You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@httpd.apache.org by jim meier <ji...@hotmail.com> on 2003/05/23 10:31:32 UTC

[users@httpd] Apache_gzip/deflate ?

Hi....

I have just a simple question:

If I install "gzip" on Apacha 1.3 or "deflate on Apache 2.0 is it possible 
to compress JSP and Java servlet output following this way ?

I have read an interesting article about the different kinds of output that 
can be compressed with gzip/deflate (like cgi,php,perl,....) but 
unfortunately there was no single word about JSPs and servlets. Another 
article was saying that I have to modify my servlets when I want to compress 
their output.
I hope that the things I have to do in order to get compressed JSP and  
servlet output are independent from the Application Server I use ?

Thanks a lot

JIM

_________________________________________________________________
MSN - More Useful Every Day  http://www.msn.de


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

RE: [users@httpd] Apache-ssl

Posted by Nigel Peck - MIS Web Design <ni...@miswebdesign.com>.

Thanks for the response.

I did, the certificate is from www.instantssl.com, who claim 99.3% browser
support.

Any more ideas?

Thanks
Nigel

MIS Web Design
http://www.miswebdesign.com/

> -----Original Message-----
> From: Daniel Lopez [mailto:daniel@rawbyte.com]
> Sent: 23 May 2003 13:49
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] Apache-ssl
>
>
>
>
> Taht is the expected behaviour, check
>
> http://apacheworld.org/ty24/site.chapter17.html
>
> for an explanation of how certificates work with Apache. You will either
> need to import the certificate into the browser or buy a
> certificate from a
> commercial company that is already trusted by most browsers (because they
> include their certificates in the default install)
>
> On Fri, May 23, 2003 at 11:12:59AM +0100, Nigel Peck - MIS Web
> Design wrote:
> > I'm running RedHat 7.3, Apache 1.3.27 with Apache-ssl 1.48.
> >
> > I installed Apache-ssl and the server starts up fine but when I
> visit it I
> > get a security warning from IE and the CA root certificate appears to be
> > from localhost.localdomain, I am using the apache bundle provided by the
> > certificate provider.
> >
> > Any ideas?
> >
> > Thanks
> > Nigel
> >
> > httpsd.conf:
> >
> > SSLRandomFile file /dev/urandom 1024
> >
> > SSLCACertificatePath /path/to/bundle
> >
> > SSLCacheServerPort 12345
> > SSLCacheServerPath bin/gcache
> > SSLSessionCacheTimeout 3600
> >
> > SSLCACertificateFile /path/to/bundle/ca_new.txt
> > SSLCertificateFile /root/only/path/to/xxx_xxx_com.crt
> > SSLCertificateKeyFile /root/only/path/to/myserver.key
> >
> >
> > ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP
> Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
>
> --
> Teach Yourself Apache 2 -- http://apacheworld.org/ty24/
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Apache-ssl

Posted by Daniel Lopez <da...@rawbyte.com>.


Taht is the expected behaviour, check 

http://apacheworld.org/ty24/site.chapter17.html

for an explanation of how certificates work with Apache. You will either
need to import the certificate into the browser or buy a certificate from a
commercial company that is already trusted by most browsers (because they
include their certificates in the default install)

On Fri, May 23, 2003 at 11:12:59AM +0100, Nigel Peck - MIS Web Design wrote:
> I'm running RedHat 7.3, Apache 1.3.27 with Apache-ssl 1.48.
> 
> I installed Apache-ssl and the server starts up fine but when I visit it I
> get a security warning from IE and the CA root certificate appears to be
> from localhost.localdomain, I am using the apache bundle provided by the
> certificate provider.
> 
> Any ideas?
> 
> Thanks
> Nigel
> 
> httpsd.conf:
> 
> SSLRandomFile file /dev/urandom 1024
> 
> SSLCACertificatePath /path/to/bundle
> 
> SSLCacheServerPort 12345
> SSLCacheServerPath bin/gcache
> SSLSessionCacheTimeout 3600
> 
> SSLCACertificateFile /path/to/bundle/ca_new.txt
> SSLCertificateFile /root/only/path/to/xxx_xxx_com.crt
> SSLCertificateKeyFile /root/only/path/to/myserver.key
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org

-- 
Teach Yourself Apache 2 -- http://apacheworld.org/ty24/

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Apache-ssl

Posted by WC -Sx- Jones <li...@insecurity.org>.

On Sunday, May 25, 2003, at 03:56  PM, Daniel Lopez wrote:

> Can you also make sure there are  no other places in the config file 
> that
> you are configuring SSL, in case it is interfering.


Then Apache2 would complain about duplication of definition errors on 
start-up;

That can be checked by doing a simple ./httpd -D SSL

in the appropriate bin directory...


