You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@httpd.apache.org by "P. Dwayne Miller" <dm...@espgroup.net> on 2001/10/10 16:32:22 UTC
Apache 2.0 and SSL (TLS)
I've downloaded and compiled the 2.0.16 beta of Apache. I was trying to
confirm that Apache 2.0 will support SSL (TLS) out of the box. I see
some code, that does not seem to build automatically under Win2K (there
is not project or workspace file) and was wondering if someone could help.
- Will Apache 2.0 support SSL?
- Can someone assist me in setting up Visual Studio C++ to compile the
tls modules?
TIA
Re: Proxy should work WAS Re: Apache 2.0 and SSL (TLS)
Posted by Zvi Har'El <rl...@math.technion.ac.il>.
On Thu, 11 Oct 2001, Justin Erenkrantz wrote:
> On Thu, Oct 11, 2001 at 06:06:06PM +0200, Zvi Har'El wrote:
> > It still does not. I run apache 1.3.19 (Redhat 7.1) on localhost:80 and
> > 2.0.26-dev (CVS snapshot) on localhost:8080, with the lines
>
> It should now. =-) Please try the latest CVS and provide feedback.
>
> Thanks. -- justin
>
Checked farther, using telnet localhost 8080. It seems we get
"Transfer-Encoding: chunked" without the bytecount before the first (and only)
chunk. There is a zero bytcount in the end though.
--
Dr. Zvi Har'El mailto:rl@math.technion.ac.il Department of Mathematics
tel:+972-54-227607 Technion - Israel Institute of Technology
fax:+972-4-8324654 http://www.math.technion.ac.il/~rl/ Haifa 32000, ISRAEL
"If you can't say somethin' nice, don't say nothin' at all." -- Thumper (1942)
Thursday, 25 Tishri 5762, 11 October 2001, 11:07PM
Re: Proxy should work WAS Re: Apache 2.0 and SSL (TLS)
Posted by Zvi Har'El <rl...@math.technion.ac.il>.
On Thu, 11 Oct 2001, Justin Erenkrantz wrote:
> On Thu, Oct 11, 2001 at 06:06:06PM +0200, Zvi Har'El wrote:
> > It still does not. I run apache 1.3.19 (Redhat 7.1) on localhost:80 and
> > 2.0.26-dev (CVS snapshot) on localhost:8080, with the lines
>
> It should now. =-) Please try the latest CVS and provide feedback.
>
> Thanks. -- justin
>
Now curl gets a reply, but...
=======================================================================
~$ curl --verbose -i http://localhost:8080/mirror/
* Connected to localhost (127.0.0.1)
> GET /mirror/ HTTP/1.1
Proxy-authorization: Basic cmw6cmxwYXNz
User-Agent: curl/7.9 (i386-redhat-linux-gnu) libcurl 7.9 (OpenSSL 0.9.6)
Host: localhost:8080
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
HTTP/1.1 200 OK
Date: Thu, 11 Oct 2001 21:01:32 GMT
Server: Apache/2.0.26-dev (Unix) mod_ssl/3.0a0 OpenSSL/0.9.6
Transfer-Encoding: chunked
Content-Type: text/html; charset=ISO-8859-1
Via: 1.1 localhost:80 (Apache/2.0.26-dev)
curl: (26) Receeived problem in the chunky parser
* Closing live connection (#0)
=======================================================================
I'll try to see if I can provide better clues.
Zvi.
--
Dr. Zvi Har'El mailto:rl@math.technion.ac.il Department of Mathematics
tel:+972-54-227607 Technion - Israel Institute of Technology
fax:+972-4-8324654 http://www.math.technion.ac.il/~rl/ Haifa 32000, ISRAEL
"If you can't say somethin' nice, don't say nothin' at all." -- Thumper (1942)
Thursday, 25 Tishri 5762, 11 October 2001, 11:02PM
Proxy should work WAS Re: Apache 2.0 and SSL (TLS)
Posted by Justin Erenkrantz <je...@ebuilt.com>.
On Thu, Oct 11, 2001 at 06:06:06PM +0200, Zvi Har'El wrote:
> > And, if proxy doesn't, please submit bug reports and someone (if
> > not me) will look into it. -- justin
>
> It still does not. I run apache 1.3.19 (Redhat 7.1) on localhost:80 and
> 2.0.26-dev (CVS snapshot) on localhost:8080, with the lines
It should now. =-) Please try the latest CVS and provide feedback.
Thanks. -- justin
Re: Apache 2.0 and SSL (TLS)
Posted by Doug MacEachern <do...@covalent.net>.
On Fri, 12 Oct 2001, Doug MacEachern wrote:
> great, looking much, much better here. i'll look into the failures
> here later.
>
> Failed Test Stat Wstat Total Fail Failed List of Failed
> -------------------------------------------------------------------------------
> modules/alias.t 62 3 4.84% 60-62
> modules/cgi.t 36 33 91.67% 1-4 6 8-27 29-36
> modules/vhost_alias.t 8 4 50.00% 2 4 6 8
> ssl/env.t 9 2304 22 22 100.00% 1-22
fyi - i just updated and all tests are passing here now (including t/TEST
-ssl) except for t/modules/negotiation (which i think is a known issue).
Re: Apache 2.0 and SSL (TLS)
Posted by Doug MacEachern <do...@covalent.net>.
great, looking much, much better here. i'll look into the failures
here later.
Failed Test Stat Wstat Total Fail Failed List of Failed
-------------------------------------------------------------------------------
modules/alias.t 62 3 4.84% 60-62
modules/cgi.t 36 33 91.67% 1-4 6 8-27 29-36
modules/vhost_alias.t 8 4 50.00% 2 4 6 8
ssl/env.t 9 2304 22 22 100.00% 1-22
Re: Apache 2.0 and SSL (TLS)
Posted by Justin Erenkrantz <je...@ebuilt.com>.
On Thu, Oct 11, 2001 at 10:06:18PM -0700, Justin Erenkrantz wrote:
> ssl/basicauth.t 3 2 66.67% 2-3
> ssl/env.t 9 2304 22 11 50.00% 12-22
> ssl/require.t 5 2 40.00% 2, 5
> ssl/varlookup.t 5 5 100.00% 1-5
> ssl/verify.t 3 1 33.33% 2
> 4 tests skipped.
>
> I'll try to take a look at the ssl-specific tests, but all of the tests
> were run over SSL (and passed), so I think the input filtering works.
> Perhaps something else is broken? -- justin
Of course, the input filtering was broken. =) I added back the
renegotiation check in churn_input and put a big comment there
explaining what it does and why it is needed. It is just so
non-obvious that I didn't understand what it did.
End result:
ssl/basicauth.......ok
ssl/env.............ok
ssl/http............ok
ssl/require.........ok
ssl/varlookup.......ok
ssl/verify..........ok
All tests successful.
Files=6, Tests=39, 21 wallclock secs (12.50 cusr + 0.94 csys = 13.44 CPU)
Lemme know if it doesn't work for you. -- justin
Re: Apache 2.0 and SSL (TLS)
Posted by Justin Erenkrantz <je...@ebuilt.com>.
On Thu, Oct 11, 2001 at 07:41:01PM -0700, Doug MacEachern wrote:
> On Thu, 11 Oct 2001, Justin Erenkrantz wrote:
>
> > What test is it failing on? I tested it with httpd-test when I
> > committed it and it passed.
>
> do you have Crypt::SSLeay installed? otherwise t/ssl tests are skipped.
> and you need to explicitly pass the '-ssl' switch for t/TEST to run all
> the other tests over ssl.
> anyhow, everything segvs running though ssl, 3 different stacktraces
> below...
Yeah, I did, but I changed the offending section of code after I ran
the test. Oh, well. I just made a commit that should have fixed
that.
