From: "Lenya L. Khachaturov" <lenya@chemsell.yaroslavl.ru>
To: "Peter V. Saveliev" <mandrake-russian@altlinux.ru>
Subject: Re: [mdk-re] mod_ssl howto ;)
Date: Thu Mar 21 18:56:18 2002
Message-ID: <59271491313.20020321185544@chemsell.yaroslavl.ru> (raw)
In-Reply-To: <20020313004145.1a987c54.peet@infosite.ru>
Hello Peter,
Wednesday, March 13, 2002, 12:41:45 AM, you wrote:
PVS> Hello!
PVS> При попытке включить в vhosts такую конфигурацию:
PVS> 8<-------------------------------------------------------------------------------------
PVS> <VirtualHost 195.19.253.86:443>
PVS> ServerName mail.peet.spb.ru
PVS> DocumentRoot /home/peet/personal/www-server/mail
PVS> SSLEngine on
PVS> SSLCipherSuite ALL:!ADH:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
PVS> SSLCertificateFile /home/peet/personal/www-server/mail/ssl/server.crt
PVS> SSLCertificateKeyFile /home/peet/personal/www-server/mail/ssl/server.key
PVS> SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
PVS> </VirtualHost>
PVS> 8<-------------------------------------------------------------------------------------
PVS> # server.crt и server.key сделаны по документации из /usr/share/doc/mod_ssl*
PVS> Получаю в /var/log/messages после service httpd restart:
PVS> 8<-------------------------------------------------------------------------------------
PVS> Mar 13 00:33:07 peet httpd: httpd shutdown succeeded
PVS> Mar 13 00:33:08 peet httpd: [Wed Mar 13 00:33:08 2002] [warn] module mod_php4.c is already added, skipping
PVS> Mar 13 00:33:08 peet httpd: [Wed Mar 13 00:33:08 2002] [warn] module mod_ssl.c is already added, skipping
PVS> Mar 13 00:33:08 peet httpd: Syntax OK
PVS> Mar 13 00:33:08 peet httpd: Checking configuration sanity for httpd: succeeded
PVS> Mar 13 00:33:09 peet httpd: [Wed Mar 13 00:33:09 2002] [warn] module mod_php4.c is already added, skipping
PVS> Mar 13 00:33:09 peet httpd: [Wed Mar 13 00:33:09 2002] [warn] module mod_ssl.c is already added, skipping
PVS> Mar 13 00:33:09 peet httpd: Apache/1.3.23 mod_ssl/2.8.7 (Pass Phrase Dialog)
PVS> Mar 13 00:33:09 peet httpd: Some of your private key files are encrypted for security reasons.
PVS> Mar 13 00:33:09 peet httpd: In order to read them you have to provide us with the pass phrases.
PVS> Mar 13 00:33:09 peet httpd: Server mail.peet.spb.ru:443 (RSA)
PVS> Mar 13 00:33:09 peet httpd: Enter pass phrase:
PVS> 8<-------------------------------------------------------------------------------------
PVS> Это прикол? ;)) Есть вопрос и посерьезнее: а как же тогда стартовать?
PVS> apachectl заканчивается тем же. При этом, прошу заметить, в top:
Это не прикол, пароль дожен вводиться в интерактивном режиме. Либо
снимайте пароль с ключа, либо пишите скрипту, отдающую пароль mod_ssl,
и то и другое не секьюрно.
PVS> 8<-------------------------------------------------------------------------------------
PVS> PID USER PRI NI SIZE RSS SHARE STAT %CPU %MEM TIME COMMAND
PVS> 17832 root 0 0 572 572 468 R 97,4 0,4 0:07 initlog
PVS> 17859 peet 19 0 1184 1184 924 R 0,9 0,9 0:00 top
PVS> 5 root 20 0 0 0 0 SW 0,3 0,0 0:01 kupdated
PVS> 1 root 20 0 480 432 412 S 0,0 0,3 0:03 init
PVS> 2 root 20 0 0 0 0 SW 0,0 0,0 0:00 keventd
PVS> 8<-------------------------------------------------------------------------------------
PVS> Заранее спасибо,
PVS> Петр.
PVS> _______________________________________________
PVS> Mandrake-russian mailing list
PVS> Mandrake-russian@altlinux.ru
PVS> http://altlinux.ru/mailman/listinfo/mandrake-russian
--
Best regards,
Lenya L. Khachaturov
mailto:lenya@chemsell.yaroslavl.ru
prev parent reply other threads:[~2002-03-21 18:56 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2002-03-13 0:32 Peter V. Saveliev
2002-03-21 18:56 ` Lenya L. Khachaturov [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=59271491313.20020321185544@chemsell.yaroslavl.ru \
--to=lenya@chemsell.yaroslavl.ru \
--cc=mandrake-russian@altlinux.ru \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Community general discussions
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/community/0 community/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 community community/ http://lore.altlinux.org/community \
mandrake-russian@linuxteam.iplabs.ru community@lists.altlinux.org community@lists.altlinux.ru community@lists.altlinux.com
public-inbox-index community
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.community
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git