httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "PINNI, BALANAND (SBCSI)" <bp3...@sbc.com>
Subject [users@httpd] RE: SSL Question
Date Tue, 17 Feb 2004 15:42:07 GMT
All-

I have stash file but still I get the following: Why Invalid passwd in
keyfile in spite of using ikeyman . Any specific paths should be used to
store Passwds stash file???
I am configuring this for the first time and I don't have any help on this,
hence I am requesting help if some could guide me through please.

Thanks in advance 
Balanand Pinni

[Tue Feb 17 09:08:30 2004] [crit] SSL0104S: GSK could not initialize,
Invalid pa
ssword for keyfile.
[Tue Feb 17 09:08:31 2004] [notice] IBM_HTTP_SERVER/1.3.26.2  Apache/1.3.26
(Uni
x) configured -- resuming normal operations
[Tue Feb 17 09:08:31 2004] [notice] Accept mutex: pthread (Default: pthread)


-----Original Message-----
From: Aaron W Morris [mailto:aaronmorris@mindspring.com] 
Sent: Friday, February 13, 2004 4:29 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] SSL Question


PINNI, BALANAND (SBCSI) wrote:

> All-
> 
> I have http server HIS of Ver 1.3.26 IBM product and I have set my
http.conf
> , some how https://server.domain.com does not work. I mean can not find
> server error.
> 
> Listen 443
> 
> ################################################################
> 
> #SSL Configuration
> 
> ################################################################
> 
> <VirtualHost server.domain.com:443>                                   
> ServerName server.domain.com                                          
> DocumentRoot /usr/HTTPServer/htdocs/en_US
> 
> CustomLog  /usr/HTTPServer/logs/access_log combined
> 
> ErrorLog /usr/HTTPServer/logs/error_log
> 
> SSLServerCert server.domain.com                                       
> Keyfile /usr/HTTPServer/keys/redirom.key
> 
> #SSLStashfile /var/opt/myApp/keys/keyfile.sth
> 
> SSLCipherSpec 34
> 
> SSLCipherSpec 33
> 
> SSLCipherSpec 21
> 
> SSLCipherSpec 23
> 
> SSLCipherSpec 27
> 
> # Cipher 34 SSL_RSA_WITH_RC4_128_MD5               RC4 MD5 (128bit)
> 
> # Cipher 33 SSL_RSA_EXPORT_WITH_RC4_40_MD5         RC4 SHA (128 bit)
> 
> # Cipher 21 SSL_RC4_128_WITH_MD5                   RC4 (128bit)
> 
> # Cipher 23 SSL_RC2_CBC_128_CBC_WITH_MD5           RC2 (128bit)
> 
> # Cipher 27 SSL_DES_192_EDE3_CBC_WITH_MD5          Triple-DES (168 bit)
> 
> SSLEnable
> 
> SSLClientAuth none
> 
> </VirtualHost>


The file to use with the "Keyfile" directive is a binary key database 
format that has to be generated with IBM's ikeyman or with the keytool 
utility distributed with java.  You also did not specifically mention 
that you loaded the IBM SSL module.

Another thing:  Try not to respond to an existing thread with a new 
question.  It messes up the archives and can make it more confusing when 
searching for information.


-- 
Aaron W Morris <aaronmorris@mindspring.com> (decep)



---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe@httpd.apache.org
   "   from the digest: users-digest-unsubscribe@httpd.apache.org
For additional commands, e-mail: users-help@httpd.apache.org


Mime
View raw message