Apache mod_ssl and FIPS 140-2

This is a multi-part message in MIME format.

------_=_NextPart_001_01C7AF7A.A8EA93E6
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

Does anyone know if the Apache v2.2.x implementation of OpenSSL mod_ssl
is FIPS 140-2 validated? What version of OpenSSL is distributed with the
current version of Apache? Any help is much appreciated...

Thanks,

David Gerendas, CISSP
McAfee, Inc.
949-297-5600 Main
949-860-3369 Direct
949-289-8677 Mobile
david_gerendas [at] mcafee.com <mailto:david_gerendas [at] mcafee.com>

------_=_NextPart_001_01C7AF7A.A8EA93E6
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns:st1=3D"urn:schemas-microsoft-com:office:smarttags" =
xmlns=3D"http://www.w3.org/TR/REC-html40">

<head>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
<o:SmartTagType =
namespaceuri=3D"urn:schemas-microsoft-com:office:smarttags"
name=3D"place"/>

<style>

</style>

</head>

<body lang=3DEN-US link=3Dblue vlink=3Dpurple>

<div class=3DSection1>

Does anyone know if the Apache v2.2.x implementation =
of
OpenSSL mod_ssl is FIPS 140-2 validated? What version of OpenSSL is =
distributed
with the current version of Apache? Any help is much =
appreciated…<o:p></o:p>

<o:p> </o:p>

Thanks,<o:p></o:p>

David Gerendas, CISSP 
McAfee, =
Inc.
 
949-297-5600 =
Main
 
949-860-3369 =
Direct
 
949-289-8677 =
<st1:place
w:st=3D"on">Mobile</st1:place> 
<a href=3D"mailto:david_gerendas [at] mcafee.com">david_gerendas [at] mcafee.com</a>
<o:p></o:p>

<o:p> </o:p>

</div>

</body>

</html>

------_=_NextPart_001_01C7AF7A.A8EA93E6--
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

http://csrc.nist.gov/cryptval/140-1/1401val2007.htm#733

Best~
-d

David_Gerendas [at] McAfee.com wrote:
> Does anyone know if the Apache v2.2.x implementation of OpenSSL mod_ssl=

> is FIPS 140-2 validated? What version of OpenSSL is distributed with th=
e
> current version of Apache? Any help is much appreciated=85
>
>
>
> Thanks,
>
> *David Gerendas, **CISSP*
> McAfee, Inc.
> 949-297-5600 Main
> 949-860-3369 Direct
> 949-289-8677 Mobile
> david_gerendas [at] mcafee.com <mailto:david_gerendas [at] mcafee.com>
>
>
>
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

This is a multi-part message in MIME format.

------_=_NextPart_001_01C7AFA0.11D703D2
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

We have apache 2.2.4 compiled with all modules but commented out all
load modules. Do not have anything in httpd.conf file to state that this
is https. But when I start apache, it tries to goto https and prompts
for pass phrase. How does apache determine that this is https whereas
this is actually a http server. After I enter a passphrase, it shows
successful but the server never starts up. Can someone please help?

Also can apache support both http and https at different ports at the
same time?

Thanks much for your help.

SS

[root [at] rh4_109 bin]# ./apachectl start

Apache/2.2.4 mod_ssl/2.2.4 (Pass Phrase Dialog)

Some of your private key files are encrypted for security reasons.

In order to read them you have to provide the pass phrases.

Server 10.3.110.109:443 (RSA)

Enter pass phrase:

OK: Pass Phrase Dialog successful.

Httpd.conf

# Secure (SSL/TLS) connections

#Include conf/extra/httpd-ssl.conf

#

# Note: The following must must be present to support

# starting without SSL on platforms with no /dev/random equivalent

# but a statically compiled-in mod_ssl.

#

<IfModule ssl_module>

SSLRandomSeed startup builtin

SSLRandomSeed connect builtin

</IfModule>

------_=_NextPart_001_01C7AFA0.11D703D2
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable

<html xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns=3D"http://www.w3.org/TR/REC-html40">

<head>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
<style>

</style>

</head>

<body lang=3DEN-US link=3Dblue vlink=3Dpurple>

<div class=3DSection1>

We have apache 2.2.4 compiled with =
all
modules but commented out all load modules. Do not have anything in =
httpd.conf
file to state that this is https. But when I start apache, it tries to =
goto
https and prompts for pass phrase. How does apache determine that this =
is https
whereas this is actually a http server. After I enter a passphrase, it =
shows
successful but the server never starts up. Can someone please =
help?<o:p></o:p>

<o:p> </o:p>

Also can apache support both http =
and
https at different ports at the same time?<o:p></o:p>

<o:p> </o:p>

Thanks much for your =
help.<o:p></o:p>

SS<o:p></o:p>

<o:p> </o:p>

<o:p> </o:p>

<o:p> </o:p>

[root [at] rh4_109 bin]# ./apachectl =
start<o:p></o:p>

Apache/2.2.4 mod_ssl/2.2.4 (Pass =
Phrase
Dialog)<o:p></o:p>

Some of your private key files are
encrypted for security reasons.<o:p></o:p>

In order to read them you have to =
provide
the pass phrases.<o:p></o:p>

<o:p> </o:p>

Server 10.3.110.109:443 =
(RSA)<o:p></o:p>

Enter pass =
phrase:<o:p></o:p>

<o:p> </o:p>

OK: Pass Phrase Dialog =
successful.<o:p></o:p>

<o:p> </o:p>

<o:p> </o:p>

Httpd.conf =
<o:p></o:p>

<o:p> </o:p>

# Secure (SSL/TLS) =
connections<o:p></o:p>

#Include =
conf/extra/httpd-ssl.conf<o:p></o:p>

#<o:p></o:p>

# Note: The following must must be =
present
to support<o:p></o:p>

# =
; starting without SSL on platforms
with no /dev/random equivalent<o:p></o:p>

# =
; but a statically compiled-in
mod_ssl.<o:p></o:p>

#<o:p></o:p>

<IfModule =
ssl_module><o:p></o:p>

SSLRandomSeed startup =
builtin<o:p></o:p>

SSLRandomSeed connect =
builtin<o:p></o:p>

</IfModule><o:p></o:p><=
/font>

</div>

</body>

</html>

------_=_NextPart_001_01C7AFA0.11D703D2--
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

Saikat Saha wrote:
> We have apache 2.2.4 compiled with all modules but commented out all
> load modules. Do not have anything in httpd.conf file to state that this
> is https. But when I start apache, it tries to goto https and prompts
> for pass phrase. How does apache determine that this is https whereas
> this is actually a http server.

Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this.

> After I enter a passphrase, it shows
> successful but the server never starts up. Can someone please help?

The reason probably can be found in Apache's error_log file.

> Also can apache support both http and https at different ports at the
> same time?

Yes. The defaults are port 80 for http and port 443 for https.

--
Omar W. Hannet
http://www.allez-oop.net/
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

Apache was compiled as below

../configure --with-ldap --enable-mods-shared=3D"all ssl ldap cache proxy
authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock
disk_cache" --prefix=3D/opt/apache-2.2.4

Httpd -l gives below
[root [at] rh4_109 bin]# httpd -l
Compiled in modules:
core.c
prefork.c
http_core.c
mod_so.c

How do I compile so that it does not load mod_ssl automatically and
loads only if httpd.conf is configured.

Surprisingly there are no error logs even at debug level.

Thank you so very much for the kind help.

-----Original Message-----
From: owner-modssl-users [at] modssl.org
[mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
Sent: Friday, June 15, 2007 4:13 PM
To: modssl-users [at] modssl.org
Subject: Re: Apache with mod_ssl

Saikat Saha wrote:
> We have apache 2.2.4 compiled with all modules but commented out all
> load modules. Do not have anything in httpd.conf file to state that
this
> is https. But when I start apache, it tries to goto https and prompts
> for pass phrase. How does apache determine that this is https whereas
> this is actually a http server.

Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this.

> After I enter a passphrase, it shows
> successful but the server never starts up. Can someone please help?

The reason probably can be found in Apache's error_log file.

> Also can apache support both http and https at different ports at the
> same time?

Yes. The defaults are port 80 for http and port 443 for https.

--
Omar W. Hannet
http://www.allez-oop.net/
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

Do you have <IfModule ssl_module> tags surrounding all
SSL directives in your configuration file? For example:

<IfModule ssl_module>
SSLPassPhraseDialog builtin
# etc.
</IfModule>

Saikat Saha wrote:_module>
> Apache was compiled as below
>
> ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy
> authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock
> disk_cache" --prefix=/opt/apache-2.2.4
>
> Httpd -l gives below
> [root [at] rh4_109 bin]# httpd -l
> Compiled in modules:
> core.c
> prefork.c
> http_core.c
> mod_so.c
>
> How do I compile so that it does not load mod_ssl automatically and
> loads only if httpd.conf is configured.
>
> Surprisingly there are no error logs even at debug level.
>
> Thank you so very much for the kind help.
>
> -----Original Message-----
> From: owner-modssl-users [at] modssl.org
> [mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
> Sent: Friday, June 15, 2007 4:13 PM
> To: modssl-users [at] modssl.org
> Subject: Re: Apache with mod_ssl
>
> Saikat Saha wrote:
>> We have apache 2.2.4 compiled with all modules but commented out all
>> load modules. Do not have anything in httpd.conf file to state that
> this
>> is https. But when I start apache, it tries to goto https and prompts
>> for pass phrase. How does apache determine that this is https whereas
>> this is actually a http server.
>
> Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check this.
>
>> After I enter a passphrase, it shows
>> successful but the server never starts up. Can someone please help?
>
> The reason probably can be found in Apache's error_log file.
>
>> Also can apache support both http and https at different ports at the
>> same time?
>
> Yes. The defaults are port 80 for http and port 443 for https.
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

Sorry for late response on this one. This is what we have in httpd.conf
which is generated at compile time. This problem does not go away even
if I comment out last four lines and restart apache. Could you please
advise what else could be leading apache to think it is https rather
than http?

# Secure (SSL/TLS) connections
#Include conf/extra/httpd-ssl.conf
#
# Note: The following must must be present to support
# starting without SSL on platforms with no /dev/random equivalent
# but a statically compiled-in mod_ssl.
#
<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>

With above commented out, when I try to start apache, I get following
passphrase prompt and apache does not start even after saying passphrase
successful, no logs in logs directory although log level is "debug"

]# ./apachectl start
httpd: Could not reliably determine the server's fully qualified domain
name, using 10.3.110.109 for ServerName
Apache/2.2.4 mod_ssl/2.2.4 (Pass Phrase Dialog)
Some of your private key files are encrypted for security reasons.
In order to read them you have to provide the pass phrases.

Server 10.3.110.109:443 (RSA)
Enter pass phrase:

OK: Pass Phrase Dialog successful.
[root [at] rh4_109 bin]#

Thanks you very much for your help.

-----Original Message-----
From: owner-modssl-users [at] modssl.org
[mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
Sent: Monday, June 18, 2007 8:34 AM
To: modssl-users [at] modssl.org
Subject: Re: Apache with mod_ssl

Do you have <IfModule ssl_module> tags surrounding all
SSL directives in your configuration file? For example:

<IfModule ssl_module>
SSLPassPhraseDialog builtin
# etc.
</IfModule>

Saikat Saha wrote:_module>
> Apache was compiled as below
>
> ./configure --with-ldap --enable-mods-shared=3D"all ssl ldap cache =
proxy
> authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock
> disk_cache" --prefix=3D/opt/apache-2.2.4
>
> Httpd -l gives below
> [root [at] rh4_109 bin]# httpd -l
> Compiled in modules:
> core.c
> prefork.c
> http_core.c
> mod_so.c
>
> How do I compile so that it does not load mod_ssl automatically and
> loads only if httpd.conf is configured.
>
> Surprisingly there are no error logs even at debug level.
>
> Thank you so very much for the kind help.
>
> -----Original Message-----
> From: owner-modssl-users [at] modssl.org
> [mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
> Sent: Friday, June 15, 2007 4:13 PM
> To: modssl-users [at] modssl.org
> Subject: Re: Apache with mod_ssl
>
> Saikat Saha wrote:
>> We have apache 2.2.4 compiled with all modules but commented out all
>> load modules. Do not have anything in httpd.conf file to state that
> this
>> is https. But when I start apache, it tries to goto https and prompts

>> for pass phrase. How does apache determine that this is https whereas

>> this is actually a http server.
>
> Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check
this.
>
>> After I enter a passphrase, it shows
>> successful but the server never starts up. Can someone please help?
>
> The reason probably can be found in Apache's error_log file.
>
>> Also can apache support both http and https at different ports at the

>> same time?
>
> Yes. The defaults are port 80 for http and port 443 for https.
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

Are you quite certain that the LoadModule for mod_ssl has been
commented out? The reason I ask: the output from 'apachectl start'
which you provided below shows 'mod_ssl/2.2.4'.

In the log file /opt/apache-2.2.4/logs/error_log, on lines that contain
'Apache/2.2.4' and 'configured -- resuming normal operations', do
you see 'mod_ssl/2.2.4'? If so, it is still being loaded from somewhere
in your configuration.

