Stack Overflow
Stack Overflow

Questions tagged [mod-ssl]

The Apache Httpd interface to OpenSSL

mod_ssl is a module for the Apache HTTPD webserver which allows it to perform SSL and TLS encryption on connections. Documentation is provided by Apache covering installation and setup for httpd 2.0 and 2.2

This tag should be used for questions around using mod_ssl in your application, extending it, controlling the state from your application, writing other Apache modules that talk to it and similar.

For questions around setting it up, and advanced configuration, the mod-ssl tag on ServerFault is likely to be a better place to ask.

118 questions
1
vote
1 answer

what is the equivalent of SSLOptions in mod_ibm_ssl

I have used mod_ssl and set the SSLOptions +ExportCertData in the configuration of httpd which forwards the client certificate information to the JBOSS server behind the web server and it working fine. Now I am trying to do the same on IBM -…
Nohsib
  • 3,614
  • 14
  • 51
  • 63
1
vote
2 answers

Redirect www. to bare domain when using SSL

Some context: I'm serving a website under the domains domain.com and alternate-domain.com. I would like to redirect all requests so that they: use SSL (basically, redirect http -> https) use the canonical hostname domain.com (e.g. remove the www…
lum
  • 1,503
  • 12
  • 17
0
votes
0 answers

Multiple mTLS with apache 2.4 Reverse Proxy Leads to 502

We have 2 Proxy directives for a virtual host organized like this in our Apache 2.4 reverse proxy configuration: SSLProxyVerify require SSLProxyCheckPeerName off SSLProxyCheckPeerCN off …
banal
  • 98
  • 1
  • 8
0
votes
0 answers

SSLPassPhraseDialog problems - doesn't appear to be working

I have two certificates (one RSA and one ECDSA) for my website. I have configured a VHost to handle the SSL work, and configured an SSLPassPhraseDialog to echo out the appropriate password to Apache on startup (I know this is insecure, but its no…
user4654707
0
votes
1 answer

Apache mod_ssl Modifying Environment Variable (stripping value)

Currently, I'm doing the following in httpd.conf to set X-Client-Subject-CN RequestHeader set X-Client-Subject-CN %{SSL_CLIENT_SAN_OTHER_msUPN_0}s This works, and the X-Client-Subject-CN is set to my User Principal Name (UPN) from my cert in format…
mfuller20
  • 21
  • 1
0
votes
0 answers

SSL Apache HTTPD to SSL Weblogic Managed Servers Call

I want to setup SSL Apache HTTPD -> SSL Weblogic Managed Server. While opening UI via https Apache HTTPD, getting backend server not available. Note : I have ssl module and related modules enabled on httpd end. Weblogic Managed Server SSL is also…
Mangesh Sarangi
  • 1
  • 4
0
votes
0 answers

django not functioning over HTTPS with apache and mod_wsgi

My requirement is to take my django app over HTTPS. I generated ssl certs with the help of command: openssl req -x509 -sha256 -nodes -days 365 -newkey rsa:2048 -keyout ssl_cert.key -out ssl_cert.crt Installed mod_wsgi and mod_ssl and configured…
Nikita
  • 425
  • 1
  • 7
  • 19
0
votes
1 answer

Ansible-Playbook for the Install of mod_ssl, python-passlib and firewalld (and keep them always latest)

I manage 2 Clients (centos8) with Ansible, and i want to install mod-ssl on the webserver, python-passlib on all hosts and firewalld on all hosts. The Playbook should check every time it runs, wheter the 3 packages are the latest available. I´ve…
mikemo089
  • 3
  • 3
0
votes
1 answer

How to out.println Apache JKEnvVar SSL_CLIENT_DN from mod_ssl to java, javascript or html?

I am unable to out.println or system.out.println the apache JKEnvVar SSL_SESSION_ID and SSL_CLIENT_DN to java code, or javascript. I want to add it to each session in my webapp, then print it to string. Setup Apache properly with SSL_mods and set…
KayKoder
  • 319
  • 1
  • 8
0
votes
0 answers

Make Apache pass a client certificate as a header to app server w/o asking for in in the browser?

A question from HTTPD newbie. So we have an Apache HTTP server (2.4.38) as a SSL termination proxy, forwarding requests to Apache Tomcat behind over AJP. The requirement is to pass a client certificate in a request header without any validations…
FlasH from Ru
  • 1,165
  • 2
  • 13
  • 19
0
votes
1 answer

SNI extension not set in healthcheck requests (Apache v.2.4.35)

I face the problem, that the SNI extension is not set on health check requests to a backend using TLS encryption. Because health checks are negative, this leads to ordinary requests also being denied. Apache version 2.4.35 on the backend server i…
USP-dos
  • 83
  • 1
  • 9
0
votes
0 answers

Mod_ssl is missing in modules folder of Apache

I am trying to convert my PHP application from http tp https. I got all the SSL certificates loaded in my server. But when restarting apache server I found the error as : "Cannot load G:/APPS/Apache Software Foundation/Apache2.2/modules/mod_ssl.so…
Shilpa
  • 1
  • 2
0
votes
1 answer

mod_ssl 'hides' some openssl ciphers in alpine docker

I have the following dockerfile: FROM alpine:3.8 RUN apk add --no-cache apache2 apache2-ssl php7-cli php7-apache2 php7-openssl RUN mkdir /run/apache2/ && \ echo '
Elad Shmitanka
  • 11
  • 1
0
votes
1 answer

mod_ssl SSLRequire allow variable starting with underscore

I am trying to enforce a rule so that only variables staring with underscore can authenticate a site. 1.Trying with SSLRequire %{SSL_CLIENT_S_DN_CN} option(will take the client cert CN) allow from all SSLOptions…
Sarath S
  • 373
  • 3
  • 6
  • 17
0
votes
2 answers

A secured network connection( eg SSL ) is handled by the web server correct?

Basically a php programmer does not need to handle the encrypting and decrypting of the messages? The web server handles all the encryption and decryption, and that means by the requested php page from the server is reached, the message is already…
dave
  • 14,991
  • 26
  • 76
  • 110
1 2 3 4 5
6
7 8