Here's what I'm getting now:
Failed Test Status Wstat Total Fail Failed List of Failed
--------------------------------------------------------------------------------
modules/negotiation.t 98 44 44.90% 1-2, 6-7, 11-12, 16-17,
21-22, 24-25, 29-30, 34-
35, 39-40, 44-45, 47-48,
52-53, 57-58, 62-63, 67-
68, 70-71, 75-76, 80-81,
85-86, 90-91, 93, 95-96,
98
ssl/basicauth.t 3 2 66.67% 2-3
ssl/env.t 9 2304 22 11 50.00% 12-22
ssl/require.t 5 2 40.00% 2, 5
ssl/varlookup.t 5 5 100.00% 1-5
ssl/verify.t 3 1 33.33% 2
4 tests skipped.
I'll try to take a look at the ssl-specific tests, but all of the tests
were run over SSL (and passed), so I think the input filtering works.
Perhaps something else is broken? -- justin
Re: Apache 2.0 and SSL (TLS)
Posted by Doug MacEachern <do...@covalent.net>.
On Thu, 11 Oct 2001, Justin Erenkrantz wrote:
> What test is it failing on? I tested it with httpd-test when I
> committed it and it passed.
do you have Crypt::SSLeay installed? otherwise t/ssl tests are skipped.
and you need to explicitly pass the '-ssl' switch for t/TEST to run all
the other tests over ssl.
anyhow, everything segvs running though ssl, 3 different stacktraces
below...
apache/404:
(gdb) where
#0 0x401708b9 in chunk_free (ar_ptr=0x40211680, p=0x819c2f0) at malloc.c:3131
#1 0x40170828 in __libc_free (mem=0x819d378) at malloc.c:3054
#2 0x403d60de in CRYPTO_free (str=0x819d378) at mem.c:248
#3 0x403c2533 in ssl_clear_cipher_ctx (s=0x8187730) at ssl_lib.c:1771
#4 0x403bf601 in SSL_free (s=0x8187730) at ssl_lib.c:368
#5 0x403aa001 in ssl_hook_CloseConnection (filter=0x8184aa4)
at ssl_engine_kernel.c:145
#6 0x403a96a3 in ssl_io_filter_cleanup (data=0x8184aa4) at ssl_engine_io.c:529
#7 0x400446bc in run_cleanups (c=0x8184b54) at apr_pools.c:833
#8 0x40044872 in apr_pool_clear (a=0x818272c) at apr_pools.c:949
#9 0x80644d2 in child_main (child_num_arg=0) at prefork.c:618
#10 0x80648ac in make_child (s=0x809afe4, slot=0) at prefork.c:868
#11 0x80649ed in startup_children (number_to_start=1) at prefork.c:942
#12 0x8064e58 in ap_mpm_run (_pconf=0x809a82c, plog=0x80be94c, s=0x809afe4)
at prefork.c:1160
#13 0x806aa76 in main (argc=8, argv=0xbffff984) at main.c:432
#14 0x40112b5c in __libc_start_main (main=0x806a558 <main>, argc=8,
ubp_av=0xbffff984, init=0x805c264 <_init>, fini=0x808631c <_fini>,
rtld_fini=0x4000d634 <_dl_fini>, stack_end=0xbffff97c)
at ../sysdeps/generic/libc-start.c:129
apache/byterange:
(gdb) where
#0 0x20 in ?? ()
#1 0x8071174 in ap_pass_brigade (next=0x8184afc, bb=0x8184e44)
at util_filter.c:276
#2 0x806f5a8 in ap_flush_conn (c=0x818282c) at connection.c:138
#3 0x806f5ec in ap_lingering_close (c=0x818282c) at connection.c:174
#4 0x806480a in child_main (child_num_arg=0) at prefork.c:833
#5 0x80648ac in make_child (s=0x809afe4, slot=0) at prefork.c:868
#6 0x80649ed in startup_children (number_to_start=1) at prefork.c:942