Saikat Saha wrote:
> Sorry for late response on this one. This is what we have in httpd.conf
> which is generated at compile time. This problem does not go away even
> if I comment out last four lines and restart apache. Could you please
> advise what else could be leading apache to think it is https rather
> than http?
>
>
>
> # Secure (SSL/TLS) connections
> #Include conf/extra/httpd-ssl.conf
> #
> # Note: The following must must be present to support
> # starting without SSL on platforms with no /dev/random equivalent
> # but a statically compiled-in mod_ssl.
> #
> <IfModule ssl_module>
> SSLRandomSeed startup builtin
> SSLRandomSeed connect builtin
> </IfModule>
>
>
> With above commented out, when I try to start apache, I get following
> passphrase prompt and apache does not start even after saying passphrase
> successful, no logs in logs directory although log level is "debug"
>
> ]# ./apachectl start
> httpd: Could not reliably determine the server's fully qualified domain
> name, using 10.3.110.109 for ServerName
> Apache/2.2.4 mod_ssl/2.2.4 (Pass Phrase Dialog)
> Some of your private key files are encrypted for security reasons.
> In order to read them you have to provide the pass phrases.
>
> Server 10.3.110.109:443 (RSA)
> Enter pass phrase:
>
> OK: Pass Phrase Dialog successful.
> [root [at] rh4_109 bin]#
>
> Thanks you very much for your help.
>
>
> -----Original Message-----
> From: owner-modssl-users [at] modssl.org
> [mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
> Sent: Monday, June 18, 2007 8:34 AM
> To: modssl-users [at] modssl.org
> Subject: Re: Apache with mod_ssl
>
> Do you have <IfModule ssl_module> tags surrounding all
> SSL directives in your configuration file? For example:
>
> <IfModule ssl_module>
> SSLPassPhraseDialog builtin
> # etc.
> </IfModule>
>
> Saikat Saha wrote:_module>
>> Apache was compiled as below
>>
>> ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy
>> authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock
>> disk_cache" --prefix=/opt/apache-2.2.4
>>
>> Httpd -l gives below
>> [root [at] rh4_109 bin]# httpd -l
>> Compiled in modules:
>> core.c
>> prefork.c
>> http_core.c
>> mod_so.c
>>
>> How do I compile so that it does not load mod_ssl automatically and
>> loads only if httpd.conf is configured.
>>
>> Surprisingly there are no error logs even at debug level.
>>
>> Thank you so very much for the kind help.
>>
>> -----Original Message-----
>> From: owner-modssl-users [at] modssl.org
>> [mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
>> Sent: Friday, June 15, 2007 4:13 PM
>> To: modssl-users [at] modssl.org
>> Subject: Re: Apache with mod_ssl
>>
>> Saikat Saha wrote:
>>> We have apache 2.2.4 compiled with all modules but commented out all
>>> load modules. Do not have anything in httpd.conf file to state that
>> this
>>> is https. But when I start apache, it tries to goto https and prompts
>
>>> for pass phrase. How does apache determine that this is https whereas
>
>>> this is actually a http server.
>> Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check
> this.
>>> After I enter a passphrase, it shows
>>> successful but the server never starts up. Can someone please help?
>> The reason probably can be found in Apache's error_log file.
>>
>>> Also can apache support both http and https at different ports at the
>
>>> same time?
>> Yes. The defaults are port 80 for http and port 443 for https.
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Even more revealing was the passphrase prompt, not required for plain
httpd...

Thanks,

Ron DuFresne

On Tue, 19 Jun 2007, Omar W. Hannet wrote:

> Are you quite certain that the LoadModule for mod_ssl has been
> commented out? The reason I ask: the output from 'apachectl start'
> which you provided below shows 'mod_ssl/2.2.4'.
>
> In the log file /opt/apache-2.2.4/logs/error_log, on lines that contain
> 'Apache/2.2.4' and 'configured -- resuming normal operations', do
> you see 'mod_ssl/2.2.4'? If so, it is still being loaded from somewhere
> in your configuration.
>
> Saikat Saha wrote:
>> Sorry for late response on this one. This is what we have in httpd.conf
>> which is generated at compile time. This problem does not go away even
>> if I comment out last four lines and restart apache. Could you please
>> advise what else could be leading apache to think it is https rather
>> than http?
>>
>>
>>
>> # Secure (SSL/TLS) connections
>> #Include conf/extra/httpd-ssl.conf
>> #
>> # Note: The following must must be present to support
>> # starting without SSL on platforms with no /dev/random equivalent
>> # but a statically compiled-in mod_ssl.
>> #
>> <IfModule ssl_module>
>> SSLRandomSeed startup builtin
>> SSLRandomSeed connect builtin
>> </IfModule>
>>
>>
>> With above commented out, when I try to start apache, I get following
>> passphrase prompt and apache does not start even after saying passphrase
>> successful, no logs in logs directory although log level is "debug"
>>
>> ]# ./apachectl start
>> httpd: Could not reliably determine the server's fully qualified domain
>> name, using 10.3.110.109 for ServerName
>> Apache/2.2.4 mod_ssl/2.2.4 (Pass Phrase Dialog)
>> Some of your private key files are encrypted for security reasons.
>> In order to read them you have to provide the pass phrases.
>>
>> Server 10.3.110.109:443 (RSA)
>> Enter pass phrase:
>>
>> OK: Pass Phrase Dialog successful.
>> [root [at] rh4_109 bin]#
>>
>> Thanks you very much for your help.
>>
>>
>> -----Original Message-----
>> From: owner-modssl-users [at] modssl.org
>> [mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
>> Sent: Monday, June 18, 2007 8:34 AM
>> To: modssl-users [at] modssl.org
>> Subject: Re: Apache with mod_ssl
>>
>> Do you have <IfModule ssl_module> tags surrounding all
>> SSL directives in your configuration file? For example:
>>
>> <IfModule ssl_module>
>> SSLPassPhraseDialog builtin
>> # etc.
>> </IfModule>
>>
>> Saikat Saha wrote:_module>
>>> Apache was compiled as below
>>>
>>> ./configure --with-ldap --enable-mods-shared="all ssl ldap cache proxy
>>> authn_alias mem_cache file_cache authnz_ldap charset_lite dav_lock
>>> disk_cache" --prefix=/opt/apache-2.2.4
>>>
>>> Httpd -l gives below
>>> [root [at] rh4_109 bin]# httpd -l
>>> Compiled in modules:
>>> core.c
>>> prefork.c
>>> http_core.c
>>> mod_so.c
>>>
>>> How do I compile so that it does not load mod_ssl automatically and
>>> loads only if httpd.conf is configured.
>>>
>>> Surprisingly there are no error logs even at debug level.
>>>
>>> Thank you so very much for the kind help.
>>>
>>> -----Original Message-----
>>> From: owner-modssl-users [at] modssl.org
>>> [mailto:owner-modssl-users [at] modssl.org] On Behalf Of Omar W. Hannet
>>> Sent: Friday, June 15, 2007 4:13 PM
>>> To: modssl-users [at] modssl.org
>>> Subject: Re: Apache with mod_ssl
>>>
>>> Saikat Saha wrote:
>>>> We have apache 2.2.4 compiled with all modules but commented out all load
>>>> modules. Do not have anything in httpd.conf file to state that
>>> this
>>>> is https. But when I start apache, it tries to goto https and prompts
>>
>>>> for pass phrase. How does apache determine that this is https whereas
>>
>>>> this is actually a http server.
>>> Perhaps mod_ssl is a compiled-in module. Run 'httpd -l' to check
>> this.
>>>> After I enter a passphrase, it shows successful but the server never
>>>> starts up. Can someone please help?
>>> The reason probably can be found in Apache's error_log file.
>>>
>>>> Also can apache support both http and https at different ports at the
>>
>>>> same time?
>>> Yes. The defaults are port 80 for http and port 443 for https.
> ____________________________________________________________ __________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List modssl-users [at] modssl.org
> Automated List Manager majordomo [at] modssl.org
>

- --
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
Key fingerprint = 9401 4B13 B918 164C 647A E838 B2DF AFCC 94B0 6629

....We waste time looking for the perfect lover
instead of creating the perfect love.

-Tom Robbins <Still Life With Woodpecker>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFGer+zst+vzJSwZikRAlhnAJ4rLby4nNIlTNYwr0Vq2bQdI1TGmwCg wn1e
itrUfe7Vl+cuoIdY3KOVw8M=
=LeZD
-----END PGP SIGNATURE-----
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users [at] modssl.org
Automated List Manager majordomo [at] modssl.org

Apache mod_ssl and FIPS 140-2

Re: Apache mod_ssl and FIPS 140-2

Apache with mod_ssl

Re: Apache with mod_ssl

RE: Apache with mod_ssl

Re: Apache with mod_ssl

RE: Apache with mod_ssl

Re: Apache with mod_ssl

Re: Apache with mod_ssl