?
Solved

How does coldfusionmx handle ssl connections

Posted on 2004-11-15
9
Medium Priority
?
169 Views
Last Modified: 2013-12-24
I would like to connect to my coldfusionmx server with a SSL connection over the internet.
I run coldfusionms on my Linux Red Hat ES Server.
How does coldfusionmx handle SSL connections from an Apache 2.0 type web server using mod.ssl
Coldfusionmx is working fine on my Apache http non secure server. Can't get it to work with SSL however.
Appreciate any advise or inforamtion in this area.
Keith Henriques
0
Comment
Question by:keitharis
  • 5
  • 4
9 Comments
 
LVL 17

Expert Comment

by:Tacobell777
ID: 12591154
ColdFusion files will run fine under SSL, it has nothing to do with ColdFusion itself, it all depends on whether you are able to install SSL for the site you run CF on.
0
 

Author Comment

by:keitharis
ID: 12594252
Hello Tacobell777
I am running SSL on the same site I am running Coldfusion on.
I can connect to https://www.mysite.org
I cannot connect to http://www.mysite.org  Directly. I am directed to the html root directory
where I have installed a page directing users to link to https://www.myserver.org
I do want my entire server to be secure.

I cannot connect to https://www.mysite.com:8500/mycfm files(etc) or CFIDE/administrator/index.cfm
I can connect if I use http://www.mysite.com:8400/mychm files(etc)or CFIDE/asministrator/index.cfm

Cab you help me with why SSL (https://) works fine  on my site with everything but coldfusion.
When I add:
Listen 8500 to my ssl.conf file in conf.d (mod.ssl)
Apache will not start with this warning:
Address already in use could not bind to address 0.0.0.0:8500

my httpd.conf file in the apache conf directory listens only to:
Listen 0.0.0.0.80

I will be grateful for any help you can give.
I know this is a very difficult topic and will grant another 500 points as I have been trying to find
an answer for three days.
Thank you in advance.
Keith Henriques
0
 
LVL 17

Expert Comment

by:Tacobell777
ID: 12597336
you should really ask these questions int he apache area, they will know more about this.

I do know that "Address already in use could not bind to address 0.0.0.0:8500"
means that another program is already using that address range, do you have IIS installed as well?

and you cannot access https when try and access https://www.mysite.com:8500/mycfm and 8500 is not the port you installed the https on.

why are you using port 8500 anyway, is that the developer version of CF?
0
Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

 

Author Comment

by:keitharis
ID: 12598760
Hello Tacobell777:
I think the question. "Why am I using port 8500" may be the issue. I actually don't know. I set up
coldfusionmx in my Linux server and it installed on port 8500. I thought that was what was supposed to
happen. I have a licensed copy of coldfusionmx. I only have Apache2.xx installed with mod.ssl. this is my
Red Hat Installation that came with my OS.

It is really quite confusing because when I comment out:
Listen 0.0.0.0:80
In my httpd.conf file I no longer access my web site www.mysite.org because the server no longer listens
on port 80. Only port 443 in my ssl.conf is now open. BUT I can still connect to my coldfusionmx server using
http://mysite.org:8500/CFIDE/administrator/index.cfm. (Note that I do not need to enter https:// for coldfusionmx
but I do on a connect to the site itself because Apache is no longer listening on port 80.
Somehow my coldfusionmx server is listening and accepting a http:// connection! It will not however; accept a
https:// connection.

Shoud coldfusionmx be configured differently. What is the "Developer Version"? Is there a production version
that might work for https:// connections. What I have running now connects to my databases in mysql very easily
and effectively. It may be that I need to migrate out of "Development" into another model for things to work
properly.
Thank you again in  advance.
Keith Henriques
0
 

Author Comment

by:keitharis
ID: 12598992
Hello Again:
I found that when I shut my Apache server down completely I can still connect to coldfusionmx.
http://myserver.org:8500/CFIDE/ (etc).
I must have an issue with coldfusionmx accepting a SSl connection.
I have two servers on the same machine with the same IP and Name. Apache and coldfusionmx!
Thank you again.
Keith Henriques
0
 
LVL 17

Expert Comment

by:Tacobell777
ID: 12601495
you are using the development server that comes with CF, i.e. ColdFusions own web server.

You need to run the apache connector, that are located in the cfusionmx directory somewhere

this might help you
http://www.houseoffusion.com/cf_lists/messages.cfm/threadid:575/forumid:14
0
 

Author Comment

by:keitharis
ID: 12612027
Hello:
I have been unable to run the connector program with the apxs utility.
Can you help with how to do this exactly
Thank you in advance,
Keith Henriques
0
 
LVL 17

Accepted Solution

by:
Tacobell777 earned 1500 total points
ID: 12612325
what exactly is the problem? Is there an error?
0
 

Author Comment

by:keitharis
ID: 12625209
Hello:
I have not been able to build the connector from the source code with apxs. I think it may be easier to just
uninstall cold fusion an then reinstall it and not use the default coldfusion server and connect to Apache at the
new install. It sems that making changes in servers after installl is a long and complicated process. Or do I jsut have it
wrong.
What do you think?
Keith Henriques
 
0

Featured Post

Prep for the ITIL® Foundation Certification Exam

December’s Course of the Month is now available! Enroll to learn ITIL® Foundation best practices for delivering IT services effectively and efficiently.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Have you ever sent email via ColdFusion and thought of tracking this mail to capture the exact date and time when the message was opened ?  If yes, then this article is for you ! First we need a table user_email with columns user_id , email , sub…
When it comes to security, close monitoring is a must. According to WhiteHat Security annual report, a substantial number of all web applications are vulnerable always. Monitis offers a new product - fully-featured Website security monitoring and pr…
Please read the paragraph below before following the instructions in the video — there are important caveats in the paragraph that I did not mention in the video. If your PaperPort 12 or PaperPort 14 is failing to start, or crashing, or hanging, …
Loops Section Overview
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question