Stack Overflow
Stack Overflow

Questions tagged [mod-ssl]

The Apache Httpd interface to OpenSSL

mod_ssl is a module for the Apache HTTPD webserver which allows it to perform SSL and TLS encryption on connections. Documentation is provided by Apache covering installation and setup for httpd 2.0 and 2.2

This tag should be used for questions around using mod_ssl in your application, extending it, controlling the state from your application, writing other Apache modules that talk to it and similar.

For questions around setting it up, and advanced configuration, the mod-ssl tag on ServerFault is likely to be a better place to ask.

118 questions
1
vote
0 answers

How to know which mod_ssl version will work with which httpd Version (Incase I have no-ssl version installed initially)?

I had httpd 2.2.25 no-ssl installed on my server, to enable ssl I followed the following - Installed OpenSSL from here. Generated self-signed certificate (server.crt and server.key). Edited httpd-ssl.conf and httpd.conf to include .crt and .key…
sainiankit
  • 571
  • 3
  • 17
1
vote
1 answer

Red https with cross without reason (Apache + mod_ssl)

I just added mod_ssl with a signed certificate, but I can't figure why Google chrome is marking my connection as untrusted screenshot: although, another website has almost the same details, but Google chrome is not marking it as untrusted: Can…
Ahmed Wahba
  • 63
  • 8
1
vote
1 answer

SSLCACertificateFile returns command not found

I am installing SSL on my domain which is hosted ad digitalocean. I am following this tutorial. Currently I am trying to do execute commands: SSLCACertificateFile /home/sammy/intermediate.crt and SSLCertificateChainFile…
birdcage
  • 2,638
  • 4
  • 35
  • 58
1
vote
2 answers

Django Apache SSL [code 400, message bad request]

I have issue with Apache proxy web server and Django SSL the following is the error followed by the Django settings.py and apache server.conf file for SSL, django version 1.6.8 ---------------------------------------- [10/Jan/2015 09:11:33] code…
0x3bfc
  • 2,715
  • 1
  • 16
  • 20
1
vote
1 answer

mod_ssl with FIPS mode enabled and SSLRandomSeed

I have traced through the mod_ssl and the OpenSSL FIPS code as best I can and I believe that the SSLRandomSeed configuration parameter given in the mod_ssl.conf file simply doesn't do anything useful when FIPS mode is enabled in mod_ssl. Tracing the…
logicalscope
  • 183
  • 1
  • 9
1
vote
1 answer

How to test client certificate

I'm building a web service to allow salesforce to call to it, the two way SSL is used for security, and salesforce has provided its client certificate: sfdc-client.cert. In order to test whether salesforce client certificate work or not, I have…
cuongle
  • 74,024
  • 28
  • 151
  • 206
1
vote
1 answer

How apache reverse proxy can be configured without breaking the https tunnel between client & server?

I have configured apache reverse proxy. In that configuration https connection is possible between client to reverse proxy and again reverse proxy to server. But I want https connection between client to server like forward proxy. The https…
user3245862
  • 23
  • 1
  • 3
1
vote
1 answer

PHP does not work over ssl connections

I just got my ssl certificate to work for the first time. For some reason when I connect to my website using https my browser tries to download the php file. I have the following line in my httpd.conf. Isn't this the line which makes sure php files…
Haluk
  • 2,091
  • 2
  • 27
  • 35
1
vote
0 answers

Apache SSLInsecureRenegotiation directive not working

I'm testing SSL Insecure Renegotiation vulnerability with Apache and OpenSSL. When Apache 2.2.14 was compiled against OpenSSL 0.9.8k, openssl command could establish client-initiated insecure SSL renegotiation with Apache as follows: #…
user2875834
1
vote
2 answers

Rails 3 + Passenger + Apache: How to change the port for SSL from 443 to 8443?

My hosting service is telling me to change my SSL port from 443 to 8443 since the OpenSSL tests are failing, even though they are working in production. I changed my apache ports.conf file to: NameVirtualHost *:80 #NameVirtualHost *:443 …
bigpotato
  • 26,262
  • 56
  • 178
  • 334
1
vote
1 answer

SSLSessionCache not working

Am I doing anything wrong in enabling SSL caching? My configuration: SSLSessionCache "shm:/opt/apps/logs/ssl_cache(512000)" SSLSessionCacheTimeout 300 SSLMutex default When LogLevel is changed to debug, I can see that SSLSessionCache is…
cbrdy
  • 792
  • 1
  • 8
  • 27
1
vote
0 answers

How to get Apache httpd response time with ssl enabled

My httpd.conf has LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %T/%D" combined I get the following information logged in access_log 10.xxx.xxx.xxx - uid [10/Dec/2012:21:52:20 -0800] "GET /file.ext HTTP/1.1" 200 - "-"…
user1899928
  • 11
  • 1
1
vote
2 answers

Wildcard SSL with Multiple Domains

I have a CentOS/Apache+OpenSSL server. I host two domain names with wildcard sub domains (application logic surfaces the correct site), e.g. https://*.testing1.com https://*.testing2.com It works great over HTTP:- # Admin…
Jon
  • 77
  • 6
1
vote
1 answer

"decryption failed or bad record mac" between apache and Java

I have a Java program (running inside a tomcat container) which uses RSA SSL-J implementation for SSL, and an apache webserver which is configured for SSL using mod_ssl/openssl When the Java program tried to open a HttpsUrlConnection to the apache…
Nishan
  • 2,821
  • 4
  • 27
  • 36
1
vote
1 answer

Apache stops responding to SSL + mod_jk

Our Apache2 instance occasionally seems to stop responding to SSL requests when under load. We have a Windows Server 2003 running Apache 2.2 w/ OpenSSL. It is configured with mod_jk connector version 1.2.32 which balances two instances of Tomcat…
Kris Koskelin
  • 128
  • 5
1 2 3 4
5
6 7 8