Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [mod-ssl]

The Apache Httpd interface to OpenSSL

mod_ssl is a module for the Apache HTTPD webserver which allows it to perform SSL and TLS encryption on connections. Documentation is provided by Apache covering installation and setup for httpd 2.0 and 2.2

This tag should be used for questions around compiling, building, configuring, extending, provisioning, debugging and using mod_ssl.

For questions around building Apache modules on top of mod_ssl, or working on the code, the mod-ssl tag on StackOverflow is likely to be a better place to ask.

272 questions
1
vote
3 answers

Moving SSL certificate to another Apache server

We just setup new Windows machine as a web server, with Apache 2.2.19 with openssl installed and we want to move our existing web including the SSL certificate (Verisign) from the old setup, Linux, Apache 2.2.3. Now, if I search online, all I can…
hendry.fu
  • 225
  • 1
  • 2
  • 7
1
vote
1 answer

apache2 SSL Diffie Hellman key sizes

How to make apache 2.2 in debian lenny use Diffie Hellman key exchange with keys larger than 1024bits? I found a patch that theoretically adds this ability at Apache bugzilla but can't find any discussion about it. If it's not possible with mod_ssl,…
Hubert Kario
  • 6,361
  • 6
  • 36
  • 65
1
vote
3 answers

Apache not starting, nothing in log files despite being "debug" level

Our cloud hosting company decided today to upgrade all CentOS implementations to 2.6.39.2. Unfortunately this had an adverse affect on our Apache server, preventing it from starting with mod_ssl enabled. We're running Apache (ITK) 2.2.19 and have…
Alex
1
vote
2 answers

Trouble renewing my SSL certificate

So my free SSL certificate from startcom expired, and I went to renew it. I was given a choice of pasting in the contents of my csr, or generating a new one on their website, so I pasted in my csr. Went through the whole domain verification process,…
blockhead
  • 861
  • 1
  • 8
  • 13
1
vote
2 answers

Apache ProxyPass with SSL

I have a QA setup that consists of multiple internal development servers and one world-accessible provisioning machine that is setup to proxy pass the web traffic. Everything works fine for non-SSL requests, but I'm having a hard time getting the…
BBonifield
  • 151
  • 8
1
vote
2 answers

Apache SSL Log Incomplete SSL Handshake

Scenario: We're running some experiments in our classroom around trusted connections and SSL, and I want to demonstrate the SSL handshake request on a man-in-the-middle attack. I have an Apache server with a self-signed cert. Everything works fine,…
Raymond Berg
  • 113
  • 1
  • 5
1
vote
1 answer

Apache SSL for login and NON-SSL for everything else (.htacces)

I've almost figured it out on my own but there's something I'm missing. I want to set a couple of directories and files to require SSL and everything else that's not related to those files and dirs to point back to http. So far I have…
tftd
  • 1,498
  • 7
  • 25
  • 40
1
vote
1 answer

What do I need for SSL?

just a quick question, I'm kind of confused. I've had set-up my own certification authority and I can create requests and signed them. But, I'm not sure, what I need to give to Apache, currently I've got: CA Private key CA Certificate Website…
Ency
  • 1,231
  • 1
  • 19
  • 27
1
vote
2 answers

Validating SSL clients using a list of authorised certificates instead of a Certificate Authority

Is it possible to configure Apache (or any other SSL-aware server) to only accept connections from clients presenting a certificate from a pre-defined list? These certificates may be signed by any CA (and may be self-signed). A while back I tried to…
Gavin Brown
  • 103
  • 1
  • 9
1
vote
1 answer

Memcached error for apache httpd 2.4

I created an EC2 instance with Apache HTTPD 2.4 with mod_ssl version 2.4.34. I've created a Memcached cluster on AWS ElastiCache version 1.6.17 with encryption in transit. The goal is to have HTTPD use MemCached with TLS for the SSLSessionCache. …
Byob
  • 111
  • 3
1
vote
0 answers

How to enable SSL Proxy only on certain Locations in Apache

I am trying to use Apache as reverse proxy. For some locations I want to convert the client's HTTPS request to HTTP requests on the server. For another location I want to keep the client's HTTPS request to also be a HTTPS request on the server. I…
Hendrik Jan
  • 111
  • 3
1
vote
1 answer

Apache 2.4: Require client certificate only for non-GET methods

We have an internal service running on HTTP with an Apache 2.4 instance (Debian Bullseye) put in front of it as a proxy for HTTPS. Apache and HTTPS are up and running, but an additional requirement is for client certificates -- specifically, GET and…
T2PS
  • 113
  • 3
1
vote
1 answer

Apache reverse proxy with SSL for DNS changeover

I'm currently migrating to a new host. There are around 20 domains all set up as name-based VHosts in apache. I read about Apache's reverse proxy ability as an idea to overcome DNS downtime, as not all the domains are in my direct control and I'm…
ThrowAway92389134
  • 21
  • 5
0
votes
0 answers

Apache 2.4 SSLClientVerify on top of Vhost, but exclude one URL

I have the following configuration: SSLVerifyClient require SSLVerifyDepth 4 ####SSLVerifyClient require ####SSLVerifyDepth 4 Require expr %{SSL_CLIENT_I_DN_CN} in…
Fozix
  • 1
0
votes
1 answer

apache2 webdav givng a 405 error after enabling ssl certificate

Apache 2.4.29 \ Ubuntu 18.04 LTE The webdav was working fine before I was using an SSL connection, that is, when I was using a "http://" URL to access the folders in my server (which is pc with ubuntu running apache). I was using cadaver to check if…
Lord Amateur
  • 1
1 2 3
18 19