RE: My SSL Certificate is not working properly

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hello Mark,

Thankyou for the suggestions.

I can confirm:

1 - The nagios.conf already had the RequireSLL entries. I have doubled checked this.

2 - I put that line in the default file so it looked like this:
<VirtualHost *:80 Redirect /nagios https://domain/nagios>

Then when I tried to restart apache it said:

root@FTLNAGIOSLON:~# service apache2 restart
 * Restarting web server apache2                                               
 [Tue Dec 04 15:22:16 2012] [error] (EAI 5)No address associated with hostname: Could not resolve host name Redirect -- ignoring!
[Tue Dec 04 15:22:16 2012] [error] (EAI 5)No address associated with hostname: Could not resolve host name /nagios -- ignoring!
[Tue Dec 04 15:22:16 2012] [error] (EAI 5)No address associated with hostname: Could not resolve host name https://domain/nagios -- ignoring!
 ... waiting
 [Tue Dec 04 15:22:17 2012] [error] (EAI 5)No address associated with hostname: Could not resolve host name Redirect -- ignoring!
[Tue Dec 04 15:22:17 2012] [error] (EAI 5)No address associated with hostname: Could not resolve host name /nagios -- ignoring!
[Tue Dec 04 15:22:17 2012] [error] (EAI 5)No address associated with hostname: Could not resolve host name https://domain/nagios -- ignoring!
                                                                         [ OK ]

And still I never got a padlock showing encrypted page when going to https://domain/nagios

I browsed every link on the nagios page and this is what it logged in my access file

MY IP - username [04/Dec/2012:15:02:26 +0000] "GET /nagios/main.php HTTP/1.1" 200 6851 "https://domain/nagios/side.php"; "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:26 +0000] "GET /nagios/rss-newsfeed.php HTTP/1.1" 200 821 "https:// domain /nagios/main.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:26 +0000] "GET /nagios/rss-corefeed.php HTTP/1.1" 200 852 "https:// domain /nagios/main.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:28 +0000] "GET /nagios/cgi-bin/tac.cgi HTTP/1.1" 200 1300 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:30 +0000] "GET /nagios/cgi-bin/statusmap.cgi?host=all HTTP/1.1" 200 2004 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:31 +0000] "GET /nagios/cgi-bin/status.cgi?hostgroup=all&style=hostdetail HTTP/1.1" 200 1428 "https://ln1.ng.fulgent.co.uk/nagios/side.php"; "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:32 +0000] "GET /nagios/cgi-bin/status.cgi?host=all HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:33 +0000] "GET /nagios/cgi-bin/status.cgi?hostgroup=all&style=overview HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:35 +0000] "GET /nagios/cgi-bin/status.cgi?hostgroup=all&style=summary HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:36 +0000] "GET /nagios/cgi-bin/status.cgi?hostgroup=all&style=grid HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:37 +0000] "GET /nagios/cgi-bin/status.cgi?servicegroup=all&style=overview HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:38 +0000] "GET /nagios/cgi-bin/status.cgi?servicegroup=all&style=summary HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:38 +0000] "GET /nagios/cgi-bin/status.cgi?servicegroup=all&style=grid HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:39 +0000] "GET /nagios/cgi-bin/status.cgi?host=all&servicestatustypes=28 HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:40 +0000] "GET /nagios/cgi-bin/status.cgi?host=all&servicestatustypes=28 HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:41 +0000] "GET /nagios/cgi-bin/status.cgi?host=all&type=detail&hoststatustypes=3&serviceprops=42&servicestatustypes=28 HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:42 +0000] "GET /nagios/cgi-bin/status.cgi?hostgroup=all&style=hostdetail&hoststatustypes=12 HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:43 +0000] "GET /nagios/cgi-bin/outages.cgi HTTP/1.1" 200 1252 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:44 +0000] "GET /nagios/cgi-bin/avail.cgi HTTP/1.1" 200 1268 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:45 +0000] "GET /nagios/cgi-bin/trends.cgi HTTP/1.1" 200 1316 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:46 +0000] "GET /nagios/cgi-bin/history.cgi?host=all HTTP/1.1" 200 5844 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:46 +0000] "GET /nagios/stylesheets/history.css HTTP/1.1" 200 708 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/critical.png HTTP/1.1" 200 746 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/left.gif HTTP/1.1" 200 699 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/empty.gif HTTP/1.1" 200 1307 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/recovery.png HTTP/1.1" 200 875 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/stop.gif HTTP/1.1" 200 747 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/warning.png HTTP/1.1" 200 891 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/start.gif HTTP/1.1" 200 602 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:47 +0000] "GET /nagios/images/restart.gif HTTP/1.1" 200 618 "https:// domain /nagios/cgi-bin/history.cgi?host=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:49 +0000] "GET /nagios/cgi-bin/history.cgi?host=all HTTP/1.1" 200 5844 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:50 +0000] "GET /nagios/cgi-bin/summary.cgi HTTP/1.1" 200 2596 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:50 +0000] "GET /nagios/stylesheets/summary.css HTTP/1.1" 200 1044 "https:// domain /nagios/cgi-bin/summary.cgi" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:51 +0000] "GET /nagios/cgi-bin/histogram.cgi HTTP/1.1" 200 1316 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:52 +0000] "GET /nagios/cgi-bin/notifications.cgi?contact=all HTTP/1.1" 200 9081 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:52 +0000] "GET /nagios/stylesheets/notifications.css HTTP/1.1" 200 1012 "https:// domain /nagios/cgi-bin/notifications.cgi?contact=all" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:53 +0000] "GET /nagios/cgi-bin/showlog.cgi HTTP/1.1" 200 12841 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:53 +0000] "GET /nagios/stylesheets/showlog.css HTTP/1.1" 200 708 "https:// domain /nagios/cgi-bin/showlog.cgi" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:53 +0000] "GET /nagios/images/notify.gif HTTP/1.1" 200 618 "https:// domain /nagios/cgi-bin/showlog.cgi" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:53 +0000] "GET /nagios/images/info.png HTTP/1.1" 200 891 "https:// domain /nagios/cgi-bin/showlog.cgi" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:54 +0000] "GET /nagios/images/command.png HTTP/1.1" 200 891 "https:// domain /nagios/cgi-bin/showlog.cgi" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:54 +0000] "GET /nagios/cgi-bin/extinfo.cgi?type=3 HTTP/1.1" 200 1268 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:55 +0000] "GET /nagios/cgi-bin/extinfo.cgi?type=6 HTTP/1.1" 200 1268 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:56 +0000] "GET /nagios/cgi-bin/extinfo.cgi?type=0 HTTP/1.1" 200 1268 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:57 +0000] "GET /nagios/cgi-bin/extinfo.cgi?type=4 HTTP/1.1" 200 1268 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:58 +0000] "GET /nagios/cgi-bin/extinfo.cgi?type=7 HTTP/1.1" 200 1268 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:58 +0000] "GET /nagios/cgi-bin/config.cgi HTTP/1.1" 200 1428 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:02:58 +0000] "GET /nagios/stylesheets/config.css HTTP/1.1" 200 756 "https:// domain /nagios/cgi-bin/config.cgi" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:09:28 +0000] "GET /nagios/main.php HTTP/1.1" 200 6851 "https:// domain /nagios/side.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:09:29 +0000] "GET /nagios/rss-newsfeed.php HTTP/1.1" 200 821 "https:// domain /nagios/main.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"
MY IP - username [04/Dec/2012:15:09:29 +0000] "GET /nagios/rss-corefeed.php HTTP/1.1" 200 852 "https:// domain /nagios/main.php" "Mozilla/5.0 (Windows NT 6.2; WOW64; rv:17.0) Gecko/17.0 Firefox/17.0"