#7 0x8064e58 in ap_mpm_run (_pconf=0x809a82c, plog=0x80be94c, s=0x809afe4)
at prefork.c:1160
#8 0x806aa76 in main (argc=8, argv=0xbffff984) at main.c:432
#9 0x40112b5c in __libc_start_main (main=0x806a558 <main>, argc=8,
ubp_av=0xbffff984, init=0x805c264 <_init>, fini=0x808631c <_fini>,
rtld_fini=0x4000d634 <_dl_fini>, stack_end=0xbffff97c)
at ../sysdeps/generic/libc-start.c:129
ssl/basicauth:
(gdb) where
#0 chunk_alloc (ar_ptr=0x40211680, nb=32) at malloc.c:2780
#1 0x4016fcb2 in __libc_malloc (bytes=28) at malloc.c:2714
#2 0x4001bce9 in apr_bucket_eos_create () at apr_buckets_eos.c:84
#3 0x80730b4 in end_output_stream (r=0x8117bac) at protocol.c:733
#4 0x807315b in ap_finalize_request_protocol (r=0x8117bac) at protocol.c:755
#5 0x80619f2 in ap_send_error_response (r=0x8117bac, recursive_error=0)
at http_protocol.c:1874
#6 0x8062f6b in ap_die (type=403, r=0x8117bac) at http_request.c:227
#7 0x80630a2 in ap_process_request (r=0x8117bac) at http_request.c:297
#8 0x805e710 in ap_process_http_connection (c=0x818282c) at http_core.c:289
#9 0x806f513 in ap_run_process_connection (c=0x818282c) at connection.c:82
#10 0x806f731 in ap_process_connection (c=0x818282c) at connection.c:219
#11 0x80647fc in child_main (child_num_arg=0) at prefork.c:832
#12 0x80648ac in make_child (s=0x809afe4, slot=0) at prefork.c:868
#13 0x80649ed in startup_children (number_to_start=1) at prefork.c:942
#14 0x8064e58 in ap_mpm_run (_pconf=0x809a82c, plog=0x80be94c, s=0x809afe4)
at prefork.c:1160
#15 0x806aa76 in main (argc=8, argv=0xbffff984) at main.c:432
#16 0x40112b5c in __libc_start_main (main=0x806a558 <main>, argc=8,
ubp_av=0xbffff984, init=0x805c264 <_init>, fini=0x808631c <_fini>,
rtld_fini=0x4000d634 <_dl_fini>, stack_end=0xbffff97c)
at ../sysdeps/generic/libc-start.c:129
Re: Apache 2.0 and SSL (TLS)
Posted by Justin Erenkrantz <je...@ebuilt.com>.
On Thu, Oct 11, 2001 at 04:08:03PM -0700, Doug MacEachern wrote:
> On Thu, 11 Oct 2001, Justin Erenkrantz wrote:
>
> > mod_ssl *should* be working again.
>
> sadly, it isn't. try running t/TEST -ssl (the httpd-test/perl-framework
> tests).
What test is it failing on? I tested it with httpd-test when I
committed it and it passed.
The only test that it failed is module/negotiation, which fails
even without the SSL and is probably in OtherBill's camp not mine. =)
-- justin
RE: Apache 2.0 and SSL (TLS)
Posted by Joshua Slive <jo...@slive.ca>.
> -----Original Message-----
> From: P. Dwayne Miller [mailto:dmiller@espgroup.net]
>
> Are there instructions on how to check out the latest CVS snapshot
> somewhere on the project site? I looked and could not find any
> anonymous access settings.
http://www.apache.org/foundation/cvs.html
Joshua.
Re: Apache 2.0 and SSL (TLS)
Posted by Chuck Murcko <ch...@topsail.org>.
You can also get complete 2.0 CVS snapshots at
http://cvs.apache.org/builds/httpd-proxy/
These include apr and apr-util and are configure-able.
