Solved

Apache 2.0 with SSL in Solaris Sparc

Posted on 2004-04-13
6
389 Views
Last Modified: 2013-12-05
Hi,
I am a total dummy in Apache and SSL. I studied through solutions from internet and worked until late night everyday but I just failed to get it working. I will appreciate if someone here guide me through and I promise I will give you all the points that I have.

I want to setup SSL with my Apache 2.0 in my Sun Solaris 8 environment. I have successfully generated the certificate and key and put in the respectively directories. I also put the following lines in my httpd.conf


<VirtualHost _default_:443>
ServerName 203.125.208.137
SSLEngine on
SSLCertificateFile \
/usr/local/ssl/certs/203.125.208.137.cert
SSLCertificateKeyFile \
/usr/local/ssl/private/203.125.208.137.key
</VirtualHost>

However, when I visit the URL http://203.125.208.137:443, I always got empty page. Do you know why?

It seems I have overlooked something.

1) Do I need to specify "loadmodule my mod_ssl.so file?" or something like that?
2) Do I need to tell apache or ssl which webapp application should apply the security and certificate?
3) I am using Tomcat 4 with apache to serve my web app and want to apply my SSL thing on my web app? Any more things I need to do?

Please help me.
Thank you.
0
Comment
Question by:i_am_diablo2000
  • 3
  • 3
6 Comments
 
LVL 15

Expert Comment

by:samri
ID: 10812430
Try to add DocumentRoot /some/path/

and make sure you had some html files there, so that you could do;

https://203.125.208.137/something.html

give this a shot.
0
 

Author Comment

by:i_am_diablo2000
ID: 10814345
Hello,

Are you saying to put

DocumentRoot /some/path/
 
in the <VirtualHost> directive?

Please explain.
0
 

Author Comment

by:i_am_diablo2000
ID: 10819955
Yo,

I am able to get it working now. However, I am facing another problem.
As I executed the following command for key creation,

/usr/local/openssl/bin/openssl genrsa -des3 -rand file1,file2 -out sonyCybershot.com.key 1024

I was prompted for password. And I found that I need to key in this password everytime I start up my Apache. The problem is my Apache is to start from the system script at /etc/rc3.d when system reboot.

So how should I supply the password to startup Apache during auto-startup?

Please enlighten me.
Thanks
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 15

Accepted Solution

by:
samri earned 150 total points
ID: 10822450
Some information from PAQ: from jcoman777
/--
http://www.experts-exchange.com/Web/Web_Servers/Apache/Q_20944200.html
--To get rid of the pass-phrase dialog at Apache startup time:
 
 Remove the encryption from the RSA private key (while preserving the original file):
   
 $ cp server.domain.tld.key server.domain.tld.key.orig
 $ openssl rsa -in server.domain.tld.key.orig -out server.domain.tld.key
 Enter PEM pass phrase: YOUR_PASSWORD_HERE
 
 Make sure the server.key file is now only readable by root:  
 
 $ chmod 400 server.domain.tld.key

\-------

I hope this would helps.
 
0
 

Author Comment

by:i_am_diablo2000
ID: 10829237
I think that is what I want. Take the points. Thanks.
0
 
LVL 15

Expert Comment

by:samri
ID: 10831940
no. problem :)
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Installing FreeBSD… FreeBSD is a darling of an operating system. The stability and usability make it a clear choice for servers and desktops (for the cunning). Savvy?  The Ports collection makes available every popular FOSS application and packag…
Using libpcap/Jpcap to capture and send packets on Solaris version (10/11) Library used: 1.      Libpcap (http://www.tcpdump.org) Version 1.2 2.      Jpcap(http://netresearch.ics.uci.edu/kfujii/Jpcap/doc/index.html) Version 0.6 Prerequisite: 1.      GCC …
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now