Hey all, I need someone's advice that uses mod_gnutls as opposed to mod_ssl.
I am trying to run SSL on another port instead of 443. Our firewall is crap and has some service already running there and makes my site time out. When I changed the port for mod_ssl, it required me to put the port number in the URL. Wasn't a huge fan. Then I was enlightened to the glory of mod_gnutls.
but of course, I can't get it to run. :-(
I bought a cert from a CA but gnutls shoots me errors on them. (mod_ssl has no problem)
I don't understand it.
here is the snippet of my sites available file for apache2
Code:
<VirtualHost *:###>
ServerName www.mysite.com:###
ServerAlias mysite.com misite.com www.misite.com
ServerAdmin webmaster@mysite.com
DocumentRoot /home/me/www/mysite
<Directory />
Options FollowSymLinks -Indexes
AllowOverride None
Order Allow,Deny
Allow from all
</Directory>
ErrorLog /var/log/apache2/ssl-error.log
CustomLog /home/me/www/mysite/logs/access.log combined
#Mod_GnuTLS currently enabled
GnuTLSEnable on
GnuTLSCertificateFile /etc/apache2/ssl.crt/mysite.crt
GnuTLSKeyFile /etc/apache2/ssl.key/mysite.key
GnuTLSPriorities NORMAL
</VirtualHost>
When I try to start apache2, it gives me this error:
Code:
Syntax error on line 91 of /etc/apache2/sites-enabled/000-default:
GnuTLS: Failed to Import Private Key '/etc/apache2/ssl.key/mysite.key': (-69) ASN1 parser: Error in DER parsing.
Totally lost on this.
Thanks in advance LQ community.
mod_gnutls giving me a parse error with a key from a CA.