Chuck
On Thursday, October 11, 2001, at 11:23 AM, P. Dwayne Miller wrote:
> Are there instructions on how to check out the latest CVS snapshot
> somewhere on the project site? I looked and could not find any
> anonymous access settings.
>
> Justin Erenkrantz wrote:
>
>> On Thu, Oct 11, 2001 at 12:32:19PM +0200, Zvi Har'El wrote:
>>
>>> As a matter of fact, if you wish to get a working mod_ssl and
>>> mod_proxy, you
>>> can get the cvs snapshot from "2001/09/28 17:53:02 +0000" using the
>>> -D option
>>> of cvs checkout. It works for me on a Linux platform, anyway.
>>>
>>
>> Or, you could get the current CVS snapshot. =-)
>>
>> mod_ssl *should* be working again.
>> And, if proxy doesn't, please submit bug reports and someone (if not
>> me) will look into it. -- justin
>>
>
Re: Apache 2.0 and SSL (TLS)
Posted by "P. Dwayne Miller" <dm...@espgroup.net>.
Are there instructions on how to check out the latest CVS snapshot
somewhere on the project site? I looked and could not find any
anonymous access settings.
Justin Erenkrantz wrote:
>On Thu, Oct 11, 2001 at 12:32:19PM +0200, Zvi Har'El wrote:
>
>>As a matter of fact, if you wish to get a working mod_ssl and mod_proxy, you
>>can get the cvs snapshot from "2001/09/28 17:53:02 +0000" using the -D option
>>of cvs checkout. It works for me on a Linux platform, anyway.
>>
>
>Or, you could get the current CVS snapshot. =-)
>
>mod_ssl *should* be working again.
>
>And, if proxy doesn't, please submit bug reports and someone (if
>not me) will look into it. -- justin
>
Re: Apache 2.0 and SSL (TLS)
Posted by Doug MacEachern <do...@covalent.net>.
On Thu, 11 Oct 2001, Justin Erenkrantz wrote:
> mod_ssl *should* be working again.
sadly, it isn't. try running t/TEST -ssl (the httpd-test/perl-framework
tests).
Re: Apache 2.0 and SSL (TLS)
Posted by Zvi Har'El <rl...@math.technion.ac.il>.
On Thu, 11 Oct 2001, Justin Erenkrantz wrote:
> On Thu, Oct 11, 2001 at 12:32:19PM +0200, Zvi Har'El wrote:
> > As a matter of fact, if you wish to get a working mod_ssl and mod_proxy, you
> > can get the cvs snapshot from "2001/09/28 17:53:02 +0000" using the -D option
> > of cvs checkout. It works for me on a Linux platform, anyway.
>
> Or, you could get the current CVS snapshot. =-)
>
Got it.
> mod_ssl *should* be working again.
It does! Thanks!
>
> And, if proxy doesn't, please submit bug reports and someone (if
> not me) will look into it. -- justin
It still does not. I run apache 1.3.19 (Redhat 7.1) on localhost:80 and
2.0.26-dev (CVS snapshot) on localhost:8080, with the lines
=========================================
Listen 8080
<VirtualHost _default_:8080>
ProxyVia full
ProxyPass /mirror/ http://localhost
ProxyPassReverse /mirror http://localhost
</VirtualHost>
=========================================
in /usr/local/apache2/conf/httpd.conf
finally, I do "curl http://localhost:8080/mirror/". I expect to get the 1.3.19
index page. However, the current snapshot just get stuck. with "curl -I"
everything works fine (i.e, HEAD works):
==============================================================================
/tmp$ curl --verbose -I http://localhost:8080/mirror/
* Connected to localhost (127.0.0.1)
> HEAD /mirror/ HTTP/1.1
User-Agent: curl/7.9 (i386-redhat-linux-gnu) libcurl 7.9 (OpenSSL 0.9.6)
Host: localhost:8080
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
HTTP/1.1 200 OK
Date: Thu, 11 Oct 2001 15:45:22 GMT
Server: Apache/2.0.26-dev (Unix) mod_ssl/3.0a0 OpenSSL/0.9.6
Content-Type: text/html; charset=ISO-8859-1
Via: 1.1 localhost:80 (Apache/2.0.26-dev)
* Connection (#0) left alive
* Closing live connection (#0)
==============================================================================
but with "curl -i" it failes:
==============================================================================
/tmp$ curl --verbose -i http://localhost:8080/mirror/
* Connected to localhost (127.0.0.1)
> GET /mirror/ HTTP/1.1
User-Agent: curl/7.9 (i386-redhat-linux-gnu) libcurl 7.9 (OpenSSL 0.9.6)
Host: localhost:8080
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
[no answer]
==============================================================================
Although I see both HEAD and GET in the 1.3.19 server access log:
==============================================================================
127.0.0.1 - - [11/Oct/2001:17:45:22 +0200] "HEAD / HTTP/1.1" 200 0 "-"
"curl/7.9 (i386-redhat-linux-gnu) libcurl 7.9 (OpenSSL 0.9.6)"
127.0.0.1 - - [11/Oct/2001:17:48:56 +0200] "GET / HTTP/1.1" 200 3320 "-"
"curl/7.9 (i386-redhat-linux-gnu) libcurl 7.9 (OpenSSL 0.9.6)"
==============================================================================
If I use the snapshot from 2001.09.28.17.53.02 (which is release 1.373 of
httpd_2.0/CHANGES), I get an answer:
==============================================================================
/tmp$ curl --verbose -i http://localhost:8080/mirror/
* Connected to localhost (127.0.0.1)
> GET /mirror/ HTTP/1.1
User-Agent: curl/7.9 (i386-redhat-linux-gnu) libcurl 7.9 (OpenSSL 0.9.6)
Host: localhost:8080
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */*
HTTP/1.1 200 OK
Date: Thu, 11 Oct 2001 15:58:01 GMT
Server: Apache/2.0.26-dev (Unix) mod_ssl/3.0a0 OpenSSL/0.9.6
Content-Type: text/html; charset=ISO-8859-1
Via: 1.1 localhost:80 (Apache/2.0.26-dev)
Content-Length: 3308
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2 Final//EN">
<HTML>
<HEAD>
<TITLE>Index of /</TITLE>
</HEAD>
<BODY>
<H1>Index of /</H1>
[...]
</PRE><HR>
<ADDRESS>Apache/1.3.19 Server at localhost Port 80</ADDRESS>
</BODY></HTML>
* Connection (#0) left alive
* Closing live connection (#0)
==============================================================================
Which is fine!
No later snapshot works, unfortunately. Again, mod_ssl, which didn't work
either, now works, and thanks for that.
Zvi.
--
Dr. Zvi Har'El mailto:rl@math.technion.ac.il Department of Mathematics
tel:+972-54-227607 Technion - Israel Institute of Technology
fax:+972-4-8324654 http://www.math.technion.ac.il/~rl/ Haifa 32000, ISRAEL
"If you can't say somethin' nice, don't say nothin' at all." -- Thumper (1942)
Thursday, 24 Tishri 5762, 11 October 2001, 5:40PM
Re: Apache 2.0 and SSL (TLS)
Posted by Justin Erenkrantz <je...@ebuilt.com>.
On Thu, Oct 11, 2001 at 12:32:19PM +0200, Zvi Har'El wrote:
> As a matter of fact, if you wish to get a working mod_ssl and mod_proxy, you
> can get the cvs snapshot from "2001/09/28 17:53:02 +0000" using the -D option
> of cvs checkout. It works for me on a Linux platform, anyway.
Or, you could get the current CVS snapshot. =-)
mod_ssl *should* be working again.