-Sx-

http://insecurity.org/
_Sx____________________
  ('>    iudicium ferat
  //\   Have Computer -
  v_/_    Will Hack...

               \|/ ____ \|/
               "@'/ .. \`@"
               /_| \__/ |_\
                  \__U_/


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Apache-ssl

Posted by Daniel Lopez <da...@rawbyte.com>.

Unless you are doing client authentication, you can eliminate the directives
SSLCACertificatePath and SSLCACertificateFile.

Can you tell us what you get from

./usr/local/ssl/install/bin/openssl req -noout -text  -in /root/only/path/to/xxx_xxx_com.crt


Can you also make sure there are  no other places in the config file that
you are configuring SSL, in case it is interfering.

Cheers

Daniel




> Untrusted Authority and Invalid Name.
> 
> I've attached a jpg of the view certificate.
> 
> The certificate details seem to be the same as would be in a template:
> 
> E = root@localhost.localdomain
> CN = localhost.localdomain
> OU = SomeOrganizationalUnit
> O = SomeOrganization
> L = SomeCity
> S = SomeState
> C = --
> 
> Thanks
> Nigel
> 
> MIS Web Design
> http://www.miswebdesign.com/
> 
> > -----Original Message-----
> > From: Beau Hebert [mailto:bhebert@c-quential.com]
> > Sent: 23 May 2003 15:00
> > To: users@httpd.apache.org
> > Subject: RE: [users@httpd] Apache-ssl
> >
> >
> > Which Security Alert are you receiving (i.e. Untrusted Authority,
> > Invalid Date, Invalid Name)?
> >
> > Beau
> >
> > -----Original Message-----
> > From: Nigel Peck - MIS Web Design [mailto:nigel@miswebdesign.com]
> > Sent: Friday, May 23, 2003 6:13 AM
> > To: users@httpd.apache.org
> > Subject: [users@httpd] Apache-ssl
> >
> > I'm running RedHat 7.3, Apache 1.3.27 with Apache-ssl 1.48.
> >
> > I installed Apache-ssl and the server starts up fine but when I visit it
> > I
> > get a security warning from IE and the CA root certificate appears to be
> > from localhost.localdomain, I am using the apache bundle provided by the
> > certificate provider.
> >
> > Any ideas?
> >
> > Thanks
> > Nigel
> >
> > httpsd.conf:
> >
> > SSLRandomFile file /dev/urandom 1024
> >
> > SSLCACertificatePath /path/to/bundle
> >
> > SSLCacheServerPort 12345
> > SSLCacheServerPath bin/gcache
> > SSLSessionCacheTimeout 3600
> >
> > SSLCACertificateFile /path/to/bundle/ca_new.txt
> > SSLCertificateFile /root/only/path/to/xxx_xxx_com.crt
> > SSLCertificateKeyFile /root/only/path/to/myserver.key
> >
> >
> > ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP Server
> > Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
> >
> >
> >
> >
> > ---------------------------------------------------------------------
> > The official User-To-User support forum of the Apache HTTP Server Project.
> > See <URL:http://httpd.apache.org/userslist.html> for more info.
> > To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
> >    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> > For additional commands, e-mail: users-help@httpd.apache.org
> >


> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org

-- 
Teach Yourself Apache 2 -- http://apacheworld.org/ty24/

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

RE: [users@httpd] Apache-ssl

Posted by Nigel Peck - MIS Web Design <ni...@miswebdesign.com>.

Thanks Beau, I know it's pointing to the right key pair so it must be that the Certificate Request was bothched. It was the first time I'd done this so I had to exhaust me being wrong before I blamed them :)

I've sent a new certificated request...

Thanks for your help,
Nigel

MIS Web Design
http://www.miswebdesign.com/

> -----Original Message-----
> From: Beau Hebert [mailto:bhebert@c-quential.com]
> Sent: 23 May 2003 15:24
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] Apache-ssl
> 
> 
> I think that you're problem may be twofold. The first is that the cert
> is issued to localdomain.localhost rather than the fully qualified
> domain name that you wish to secure, and the second is that the 'Issued
> By:' is listed as localdomain.localhost rather than your Certificate
> Authority. Some of the many reasond that this could be is that your
> Certificate Request was botched, or your SSL configuration is pointing
> to the wrong key pairs.
> 
> Beau
> 
> -----Original Message-----
> From: Joseph A Nagy Jr [mailto:joseph_a_nagy_jr@charter.net] 
> Sent: Friday, May 23, 2003 10:12 AM
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] Apache-ssl
> 
> Nigel Peck - MIS Web Design wrote:
> > Untrusted Authority and Invalid Name.
> > 
> > I've attached a jpg of the view certificate.
> <snip>
> 
> Bad form. Could you not have just linked to it?
> 
> -- 
> Weilder of the mighty +1 LARTsaber of unsubscribe!
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server
> Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 
> 
> 
> 
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
> 


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

RE: [users@httpd] Apache-ssl

Posted by Beau Hebert <bh...@c-quential.com>.

