Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm trying to run a https website (for personal usage, that's why I want it to me https) Apache is working for normal http traffic, but I haven't got the https server working. I did change a little in /etc/apache/mod_ssl.conf, but nothing special. At the end of /etc/apache/httpd.conf, I uncommented the Include ...mod_ssl.conf line.
I've read a lot about the certificates, but I don't understand much of it. Apache is pre-configured at my system, (slackware 9) What do I need to do to get SSL running?
root@hal9000 diederik # /usr/sbin/apachectl startssl
[Fri Jul 4 00:18:49 2003] [warn] module mod_ssl.c is already added, skipping
/usr/sbin/apachectl startssl: httpd could not be started
/var/log/apache/ssl_engine_log:
Code:
[04/Jul/2003 00:18:49 19716] [info] Server: Apache/1.3.27, Interface: mod_ssl/2.8.12, Library: OpenSSL/0.9.7a
[04/Jul/2003 00:18:49 19716] [info] Init: 1st startup round (still not detached)
[04/Jul/2003 00:18:49 19716] [info] Init: Initializing OpenSSL library
[04/Jul/2003 00:18:49 19716] [info] Init: Loading certificate & private key of SSL-aware server *****:443
[04/Jul/2003 00:18:49 19716] [error] Init: Unable to read server certificate from file /etc/apache/ssl.crt/server.crt (OpenSSL library error follows)
[04/Jul/2003 00:18:49 19716] [error] OpenSSL: error:0D06B08E:asn1 encoding routines:ASN1_d2i_bio:not enough data
I've been playing with SSL certificates, but I'm confused by it. (ie. what needs to be done, and what all these openssl command actually do) This definitely shows that I don't got that right.
Seems like a cert problem - I'd say your pkey is too short, but errors are rarely that obvious Here is good info on how to roll your own cert. Probably be less time consuming than trying to figure out how yours was built. Skip down to the section on creating csr
If I may ask just one other thing: Right now I don't have a CA-signed certificate, but is that free?
Nope - thawte was cheaper than verisign last I checked. All CA's charge, it's their primary source of income and they are for-profit outfits. If it's just you for you and you set things up safely (tripwire, etc) you should be alright self-signed. Up to you, tho
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
Here is good info on how to roll your own cert. Probably be less time consuming than trying to figure out how yours was built. Skip down to the section on creating csr