And, if proxy doesn't, please submit bug reports and someone (if
not me) will look into it. -- justin
Re: Apache 2.0 and SSL (TLS)
Posted by Zvi Har'El <rl...@math.technion.ac.il>.
As a matter of fact, if you wish to get a working mod_ssl and mod_proxy, you
can get the cvs snapshot from "2001/09/28 17:53:02 +0000" using the -D option
of cvs checkout. It works for me on a Linux platform, anyway.
Zvi.
On Wed, 10 Oct 2001, William A. Rowe, Jr. wrote:
> You are a few too many versions back, mod_tls is gone [it was an initial
> proof-of-concept for TLS/SSL as-a-filter.] The mod_ssl has replaced it.
>
> At this time (in 2.0.26 development) mod_ssl does not work, due to filtering
> schema changes. It will work effectively when 2.0.26 is announced.
>
> For Win32, the only requirement is that you have a fully built OpenSSL tree
> in the httpd-2.0/srclib/openssl directory (0.9.6b tested and recommended.)
>
> Because there have been so many hiccups, you may want to hold for a bit, as
> 2.0.26 has significant changes to improve the Win32 port. We all hope you
> won't be waiting long. If you can't wait, checkout from CVS on the
> APACHE_2_0_25 tag. Happy hacking.
>
> Bill
>
> ----- Original Message -----
> From: "P. Dwayne Miller" <dm...@espgroup.net>
> To: <de...@httpd.apache.org>
> Sent: Wednesday, October 10, 2001 9:32 AM
> Subject: Apache 2.0 and SSL (TLS)
>
>
> > I've downloaded and compiled the 2.0.16 beta of Apache. I was trying to
> > confirm that Apache 2.0 will support SSL (TLS) out of the box. I see
> > some code, that does not seem to build automatically under Win2K (there
> > is not project or workspace file) and was wondering if someone could help.
> >
> > - Will Apache 2.0 support SSL?
> > - Can someone assist me in setting up Visual Studio C++ to compile the
> > tls modules?
> >
> > TIA
> >
> >
>
>
--
Dr. Zvi Har'El mailto:rl@math.technion.ac.il Department of Mathematics
tel:+972-54-227607 Technion - Israel Institute of Technology
fax:+972-4-8324654 http://www.math.technion.ac.il/~rl/ Haifa 32000, ISRAEL
"If you can't say somethin' nice, don't say nothin' at all." -- Thumper (1942)
Thursday, 24 Tishri 5762, 11 October 2001, 12:27PM
Re: Apache 2.0 and SSL (TLS)
Posted by "William A. Rowe, Jr." <wr...@covalent.net>.
You are a few too many versions back, mod_tls is gone [it was an initial
proof-of-concept for TLS/SSL as-a-filter.] The mod_ssl has replaced it.
At this time (in 2.0.26 development) mod_ssl does not work, due to filtering
schema changes. It will work effectively when 2.0.26 is announced.
For Win32, the only requirement is that you have a fully built OpenSSL tree
in the httpd-2.0/srclib/openssl directory (0.9.6b tested and recommended.)
Because there have been so many hiccups, you may want to hold for a bit, as
2.0.26 has significant changes to improve the Win32 port. We all hope you
won't be waiting long. If you can't wait, checkout from CVS on the
APACHE_2_0_25 tag. Happy hacking.
Bill
----- Original Message -----
From: "P. Dwayne Miller" <dm...@espgroup.net>
To: <de...@httpd.apache.org>
Sent: Wednesday, October 10, 2001 9:32 AM
Subject: Apache 2.0 and SSL (TLS)
> I've downloaded and compiled the 2.0.16 beta of Apache. I was trying to
> confirm that Apache 2.0 will support SSL (TLS) out of the box. I see
> some code, that does not seem to build automatically under Win2K (there
> is not project or workspace file) and was wondering if someone could help.
>
> - Will Apache 2.0 support SSL?
> - Can someone assist me in setting up Visual Studio C++ to compile the
> tls modules?
>
> TIA
>
>