RE: Help configuring Apache2 + SSL + namebased vhosts

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Ah, this helped alot.

[Wed Mar 04 15:49:18 2009] [error] Init: Private key not found [Wed Mar
04 15:49:18 2009] [error] SSL Library Error: 218710120
error:0D094068:asn1 encoding routines:d2i_ASN1_SET:bad tag [Wed Mar 04
15:49:18 2009] [error] SSL Library Error: 218529960 error:0D0680A8:asn1
encoding routines:ASN1_CHECK_TLEN:wrong tag [Wed Mar 04 15:49:18 2009]
[error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding
routines:ASN1_ITEM_EX_D2I:nested asn1 error [Wed Mar 04 15:49:18 2009]
[error] SSL Library Error: 218734605 error:0D09A00D:asn1 encoding
routines:d2i_PrivateKey:ASN1 lib

The guide I've been following forgot to mention about the
'SSLCertificateKeyFile' setting. With this set everything worked 100%
ok. Thanks a lot for your help guys.

Now I have to find a way to disable entering my passphrase "every time"
(once a year) the server reboots.

Thank you again.

- Steffen


>From Andres Morey:

Hi Steffen,

Please turn your LogLevel to "info" to see if there are any messages in
the logs.

-Andres



-----Opprinnelig melding-----
Fra: Brian Mearns [mailto:mearns.b@xxxxxxxxx] 
Sendt: 4. mars 2009 15:58
Til: users@xxxxxxxxxxxxxxxx
Emne: Re:  Help configuring Apache2 + SSL + namebased
vhosts

On Wed, Mar 4, 2009 at 9:42 AM, Steffen Tronstad <sttr@xxxxxxxxxxxxxx>
wrote:
> apache2ctl -t
> Syntax OK
<clip>

Hmm. Well, there's only two more things I can think of. First is that
apachectl is looking at a different config file than your init.d
script.

Second is that apache is unable to bind to port 443. If it was working
before you added the SSL stuff, then this could be the issue: this is
normally reported when you try to start the server, but the particular
init.d script you're using might obfiscate error messages, I've run
into that problem before. Along those lines, see if you can start the
server directly using 'apache2ctl start', that might get you some more
informative error messages.

Anyway, to see if it's a port-binding issue, make a back up of your
config file, then remove all the SSL stuff and just have a normal
vhost that happens to listen on 443. If you still can't start the
server, then binding is probably the issue. This could mean something
else is listening there, or that you just don't have permission to
bind to that port.

Sorry can't be more help. Please let us know how it goes.
-Brian

-- 
Feel free to contact me using PGP Encryption:
Key Id: 0x3AA70848
Available from: http://pgp.mit.edu/

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server
Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx


---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx
   "   from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx
For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx



[Index of Archives]     [Open SSH Users]     [Linux ACPI]     [Linux Kernel]     [Linux Laptop]     [Kernel Newbies]     [Security]     [Netfilter]     [Bugtraq]     [Squid]     [Yosemite News]     [MIPS Linux]     [ARM Linux]     [Linux Security]     [Linux RAID]     [Samba]     [Video 4 Linux]     [Device Mapper]

  Powered by Linux