[gentoo-user] OT - Need help configuring apache for SSL

public inbox for gentoo-user@lists.gentoo.org
 help / color / mirror / Atom feed

* [gentoo-user] OT - Need help configuring apache for SSL
@ 2006-07-11 22:59 Michael Sullivan
  2006-07-11 23:12 ` [gentoo-user] OT - Need help configuring apache for SSL [SOLVED] Michael Sullivan
  0 siblings, 1 reply; 2+ messages in thread
From: Michael Sullivan @ 2006-07-11 22:59 UTC (permalink / raw
  To: gentoo-user

I'm trying to make use of SSL on my server box.  I followed the wiki at
http://gentoo-wiki.com/Apache_Modules_mod_ssl on my client PC and
everything worked right.  However, when I try it on my server PC and I
go to start Apache with the new configs for SSL, Apache won't start and
I get the following output to /var/log/apache2/error_log:

bullet ssl # cat /var/log/apache2/error_log
[Tue Jul 11 17:55:11 2006] [notice] suEXEC mechanism enabled
(wrapper: /usr/sbin/suexec2)
[Tue Jul 11 17:55:11 2006] [error] Init: Unable to read server
certificate from file /usr/lib/apache2/conf/ssl/server.pem
[Tue Jul 11 17:55:11 2006] [error] SSL Library Error: 218529960
error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Tue Jul 11 17:55:11 2006] [error] SSL Library Error: 218595386
error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error

The permissions on the files in /usr/lib/apache2/conf/ssl are the same
on both my client and server box.  Here they are:

bullet conf # pwd
/usr/lib/apache2/conf
bullet conf # ls -l
total 96
-rw-r--r-- 1 root root  2068 Jul  6 22:30 apache2-builtin-mods
drwxr-xr-x 5 root root  4096 Dec 12  2005 conf
-rw-r--r-- 1 root root 37188 Jul  6 22:30 httpd.conf
-rw-r--r-- 1 root root  1131 Mar 30 15:21 jk-workers.properties
-rw-r--r-- 1 root root 12958 Jul  6 22:30 magic
-rw-r--r-- 1 root root 15020 Nov 27  2005 mime.types
drwxr-xr-x 2 root root  4096 Jul 10 22:14 modules.d
drwx------ 2 root root  4096 Jul 11 17:53 ssl
drwxr-xr-x 2 root root  4096 Jul 11 17:54 vhosts.d
bullet conf # ls -l ssl
total 16
-r-------- 1 root root 794 Sep 25  2005 server.crt
-rw-r--r-- 1 root root 582 Jul 11 17:53 server.csr
-r-------- 1 root root 891 Sep 25  2005 server.key
-rw-r--r-- 1 root root 493 Jul 10 22:21 server.pem

What's going wrong here?  Why can't I start Apache with SSL?

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: [gentoo-user] OT - Need help configuring apache for SSL [SOLVED]
  2006-07-11 22:59 [gentoo-user] OT - Need help configuring apache for SSL Michael Sullivan
@ 2006-07-11 23:12 ` Michael Sullivan
  0 siblings, 0 replies; 2+ messages in thread
From: Michael Sullivan @ 2006-07-11 23:12 UTC (permalink / raw
  To: gentoo-user

On Tue, 2006-07-11 at 17:59 -0500, Michael Sullivan wrote:
> I'm trying to make use of SSL on my server box.  I followed the wiki at
> http://gentoo-wiki.com/Apache_Modules_mod_ssl on my client PC and
> everything worked right.  However, when I try it on my server PC and I
> go to start Apache with the new configs for SSL, Apache won't start and
> I get the following output to /var/log/apache2/error_log:
> 
> bullet ssl # cat /var/log/apache2/error_log
> [Tue Jul 11 17:55:11 2006] [notice] suEXEC mechanism enabled
> (wrapper: /usr/sbin/suexec2)
> [Tue Jul 11 17:55:11 2006] [error] Init: Unable to read server
> certificate from file /usr/lib/apache2/conf/ssl/server.pem
> [Tue Jul 11 17:55:11 2006] [error] SSL Library Error: 218529960
> error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
> [Tue Jul 11 17:55:11 2006] [error] SSL Library Error: 218595386
> error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
> 
> The permissions on the files in /usr/lib/apache2/conf/ssl are the same
> on both my client and server box.  Here they are:
> 
> bullet conf # pwd
> /usr/lib/apache2/conf
> bullet conf # ls -l
> total 96
> -rw-r--r-- 1 root root  2068 Jul  6 22:30 apache2-builtin-mods
> drwxr-xr-x 5 root root  4096 Dec 12  2005 conf
> -rw-r--r-- 1 root root 37188 Jul  6 22:30 httpd.conf
> -rw-r--r-- 1 root root  1131 Mar 30 15:21 jk-workers.properties
> -rw-r--r-- 1 root root 12958 Jul  6 22:30 magic
> -rw-r--r-- 1 root root 15020 Nov 27  2005 mime.types
> drwxr-xr-x 2 root root  4096 Jul 10 22:14 modules.d
> drwx------ 2 root root  4096 Jul 11 17:53 ssl
> drwxr-xr-x 2 root root  4096 Jul 11 17:54 vhosts.d
> bullet conf # ls -l ssl
> total 16
> -r-------- 1 root root 794 Sep 25  2005 server.crt
> -rw-r--r-- 1 root root 582 Jul 11 17:53 server.csr
> -r-------- 1 root root 891 Sep 25  2005 server.key
> -rw-r--r-- 1 root root 493 Jul 10 22:21 server.pem
> 
> What's going wrong here?  Why can't I start Apache with SSL?
> 

Nevermind.  I got SSLCertificateFile and SSLCertificateKeyFile confused
in /etc/apache2/modules.d/41_mod_ssl.default-vhost.conf .  It's fixed
now...

-- 
gentoo-user@gentoo.org mailing list



^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2006-07-11 23:19 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-07-11 22:59 [gentoo-user] OT - Need help configuring apache for SSL Michael Sullivan
2006-07-11 23:12 ` [gentoo-user] OT - Need help configuring apache for SSL [SOLVED] Michael Sullivan

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox