apache + mod_ssl + openssl + solaris 9/64bit

classic Classic list List threaded Threaded
7 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

apache + mod_ssl + openssl + solaris 9/64bit

bioinfo Gu
Hello everybody,
 
I compiled
 
apache_1.3.33
mod_ssl-2.8.22-1.3.33
openssl-0.9.7e
 
on  64-bit Solaris 9.
 
The compilation and installation is fine, and I can start ssl with 'apachectl startssl'. also I can access http://myserver.domain, but when I access https://myserver.domain, the browser tells me 'The page can not be displayed'.
 
ssl_request_log remains EMPTY, I do not why?????
I check error_log file, it looks fine.  
 
[Tue Apr 26 09:52:11 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:52:11 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 09:55:19 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 09:56:04 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:56:04 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 10:02:59 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 10:03:13 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 10:03:13 2005] [notice] Accept mutex: fcntl (Default: fcntl)
ssl_engine_log:
[26/Apr/2005 10:03:19 11581] [info]  Connection to child 0 established (server myserver.domain:443, client 130.x.x.x)
[26/Apr/2005 10:03:19 11581] [info]  Seeding PRNG with 1160 bytes of entropy
[26/Apr/2005 10:03:19 11581] [info]  Connection: Client IP: 130.x.x.x, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits)
[26/Apr/2005 10:03:19 11581] [info]  Connection to child 0 closed with standard shutdown (server myserver.domain:443, client 130.x.x.x)
 
Thank you very much for any ideas.
 
Bio

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

RE: apache + mod_ssl + openssl + solaris 9/64bit

Boyle Owen
Plain text please...

> ssl_request_log remains EMPTY, I do not why?????

what about the error logs?

(SSL and plain HTTP)

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.


-----Original Message-----
From: bioinfo Gu [mailto:[hidden email]]
Sent: Dienstag, 26. April 2005 16:36
To: [hidden email]
Cc: [hidden email]
Subject: [users@httpd] apache + mod_ssl + openssl + solaris 9/64bit


Hello everybody,

I compiled

apache_1.3.33
mod_ssl-2.8.22-1.3.33
openssl-0.9.7e

on  64-bit Solaris 9.

The compilation and installation is fine, and I can start ssl with 'apachectl startssl'. also I can access http://myserver.domain, but when I access https://myserver.domain, the browser tells me 'The page can not be displayed'.

ssl_request_log remains EMPTY, I do not why?????

I check error_log file, it looks fine.  

[Tue Apr 26 09:52:11 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:52:11 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 09:55:19 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 09:56:04 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:56:04 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 10:02:59 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 10:03:13 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 10:03:13 2005] [notice] Accept mutex: fcntl (Default: fcntl)

ssl_engine_log:
[26/Apr/2005 10:03:19 11581] [info]  Connection to child 0 established (server myserver.domain:443, client 130.x.x.x)
[26/Apr/2005 10:03:19 11581] [info]  Seeding PRNG with 1160 bytes of entropy
[26/Apr/2005 10:03:19 11581] [info]  Connection: Client IP: 130.x.x.x, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits)
[26/Apr/2005 10:03:19 11581] [info]  Connection to child 0 closed with standard shutdown (server myserver.domain:443, client 130.x.x.x)

Thank you very much for any ideas.

Bio
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
 
 
This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [hidden email]
   "   from the digest: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

RE: apache + mod_ssl + openssl + solaris 9/64bit

bioinfo Gu
In reply to this post by bioinfo Gu
Here is my error_log file:
# more error_log
[Tue Apr 26 09:52:11 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:52:11 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 09:55:19 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 09:56:04 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:56:04 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 10:02:59 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 10:03:13 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 10:03:13 2005] [notice] Accept mutex: fcntl (Default: fcntl)
 
plain http works perfectly.
 
Thank you very much.
 
Bio


Boyle Owen <[hidden email]> wrote:
Plain text please...

> ssl_request_log remains EMPTY, I do not why?????

what about the error logs?

(SSL and plain HTTP)

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.


-----Original Message-----
From: bioinfo Gu [mailto:[hidden email]]
Sent: Dienstag, 26. April 2005 16:36
To: [hidden email]
Cc: [hidden email]
Subject: [users@httpd] apache + mod_ssl + openssl + solaris 9/64bit


Hello everybody,

I compiled

apache_1.3.33
mod_ssl-2.8.22-1.3.33
openssl-0.9.7e

on 64-bit Solaris 9.

The compilation and installation is fine, and I can start ssl with 'apachectl startssl'. also I can access http://myserver.domain, but when I access https://myserver.domain, the browser tells me 'The page can not be displayed'.

ssl_request_log remains EMPTY, I do not why?????

I check error_log file, it looks fine.

[Tue Apr 26 09:52:11 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:52:11 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 09:55:19 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 09:56:04 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:56:04 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 10:02:59 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 10:03:13 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 10:03:13 2005] [notice] Accept mutex: fcntl (Default: fcntl)

ssl_engine_log:
[26/Apr/2005 10:03:19 11581] [info] Connection to child 0 established (server myserver.domain:443, client 130.x.x.x)
[26/Apr/2005 10:03:19 11581] [info] Seeding PRNG with 1160 bytes of entropy
[26/Apr/2005 10:03:19 11581] [info] Connection: Client IP: 130.x.x.x, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits)
[26/Apr/2005 10:03:19 11581] [info] Connection to child 0 closed with standard shutdown (server myserver.domain:443, client 130.x.x.x)

Thank you very much for any ideas.

Bio
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com


This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: [hidden email]
" from the digest: [hidden email]
For additional commands, e-mail: [hidden email]

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

RE: apache + mod_ssl + openssl + solaris 9/64bit

Boyle Owen
In reply to this post by bioinfo Gu
Guess you didn't see this the first time:

        >>> Plain text please... <<<

Regarding your problem:

The HTTP error log (quoted below) shows simply your server restarts. No problem there.

In your SSL virtual host, do you have an ErrorLog directive? What is in that log?

You need more information from the browser about what is wrong - "Page cannot be displayed" is IE trying to be "user-friendly" by protecting you from those nasty protocol messages that might actually tell you something. You need to switch off "Friendly messages" (Options -> Advanced -> uncheck "Show friendly HTTP messages").

It's probably just that you have misconfigured the SSL VH (you understand that from the point-of-view of the config, the SSL VH is just another port-based VH - with its own docroot etc.)

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.

-----Original Message-----
From: bioinfo Gu [mailto:[hidden email]]
Sent: Dienstag, 26. April 2005 20:11
To: [hidden email]
Subject: RE: [users@httpd] apache + mod_ssl + openssl + solaris 9/64bit


Here is my error_log file:
# more error_log
[Tue Apr 26 09:52:11 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:52:11 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 09:55:19 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 09:56:04 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:56:04 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 10:02:59 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 10:03:13 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 10:03:13 2005] [notice] Accept mutex: fcntl (Default: fcntl)


plain http works perfectly.

Thank you very much.

Bio


Boyle Owen <[hidden email]> wrote:
Plain text please...

> ssl_request_log remains EMPTY, I do not why?????

what about the error logs?

(SSL and plain HTTP)

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.


-----Original Message-----
From: bioinfo Gu [mailto:[hidden email]]
Sent: Dienstag, 26. April 2005 16:36
To: [hidden email]
Cc: [hidden email]
Subject: [users@httpd] apache + mod_ssl + openssl + solaris 9/64bit


Hello everybody,

I compiled

apache_1.3.33
mod_ssl-2.8.22-1.3.33
openssl-0.9.7e

on 64-bit Solaris 9.

The compilation and installation is fine, and I can start ssl with 'apachectl startssl'. also I can access http://myserver.domain, but when I access https://myserver.domain, the browser tells me 'The page can not be displayed'.

ssl_request_log remains EMPTY, I do not why?????

I check error_log file, it looks fine.

[Tue Apr 26 09:52:11 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:52:11 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 09:55:19 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 09:56:04 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 09:56:04 2005] [notice] Accept mutex: fcntl (Default: fcntl)
[Tue Apr 26 10:02:59 2005] [notice] caught SIGTERM, shutting down
[Tue Apr 26 10:03:13 2005] [notice] Apache/1.3.33 (Unix) mod_ssl/2.8.22 OpenSSL/0.9.7e configured -- resuming normal operations
[Tue Apr 26 10:03:13 2005] [notice] Accept mutex: fcntl (Default: fcntl)

ssl_engine_log:
[26/Apr/2005 10:03:19 11581] [info] Connection to child 0 established (server myserver.domain:4! 43, client 130.x.x.x)
[26/Apr/2005 10:03:19 11581] [info] Seeding PRNG with 1160 bytes of entropy
[26/Apr/2005 10:03:19 11581] [info] Connection: Client IP: 130.x.x.x, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits)
[26/Apr/2005 10:03:19 11581] [info] Connection to child 0 closed with standard shutdown (server myserver.domain:443, client 130.x.x.x)

Thank you very much for any ideas.

