowledge of ssl servers, and ssl in general, is very limited. Is there an apache+ssl HOWTO, or a general primer on ssl servers? I would like to find a source of information on what

Re: Getting SSLV3 Rollback attacks on Apache-SSL

[EMAIL PROTECTED]: "Craig Southeren" <[EMAIL PROTECTED]>: > My Apache web server is generating the several of the following messages per > week in the error_log file: > error:0406406F:rsa routines:RSA_EAY_PRIVATE_DECRYPT:sslv3 rollback attack [...] > Is this something I should be worried about,

Getting SSLV3 Rollback attacks on Apache-SSL

To all: My Apache web server is generating the several of the following messages per week in the error_log file: error:0406406F:rsa routines:RSA_EAY_PRIVATE_DECRYPT:sslv3 rollback attack I've looked in both the OpenSSL and Apache-SSL lists for references to this message with no luck. Is

Re: Basic knowledge about Apache-SSL

open ssl is really an open list :-) (*no hard fealing*) > >Noch ein Hinweis in eigener Sache am Rande: >sollten Sie Interesse an Chipkarten-gestuetzter Verschluesselung, >Signatur oder Authentisierung haben (auch im Apache Kontext), >so koennen wir Ihnen auch weiter helfen, da wir im Rahmen eine

Re: Basic knowledge about Apache-SSL

Hallo! Hubert Froehlich wrote: > > Hi there, > > I am rather new to Apache-SSL. I want to set up a SSL Web server that, hopefully, can > > also manage client authentication > > I have set up an Apache-SSL Web Server(1.2.6) with SSLeay 0.9.1b and it works. > >

Re: [apache-ssl] Verisign Known Problem?

Swift Griggs wrote: > > -BEGIN PGP SIGNED MESSAGE- > > I searched the SSLeay list, the Apache-SSL list, and there doesn't seem to > be an archive to openssl list yet, but I subscribed, and I haven't seen > anyone with this problem yet (aren't I speci