27;t done this, but it doesn't sound like this is the best solution.
You may want to review the section on "timing out slow operations" as well
as blocking/non-blocking I/O in the "Programming Perl" book. IIRC, this
behavior with read() is not uncommon.
K
ust have the proper CA file for
the particular CA, in this case "Digital Signature Trust Co.". If you are
not acting as your own CA, you need to download the proper root CA from the
certificate vendor.
Keary Suska
(719) 473-6431
ks fine. Any
>>> suggestions? Thanks a million!
>>>
>>
>> do you have two servers? apache and apache-ssl? or just one?
>
> Just one server.
>
>
> Ryan Hagan
> Pacificom Multimedia
> [EMAIL PROTECTED]
> 540-553-2135
>
> _______
(wstat 11, 0xb)
> FAILED--2 test scripts could be run, alas--no output ever seen
> make: *** [test_dynamic] Error 2
It can be many things. What URL did you provide for testing? Can you access
that URL through your browser?
Keary Sus
a conflict and if there is possibly a known remedy for this problem. Any help would be greatly appreciated.
IIRC, mod_perl must be loaded in httpd.conf before Raven SSL. Also, Raven should probably be loaded as a DSO, as historically they have had many conflicts when installed statically.
Keary
I don't know about #1, but #2 is because the ar command either isn't
installed or isn't in your path. It is usually under /usr/ccs/bin/ on
Solaris, which isn't normally in your path. You can use "whereis" or "find"
to see if it's installed, and modi
t it shouldn't. Perhaps the makfile isn't "making" before "make test".
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
> From: "Feng, James" <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> Date: Wed, 3
My bad, I was misreading the output. I think the other posters have it
covered...
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
> From: "Mark Strong" <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> Date: Thu, 1 Nov 2001 08:
the minimum the
client is alerted that the server key has changed and has the option to
abort, which they should unless they have received instructions otherwise
from the sys admin. This flouts the traditional MITM attack.
In SSL, this is prevented by peer certificate verification by the PKI
syste
hasn't worked, but
I'm shooting in the dark since I don't know how the pieces are finally put
together in the makefile.
There have been RPMs for my system which install .so, so it has to be
possible. Does anyone know how to force openssl to build shared objects (gcc
2.9.5, elf sup
fig ands make output in detail, I will
gladly send it, though I don't think you will find anything untoward in it
either. I may not be an expert *nix programmer, but I am no dummy, and I
have been doing this for a while.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Inte
It is probably an Apache configuration issue. If there was a problem with
your mod_ssl binary, Apache probably wouldn't load. Apache doesn't do SSL
automatically. You have to specify it in the configuration. Have you looked
at httpd.apache.org for documentation?
Keary Suska
Esoter
your choice which to use, though the read me states that Net::SSLeay
doesn't directly support LWP, so I imagine you will get better results with
LWP if you use the library recommended by the author.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
>
x-ppc" as the target, and see if
you get better results.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
From: Sujatha Mukunthan <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Date: Wed, 21 Nov 2001 10:08:23 +0100
To: [EMAIL PROTECTED]
Subject: Ins
from my
previous email, it is best to use Crypt::SSLeay with LWP, at least according
to the author of LWP.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
> From: Marko Asplund <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> Date: Wed, 21 Nov
ket on
uninformative error messages ;-)
Have you verified that you have both a loadmodule and addmodule directive
for mod_ssl? Have you verified that indeed the mod_ssl loadable is called
"mod_ssl.so" and is located where the directive says it is relative to the
server root (unless i
More specifically, each SSL-enabled virtual host must have as unique public
IP with certificates that include the domain name that corresponds to the
address. You cannot have an SSL-enabled name-based virtual host.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Int
possible to do
without allowing a user on the machine to modify the certificate to
circumvent this measure?
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
__
OpenS
nd right after it initialize it to an empty
value:
$proxy_server = '';
That will remove the warning message. However, you should be aware that the
code may expect the value to be undefined under certain circumstances. You
may want to search for a call to "defined" on that va
ogramm.
> Sorry if my question has no mean.
I haven't used ssl_proxy, but you can find it here:
http://www.obdev.at/products/ssl-proxy/
Another product is stunnel, which you can find at:
http://www.stunnel.org/
Keary Suska
Esoteritech, Inc.
"Leveraging
he core code or users
will have to use whatever schema conventions the authors choose, or be
forced to develop their own plugins.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
__
OpenSSL Project
far as I know, there are no
restrictions on the data portion of a post request. Since SSL is basically a
tunneling protocol, it does not impact the content of HTTP messages.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source fo
ny relation to (besides possibly loading) the openssl shared library
by the same name.
If the mod_ssl dso exists in the required location, there was a problem with
the compile, and there should be more log entries describing why it can'
or configured properly. Some browsers, most notably IE, require
caching enabled on the server. Another issue could be the unclean shutdown
habit of certain IE (again) versions. Normally, there are Apache directives
to get around this.
Keary Suska
er of getting the
source rpm's of the problem apps and rebuilding. That generally forces the
app to re-link to the new libs, and I haven't had any problems doing this.
Keary Suska
Esoteritech, Inc.
"Leveraging Open Source for a better Internet"
25 matches
Mail list logo