I think that you're problem may be twofold. The first is that the cert
is issued to localdomain.localhost rather than the fully qualified
domain name that you wish to secure, and the second is that the 'Issued
By:' is listed as localdomain.localhost rather than your Certificate
Authority. Some of the many reasond that this could be is that your
Certificate Request was botched, or your SSL configuration is pointing
to the wrong key pairs.

Beau

-----Original Message-----
From: Joseph A Nagy Jr [mailto:joseph_a_nagy_jr@charter.net] 
Sent: Friday, May 23, 2003 10:12 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Apache-ssl

Nigel Peck - MIS Web Design wrote:
> Untrusted Authority and Invalid Name.
> 
> I've attached a jpg of the view certificate.
<snip>

Bad form. Could you not have just linked to it?

-- 
Weilder of the mighty +1 LARTsaber of unsubscribe!


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org




---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

RE: [users@httpd] Apache-ssl

Posted by Nigel Peck - MIS Web Design <ni...@miswebdesign.com>.

Sorry, could have done but as it was only 29k thought it wouldn't be a
problem.

> -----Original Message-----
> From: Joseph A Nagy Jr [mailto:joseph_a_nagy_jr@charter.net]
> Sent: 23 May 2003 15:12
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] Apache-ssl
>
>
> Nigel Peck - MIS Web Design wrote:
> > Untrusted Authority and Invalid Name.
> >
> > I've attached a jpg of the view certificate.
> <snip>
>
> Bad form. Could you not have just linked to it?
>
> --
> Weilder of the mighty +1 LARTsaber of unsubscribe!
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Apache-ssl

Posted by Joseph A Nagy Jr <jo...@charter.net>.

Nigel Peck - MIS Web Design wrote:
> Untrusted Authority and Invalid Name.
> 
> I've attached a jpg of the view certificate.
<snip>

Bad form. Could you not have just linked to it?

-- 
Weilder of the mighty +1 LARTsaber of unsubscribe!


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

RE: [users@httpd] Apache-ssl

Posted by Nigel Peck - MIS Web Design <ni...@miswebdesign.com>.

Untrusted Authority and Invalid Name.

The certificate details seem to be the same as would be in a template:

E = root@localhost.localdomain
CN = localhost.localdomain
OU = SomeOrganizationalUnit
O = SomeOrganization
L = SomeCity
S = SomeState
C = --

Thanks
Nigel

MIS Web Design
http://www.miswebdesign.com/

> -----Original Message-----
> From: Beau Hebert [mailto:bhebert@c-quential.com]
> Sent: 23 May 2003 15:00
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] Apache-ssl
>
>
> Which Security Alert are you receiving (i.e. Untrusted Authority,
> Invalid Date, Invalid Name)?
>
> Beau
>
> -----Original Message-----
> From: Nigel Peck - MIS Web Design [mailto:nigel@miswebdesign.com]
> Sent: Friday, May 23, 2003 6:13 AM
> To: users@httpd.apache.org
> Subject: [users@httpd] Apache-ssl
>
> I'm running RedHat 7.3, Apache 1.3.27 with Apache-ssl 1.48.
>
> I installed Apache-ssl and the server starts up fine but when I visit it
> I
> get a security warning from IE and the CA root certificate appears to be
> from localhost.localdomain, I am using the apache bundle provided by the
> certificate provider.
>
> Any ideas?
>
> Thanks
> Nigel
>
> httpsd.conf:
>
> SSLRandomFile file /dev/urandom 1024
>
> SSLCACertificatePath /path/to/bundle
>
> SSLCacheServerPort 12345
> SSLCacheServerPath bin/gcache
> SSLSessionCacheTimeout 3600
>
> SSLCACertificateFile /path/to/bundle/ca_new.txt
> SSLCertificateFile /root/only/path/to/xxx_xxx_com.crt
> SSLCertificateKeyFile /root/only/path/to/myserver.key
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server
> Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

RE: [users@httpd] Apache-ssl

Posted by Nigel Peck - MIS Web Design <ni...@miswebdesign.com>.

Untrusted Authority and Invalid Name.

I've attached a jpg of the view certificate.