Are my config files ok?

Any help is appreciated. :-)

Thanks

Kind Regards
Andrew

-----Original Message-----
From: Mark Montague [mailto:mark@xxxxxxxxxxx] 
Sent: 04 December 2012 13:11
To: users@xxxxxxxxxxxxxxxx; Andrew Thompson
Subject: Re:  My SSL Certificate is not working properly

On December 4, 2012 6:00 , Andrew Thompson <andrew@xxxxxxxxxxxxx> wrote:
> If I go to the main URL - https://domain - everything appears to work 
> fine. Internet Explorer shows me the padlock to say its excrypted and 
> secured.
>
> If I try to go to the nagios virtual directory http://domain/nagios 
> <http://domain/nagios> - Internet Explorer refuses to show the 
> padlock. Firefox comments that the connection is only partially encrypted.
>

My guess is that you did not tell Nagios that its URL should be https://domain/nagios rather than http://domain/nagios. If this is the case, then you are getting the Nagios main page via https://domain/nagios but that page is requesting content (images, stylesheets, etc.) from http://domain/nagios, resulting in the problem you see. To fix this problem, try following the instructions in the "Implementing Forced TLS/SSL" section at http://nagios.sourceforge.net/docs/3_0/cgisecurity.html Alternatively, put the following directive in the <VirtualHost *:80> stanza in /etc/apache2/sites-available-default in order to make all nagios traffic use HTTPS:

Redirect /nagios https://domain.com/nagios

If these things do not work, view the page source in your web browser and check in your web server access log to find out what, specifically, is being requested over HTTP.

--
   Mark Montague
   mark@xxxxxxxxxxx


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux