SlackwareThis Forum is for the discussion of Slackware Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I have the mod installed and it is running, however firefox gives me an error when i try to load my homepage in HTTPS... the access_log gives no error and heres a snippet of the ssl_engine_log:
Did you generate keys/certificates for the server? One of the error messages says it's generating its own temporary keys. The last 2 lines look like it wasn't able to generate the keys due to a lack of entropy.
According to the README.crt file in the same directory as server.crt (installed by mod_ssl-2.8.24_1.3.33-i486-1) that is a dummy file that "may be overwritten by the `make certificate' target under built-time". What do you get if you type `cat /etc/apache/ssl.crt/server.crt`? (I'm assuming you've installed the package to the default location)
I can't get to a box with Apache installed on it at the moment to check, but I think apachectl -t will check the syntax of your config file. Can you post any errors you get from that please?
Did you get any errors creating the self signed certificate and did it ask you for a passphrase when you started Apache (it's possible to strip the passphrase out, I don't know if you did that)? The following are from the Apache docs and might help highlight what is happening with the cert. I got this from http://httpd.apache.org/docs/2.0/ssl...html#httpstest:
Try a second carriage return after the GET / HTTP/1.0 with this one
Code:
$ openssl s_client -connect localhost:443 -state -debug
GET / HTTP/1.0
It sounds like it's going through its startup but still not being able to use the cert. If it's actually running http & https you should get a similar output to the following:
About the only things left (assuming you've left the conf file ssl settings at their defaults) is to confirm that the cert creation and copying to the /etc/apache/ssl.crt/server.crt and /etc/apache/ssl.key/server.key locations worked properly. The most useful doc I've seen for this is http://slacksite.com/apache/certificate.html
If the directory is world readable it should be OK. I have all of my apache stuff owned by apache:apache and world (or other if you prefer) permissions are set to zero. That way only root and apache can see it (and the apache user has no shell).
I'm at a bit of a loss, those are the same docs I used to create my keys/certs. I did compile my apache (2.0.55) manually though with:
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.