[SDBUG] SSL and Apache 2
Michael J McCafferty
mike at m5computersecurity.com
Sat Jul 15 16:50:26 PDT 2006
Is the system listening on port 443 ? On the system, do a "netstat -an | grep
LISTEN" and see if you have something listening on port 443. If you do, the
there might be a firewall (PF ?) in your way of connecting to the server on
port 443. Poke a hole in it, then try again.
If there is nothign listening on 443, then your web server isn't listening on
443...and you have a problem to solve.
Quoting Skip Evans <skip at bigskypenguin.com>:
> Hello all,
>
> I just joined the list and am seeking some help with a problem
> installing SSL on FreeBSD 6.0 running Apache2/PHP 4/MySQL.
>
> I should say up front I am a developer by trade, not a sys admin,
> though I do keep our own servers in the office and enjoy learning as
> much as I can about maintaining them.
>
> At this point I would prefer to pay a consultant to get this going,
> and I will help with background info as much as I can. If there are
> any list members who do remote administration for a fee, I would very
> much like to hear from you. If this list is not intended for such
> purposes, let me apologize for the intrusion now, but I'll keep going
> just in case it's okay.
>
> A little background: The box was set up by a guy who is no longer
> with us, so I wasn't sure if it was SSL enabled. I did an 'httpd -l'
> command and mod_ssl was not listed.
>
> This morning I rebuilt apache2 with:
>
> make WITH_STATIC_MODULES="ssl" install
>
> And now I get this:
>
> venomouspenguin# httpd -l
> Compiled in modules:
> core.c
> mod_ssl.c
> prefork.c
> http_core.c
> mod_so.c
>
> However, I cannot telnet into port 443, and I believe httpd.conf and
> ssl.conf are at least as correct as I can get them. Port 443 is also
> active in /etc/services, as well.
>
> I'm stumped.
>
> If anyone can help with this problem it would be monstrously appreciated.
>
> Thanks much for your time.
> --
> Skip Evans
> Big Sky Penguin, LLC
> 61 W Broadway
> Butte, Montana 59701
> 406-782-2240
> _______________________________________________
> SDBUG mailing list
> SDBUG at sdbug.org
> http://lists.sdbug.org/mailman/listinfo/sdbug
>
--
************************************************************
Michael J. McCafferty
Principal, Security Engineer
M5 Hosting
858-576-7325 Voice
http://www.m5hosting.com
************************************************************
More information about the SDBUG
mailing list