The certificate details seem to be the same as would be in a template:

E = root@localhost.localdomain
CN = localhost.localdomain
OU = SomeOrganizationalUnit
O = SomeOrganization
L = SomeCity
S = SomeState
C = --

Thanks
Nigel

MIS Web Design
http://www.miswebdesign.com/

> -----Original Message-----
> From: Beau Hebert [mailto:bhebert@c-quential.com]
> Sent: 23 May 2003 15:00
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] Apache-ssl
>
>
> Which Security Alert are you receiving (i.e. Untrusted Authority,
> Invalid Date, Invalid Name)?
>
> Beau
>
> -----Original Message-----
> From: Nigel Peck - MIS Web Design [mailto:nigel@miswebdesign.com]
> Sent: Friday, May 23, 2003 6:13 AM
> To: users@httpd.apache.org
> Subject: [users@httpd] Apache-ssl
>
> I'm running RedHat 7.3, Apache 1.3.27 with Apache-ssl 1.48.
>
> I installed Apache-ssl and the server starts up fine but when I visit it
> I
> get a security warning from IE and the CA root certificate appears to be
> from localhost.localdomain, I am using the apache bundle provided by the
> certificate provider.
>
> Any ideas?
>
> Thanks
> Nigel
>
> httpsd.conf:
>
> SSLRandomFile file /dev/urandom 1024
>
> SSLCACertificatePath /path/to/bundle
>
> SSLCacheServerPort 12345
> SSLCacheServerPath bin/gcache
> SSLSessionCacheTimeout 3600
>
> SSLCACertificateFile /path/to/bundle/ca_new.txt
> SSLCertificateFile /root/only/path/to/xxx_xxx_com.crt
> SSLCertificateKeyFile /root/only/path/to/myserver.key
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server
> Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>
>
>
>
> ---------------------------------------------------------------------
> The official User-To-User support forum of the Apache HTTP Server Project.
> See <URL:http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
>    "   from the digest: users-digest-unsubscribe@httpd.apache.org
> For additional commands, e-mail: users-help@httpd.apache.org
>

RE: [users@httpd] Apache-ssl

Posted by Beau Hebert <bh...@c-quential.com>.

Which Security Alert are you receiving (i.e. Untrusted Authority,
Invalid Date, Invalid Name)?

Beau

-----Original Message-----
From: Nigel Peck - MIS Web Design [mailto:nigel@miswebdesign.com] 
Sent: Friday, May 23, 2003 6:13 AM
To: users@httpd.apache.org
Subject: [users@httpd] Apache-ssl

I'm running RedHat 7.3, Apache 1.3.27 with Apache-ssl 1.48.

I installed Apache-ssl and the server starts up fine but when I visit it
I
get a security warning from IE and the CA root certificate appears to be
from localhost.localdomain, I am using the apache bundle provided by the
certificate provider.

Any ideas?

Thanks
Nigel

httpsd.conf:

SSLRandomFile file /dev/urandom 1024

SSLCACertificatePath /path/to/bundle

SSLCacheServerPort 12345
SSLCacheServerPath bin/gcache
SSLSessionCacheTimeout 3600

SSLCACertificateFile /path/to/bundle/ca_new.txt
SSLCertificateFile /root/only/path/to/xxx_xxx_com.crt
SSLCertificateKeyFile /root/only/path/to/myserver.key


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org




---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

[users@httpd] Apache-ssl

Posted by Nigel Peck - MIS Web Design <ni...@miswebdesign.com>.

I'm running RedHat 7.3, Apache 1.3.27 with Apache-ssl 1.48.

I installed Apache-ssl and the server starts up fine but when I visit it I
get a security warning from IE and the CA root certificate appears to be
from localhost.localdomain, I am using the apache bundle provided by the
certificate provider.

Any ideas?

Thanks
Nigel

httpsd.conf:

SSLRandomFile file /dev/urandom 1024

SSLCACertificatePath /path/to/bundle

SSLCacheServerPort 12345
SSLCacheServerPath bin/gcache
SSLSessionCacheTimeout 3600

SSLCACertificateFile /path/to/bundle/ca_new.txt
SSLCertificateFile /root/only/path/to/xxx_xxx_com.crt
SSLCertificateKeyFile /root/only/path/to/myserver.key


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

Re: [users@httpd] Apache_gzip/deflate ?

Posted by Laurent Blume <la...@infores.com>.

jim meier wrote:
> Hi....
> 
> I have just a simple question:
> 
> If I install "gzip" on Apacha 1.3 or "deflate on Apache 2.0 is it 
> possible to compress JSP and Java servlet output following this way ?

Yes, it is, without any special configuration.
I simply copy/pasted the proposed configuration from the Apache docs, 
and it was working.

> I have read an interesting article about the different kinds of output 
> that can be compressed with gzip/deflate (like cgi,php,perl,....) but 
> unfortunately there was no single word about JSPs and servlets. Another 
> article was saying that I have to modify my servlets when I want to 
> compress their output.
> I hope that the things I have to do in order to get compressed JSP and  
> servlet output are independent from the Application Server I use ?

I suppose so, as long as the JSP are served through Apache, of course. 
In my case, I'm using Tomcat with mod_jk2, and as I said, nothing had to 
be done on the Tomcat or connector configuration.

HTH,

Laurent


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org