Bio
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com


This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the ! message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company.

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: [hidden email]
" from the digest: [hidden email]
For additional commands, e-mail: [hidden email]


__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail ! has the best spam protection around
http://mail.yahoo.com 

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [hidden email]
   "   from the digest: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

RE: apache + mod_ssl + openssl + solaris 9/64bit

bioinfo Gu
Hello Boyle,
 
>Thank you very much for your help, You need more information from the browser about what >is wrong - "Page cannot be displayed" is IE trying to be "user-friendly" by protecting you from >those nasty protocol messages that might actually tell you something. You need to switch >off "Friendly messages" (Options -> Advanced -> uncheck "Show friendly HTTP messages").

>It's probably just that you have misconfigured the SSL VH (you understand that from the >point-of-view of the config, the SSL VH is just another port-based VH - with its own docroot >etc.)
I uncheck 'Show friendly HTTP messages" , the error is still 'Page can not be displayed'. But from the title bar of the page, the error is 'Cannot find server', so I think my SSL virtual host configuration something wrong, but I configured and compared with others(I have 3 other apache_ssl installed on linux and tru64), could not find the problem, your help will be really appreciate.
 
My http.conf file:
##
## httpd.conf -- Apache HTTP server configuration file
##
#
# Based upon the NCSA server configuration files originally by Rob McCool.
#
# This is the main Apache server configuration file.  It contains the
# configuration directives that give the server its instructions.
# See <URL:http://httpd.apache.org/docs/> for detailed information about
# the directives.
#
# Do NOT simply read the instructions in here without understanding
# what they do.  They're here only as hints or reminders.  If you are unsure
# consult the online docs. You have been warned. 
#
# After this file is processed, the server will look for and process
# /disk3/apache_ssl_7/conf/srm.conf and then /disk3/apache_ssl_7/conf/access.conf
# unless you have overridden these with ResourceConfig and/or
# AccessConfig directives here.
#
# The configuration directives are grouped into three basic sections:
#  1. Directives that control the operation of the Apache server process as a
#     whole (the 'global environment').
#  2. Directives that define the parameters of the 'main' or 'default' server,
#     which responds to requests that aren't handled by a virtual host.
#     These directives also provide default values for the settings
#     of all virtual hosts.
#  3. Settings for virtual hosts, which allow Web requests to be sent to
#     different IP addresses or hostnames and have them handled by the
#     same Apache server process.
#
# Configuration and logfile names: If the filenames you specify for many
# of the server's control files begin with "/" (or "drive:/" for Win32), the
# server will use that explicit path.  If the filenames do *not* begin
# with "/", the value of ServerRoot is prepended -- so "logs/foo.log"
# with ServerRoot set to "/usr/local/apache" will be interpreted by the
# server as "/usr/local/apache/logs/foo.log".
#
### Section 1: Global Environment
#
# The directives in this section affect the overall operation of Apache,
# such as the number of concurrent requests it can handle or where it
# can find its configuration files.
#
#
# ServerType is either inetd, or standalone.  Inetd mode is only supported on
# Unix platforms.
#
ServerType standalone
#
# ServerRoot: The top of the directory tree under which the server's
# configuration, error, and log files are kept.
#
# NOTE!  If you intend to place this on an NFS (or otherwise network)
# mounted filesystem then please read the LockFile documentation
# (available at <URL:http://www.apache.org/docs/mod/core.html#lockfile>);
# you will save yourself a lot of trouble.
#
ServerRoot "/disk3/apache_ssl_7"
#
# The LockFile directive sets the path to the lockfile used when Apache
# is compiled with either USE_FCNTL_SERIALIZED_ACCEPT or
# USE_FLOCK_SERIALIZED_ACCEPT. This directive should normally be left at
# its default value. The main reason for changing it is if the logs
# directory is NFS mounted, since the lockfile MUST BE STORED ON A LOCAL
# DISK. The PID of the main server process is automatically appended to
# the filename.
#
#LockFile /disk3/apache_ssl_7/logs/httpd.lock
#
# PidFile: The file in which the server should record its process
# identification number when it starts.
#
PidFile /disk3/apache_ssl_7/logs/httpd.pid
#
# ScoreBoardFile: File used to store internal server process information.
# Not all architectures require this.  But if yours does (you'll know because
# this file will be  created when you run Apache) then you *must* ensure that
# no two invocations of Apache share the same scoreboard file.
#
ScoreBoardFile /disk3/apache_ssl_7/logs/httpd.scoreboard
#
# In the standard configuration, the server will process httpd.conf (this
# file, specified by the -f command line option), srm.conf, and access.conf
# in that order.  The latter two files are now distributed empty, as it is
# recommended that all directives be kept in a single file for simplicity. 
# The commented-out values below are the built-in defaults.  You can have the
# server ignore these files altogether by using "/dev/null" (for Unix) or
# "nul" (for Win32) for the arguments to the directives.
#
#ResourceConfig /disk3/apache_ssl_7/conf/srm.conf
#AccessConfig /disk3/apache_ssl_7/conf/access.conf
#
# Timeout: The number of seconds before receives and sends time out.
#
Timeout 300
#
# KeepAlive: Whether or not to allow persistent connections (more than
# one request per connection). Set to "Off" to deactivate.
#
KeepAlive On
#
# MaxKeepAliveRequests: The maximum number of requests to allow
# during a persistent connection. Set to 0 to allow an unlimited amount.
# We recommend you leave this number high, for maximum performance.
#
MaxKeepAliveRequests 100
#
# KeepAliveTimeout: Number of seconds to wait for the next request from the
# same client on the same connection.
#
KeepAliveTimeout 15
#
# Server-pool size regulation.  Rather than making you guess how many
# server processes you need, Apache dynamically adapts to the load it
# sees --- that is, it tries to maintain enough server processes to
# handle the current load, plus a few spare servers to handle transient
# load spikes (e.g., multiple simultaneous requests from a single
# Netscape browser).
#
# It does this by periodically checking how many servers are waiting
# for a request.  If there are fewer than MinSpareServers, it creates
# a new spare.  If there are more than MaxSpareServers, some of the
# spares die off.  The default values are probably OK for most sites.
#
MinSpareServers 5
MaxSpareServers 10
#
# Number of servers to start initially --- should be a reasonable ballpark
# figure.
#
StartServers 5
#
# Limit on total number of servers running, i.e., limit on the number
# of clients who can simultaneously connect --- if this limit is ever
# reached, clients will be LOCKED OUT, so it should NOT BE SET TOO LOW.
# It is intended mainly as a brake to keep a runaway server from taking
# the system with it as it spirals down...
#
MaxClients 150
#
# MaxRequestsPerChild: the number of requests each child process is
# allowed to process before the child dies.  The child will exit so
# as to avoid problems after prolonged use when Apache (and maybe the
# libraries it uses) leak memory or other resources.  On most systems, this
# isn't really needed, but a few (such as Solaris) do have notable leaks
# in the libraries. For these platforms, set to something like 10000
# or so; a setting of 0 means unlimited.
#
# NOTE: This value does not include keepalive requests after the initial
#       request per connection. For example, if a child process handles
#       an initial request and 10 subsequent "keptalive" requests, it
#       would only count as 1 request towards this limit.
#
MaxRequestsPerChild 0
#
# Listen: Allows you to bind Apache to specific IP addresses and/or
# ports, instead of the default. See also the <VirtualHost>
# directive.
#
#Listen *:80
#Listen *:443
#
# BindAddress: You can support virtual hosts with this option. This directive
# is used to tell the server which IP address to listen to. It can either
# contain "*", an IP address, or a fully qualified Internet domain name.
# See also the <VirtualHost> and Listen directives.
# I TRIED "BindAddress *" and comment out "BindAddress *", none of them worked.
BindAddress xxxx.xxxx.xxxx.edu
#
# Dynamic Shared Object (DSO) Support
#
# To be able to use the functionality of a module which was built as a DSO you
# have to place corresponding `LoadModule' lines at this location so the
# directives contained in it are actually available _before_ they are used.
# Please read the file http://httpd.apache.org/docs/dso.html for more
# details about the DSO mechanism and run `httpd -l' for the list of already
# built-in (statically linked and thus always available) modules in your httpd
# binary.
#
# Note: The order in which modules are loaded is important.  Don't change
# the order below without expert advice.
#
# Example:
# LoadModule foo_module libexec/mod_foo.so
LoadModule vhost_alias_module libexec/mod_vhost_alias.so
LoadModule env_module         libexec/mod_env.so
LoadModule define_module      libexec/mod_define.so
LoadModule config_log_module  libexec/mod_log_config.so
LoadModule mime_magic_module  libexec/mod_mime_magic.so
LoadModule mime_module        libexec/mod_mime.so
LoadModule negotiation_module libexec/mod_negotiation.so
LoadModule status_module      libexec/mod_status.so
LoadModule info_module        libexec/mod_info.so
LoadModule includes_module    libexec/mod_include.so
LoadModule autoindex_module   libexec/mod_autoindex.so
LoadModule dir_module         libexec/mod_dir.so
LoadModule cgi_module         libexec/mod_cgi.so
LoadModule asis_module        libexec/mod_asis.so
LoadModule imap_module        libexec/mod_imap.so
LoadModule action_module      libexec/mod_actions.so
LoadModule speling_module     libexec/mod_speling.so
LoadModule userdir_module     libexec/mod_userdir.so
LoadModule alias_module       libexec/mod_alias.so
LoadModule rewrite_module     libexec/mod_rewrite.so
LoadModule access_module      libexec/mod_access.so
LoadModule auth_module        libexec/mod_auth.so
LoadModule anon_auth_module   libexec/mod_auth_anon.so
LoadModule dbm_auth_module    libexec/mod_auth_dbm.so
LoadModule digest_module      libexec/mod_digest.so
LoadModule proxy_module       libexec/libproxy.so
LoadModule cern_meta_module   libexec/mod_cern_meta.so
LoadModule expires_module     libexec/mod_expires.so
LoadModule headers_module     libexec/mod_headers.so
LoadModule usertrack_module   libexec/mod_usertrack.so
LoadModule log_forensic_module libexec/mod_log_forensic.so
LoadModule unique_id_module   libexec/mod_unique_id.so
LoadModule setenvif_module    libexec/mod_setenvif.so
<IfDefine SSL>
LoadModule ssl_module         libexec/libssl.so
</IfDefine>
#  Reconstruction of the complete module list from all available modules
#  (static and shared ones) to achieve correct module execution order.
#  [WHENEVER YOU CHANGE THE LOADMODULE SECTION ABOVE UPDATE THIS, TOO]
ClearModuleList
AddModule mod_vhost_alias.c
AddModule mod_env.c
AddModule mod_define.c
AddModule mod_log_config.c
AddModule mod_mime_magic.c
AddModule mod_mime.c
AddModule mod_negotiation.c
AddModule mod_status.c
AddModule mod_info.c
AddModule mod_include.c
AddModule mod_autoindex.c
AddModule mod_dir.c
AddModule mod_cgi.c
AddModule mod_asis.c
AddModule mod_imap.c
AddModule mod_actions.c
AddModule mod_speling.c
AddModule mod_userdir.c
AddModule mod_alias.c
AddModule mod_rewrite.c
AddModule mod_access.c
AddModule mod_auth.c
AddModule mod_auth_anon.c
AddModule mod_auth_dbm.c
AddModule mod_digest.c
AddModule mod_proxy.c
AddModule mod_cern_meta.c
AddModule mod_expires.c
AddModule mod_headers.c
AddModule mod_usertrack.c
AddModule mod_log_forensic.c
AddModule mod_unique_id.c
AddModule mod_so.c
AddModule mod_setenvif.c
<IfDefine SSL>
AddModule mod_ssl.c
</IfDefine>
#
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

RE: apache + mod_ssl + openssl + solaris 9/64bit

Joost de Heer
> I uncheck 'Show friendly HTTP messages" , the error is still 'Page can not
> be displayed'. But from the title bar of the page, the error is 'Cannot
> find server', so I think my SSL virtual host configuration something
> wrong, but I configured and compared with others(I have 3 other apache_ssl
> installed on linux and tru64), could not find the problem, your help will
> be really appreciate.

Do you start apache with -DSSL? You have your SSL directives inside an
<IfDefine SSL> container:

> <IfDefine SSL>
> LoadModule ssl_module         libexec/libssl.so
> </IfDefine>

After you start Apache, does 'netstat -an' show that there's something
listening on *.443?

Joost


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [hidden email]
   "   from the digest: [hidden email]
For additional commands, e-mail: [hidden email]

Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

RE: apache + mod_ssl + openssl + solaris 9/64bit

bioinfo Gu
In reply to this post by bioinfo Gu

 Do you start apache with -DSSL? You have your SSL directives inside an
container:
Yes, I did, I use 'apachectl startssl'


>
> LoadModule ssl_module libexec/libssl.so
>


After you start Apache, does 'netstat -an' show that there's something
listening on *.443?

I use lsof -i tcp:443, port 443 is listening.

Thanks a lot,

 

Bio

 



Joost


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See for more info.
To unsubscribe, e-mail: [hidden email]
" from the digest: [hidden email]
For additional commands, e-mail: [hidden email]


Do you Yahoo!?
Yahoo! Mail - Easier than ever with enhanced search. Learn more.
Loading...