[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-developers] SSL Certs from Equifax

Subject: [cobalt-developers] SSL Certs from Equifax
From: Tarren <tarren@xxxxxxxxxxxx>
Date: Mon May 15 08:20:57 2000

Tony,

Thanks for the tip for cheap SSL Certs at equifax.
I have now received three pairs of keys; one for the server-admin and two
for two separate secure sites.

Can you please outline the changes in the httpd.conf file, as having the
Certs in two parts is confusing me; I don't understand why I've got two
parts for each site!

I presume it's this bit that needs changing: httpd.conf ->

# Hardcoded, issues with mod_perl and cobalt modules.
        if (/^<\/Virtual/ and (-f "/etc/httpd/ssl/$group")) {
            $ret = ssl_cert_check("/home/sites/$group/certs/");
            if ($ret=~/^2/o) {
                $PerlConfig .= "Listen $ip:443\n";
                $PerlConfig .= "<VirtualHost $ip:443>\n";
                $PerlConfig .= "SSLengine on\n";
                $PerlConfig .= "SSLCertificateFile
/home/sites/$group/certs/certificate\n";
                $PerlConfig .= "SSLCertificateKeyFile
/home/sites/$group/certs/key\n";
                $PerlConfig .= join('', @ssl_conf);
            } elsif (ssl_cert_check("/home/sites/home/certs/") =~ /^2/ ) {
                $PerlConfig .= "Listen $ip:443\n";
                $PerlConfig .= "<VirtualHost $ip:443>\n";
                $PerlConfig .= "SSLengine on\n";
                $PerlConfig .= "SSLCertificateFile
/home/sites/home/certs/certificate\n";
                $PerlConfig .= "SSLCertificateKeyFile
/home/sites/home/certs/key\n";
                $PerlConfig .= join('', @ssl_conf);
            } else {
                print STDERR "Site $group has invalid certificate: $ret\n";

on 4/5/00 3:19 pm, Tony at isplists@xxxxxxxxxxxx wrote:

Regards,

Tarren.

> Well there is a little extra work to do...You need to add an extra line in
> the http.conf to point to their CA cert. I'm sure Cobalt will get around to
> patching this. Otherwise it seems to work fine.
> 
>> -----Original Message-----
>> From: cobalt-developers-admin@xxxxxxxxxxxxxxx
>> [mailto:cobalt-developers-admin@xxxxxxxxxxxxxxx]On Behalf Of Tarren
>> Sent: Thursday, May 04, 2000 3:59 AM
>> To: cobalt-developers@xxxxxxxxxxxxxxx
>> Subject: Re: [cobalt-developers] SSL Error when using Site Control Panel
>> 
>> 
>> on 2/5/00 10:06 pm, Tony at isplists@xxxxxxxxxxxx wrote:
>> 
>>> For ecommerce reasons you really should consider seperate certs:
>>> 
>>> $45 dollars at http://equifaxsecure.com until May 15. $89
>>> thereafter. That shouldn't break the bank.

Follow-Ups:
- RE: [cobalt-developers] SSL Certs from Equifax
  - From: Tony

References:
- RE: [cobalt-developers] SSL Error when using Site Control Panel
  - From: Tony

Prev by Date: Re: [cobalt-developers] New kernel released to experimental
Next by Date: Re: [cobalt-developers] Time Problems :: FIX
Previous by thread: RE: [cobalt-developers] SSL Error when using Site Control Panel
Next by thread: RE: [cobalt-developers] SSL Certs from Equifax

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index