cant start ssl on apache2

Hello,

im having some trouble when starting ssl on my apache2 server, first i
must say that i did not install apache, so i really dont know if ssl
was enabled, but i guess so since in the httpd.conf i have


Include conf/ssl.conf


well, the second thing is that i have configured everything in my
ssl.conf file (i think it is ok) but when i restart apache it doesnt
even "read" the ssl.conf file, i renamed the ssl.conf file to
ssl.conf.1 and apache restarted successfully, so i think it just
doesnt look for it when restarting.

i did comment the


in ssl.conf, in order to be able to start apache always with ssl support

im pretty sure my ssl.conf and my httpd.conf files are correctly since
i have another server with the same configurations and its working
properly, but when i

netstat -nl | grep 443

theres nothing listening and on the /usr/local/apache/logs/ directory theres no
ssl_request_log/ ssl_scache.dir ssl_scache.pag
log files, can anyone help me?

--
Ciao, Javier
linux counter #393724
GPG Key Fingerprint = 46B76CFEDB0161089D9ECB22FEFDE7EBA8C2007E
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: cant start ssl on apache2

Are you calling apachectl using the full path to the apachectl
that knows where THOSE conf files are?

Sorry for top-posting... It just seemed like the right thing to do
in this case.

javier rojas wrote:
> Hello,
>
> im having some trouble when starting ssl on my apache2 server, first i
> must say that i did not install apache, so i really dont know if ssl
> was enabled, but i guess so since in the httpd.conf i have
>
>
> Include conf/ssl.conf
>
>
> well, the second thing is that i have configured everything in my
> ssl.conf file (i think it is ok) but when i restart apache it doesnt
> even "read" the ssl.conf file, i renamed the ssl.conf file to
> ssl.conf.1 and apache restarted successfully, so i think it just
> doesnt look for it when restarting.
>
> i did comment the
>
>
> in ssl.conf, in order to be able to start apache always with ssl support
>
> im pretty sure my ssl.conf and my httpd.conf files are correctly since
> i have another server with the same configurations and its working
> properly, but when i
>
> netstat -nl | grep 443
>
> theres nothing listening and on the /usr/local/apache/logs/ directory
> theres no
> ssl_request_log/ ssl_scache.dir ssl_scache.pag
> log files, can anyone help me?
>
> --
> Ciao, Javier
> linux counter #393724
> GPG Key Fingerprint = 46B76CFEDB0161089D9ECB22FEFDE7EBA8C2007E
> ____________________________________________________________ __________
> Apache Interface to OpenSSL (mod_ssl) www.modssl.org
> User Support Mailing List modssl-users@modssl.org
> Automated List Manager majordomo@modssl.org

--
Phil Ehrens | Fun stuff:
The LIGO Laboratory, MS 18-34 | http://www.ralphmag.org
California Institute of Technology | http://www.trenchman.com
1200 East California Blvd. | http://www.tokyotosho.com
Pasadena, CA 91125 USA | My gpg public key:
Phone:(626)395-8518 Fax:(626)793-9744 | http://www.imbe.net/peligo.asc
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: cant start ssl on apache2

2007/4/27, Phil Ehrens :
> Are you calling apachectl using the full path to the apachectl
> that knows where THOSE conf files are?
>
> Sorry for top-posting... It just seemed like the right thing to do
> in this case.
hello :)

well im using the only apachectl in my machine, thats in
/usr/local/apache2/bin

and i comment the line
Listen 80

and then
/usr/local/apache2/bin/apachectl restart

to see if apachectl was reading the correct httpd.conf and it didn't
start the server....
--
Ciao, Javier
linux counter #393724
GPG Key Fingerprint = 46B76CFEDB0161089D9ECB22FEFDE7EBA8C2007E
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: cant start ssl on apache2

javier rojas wrote:
> 2007/4/27, Phil Ehrens :
> >Are you calling apachectl using the full path to the apachectl
> >that knows where THOSE conf files are?
> >
> >Sorry for top-posting... It just seemed like the right thing to do
> >in this case.
> hello :)
>
> well im using the only apachectl in my machine, thats in
> /usr/local/apache2/bin
>
> and i comment the line
> Listen 80
>
> and then
> /usr/local/apache2/bin/apachectl restart
>
> to see if apachectl was reading the correct httpd.conf and it didn't
> start the server....

And when you run

/usr/local/apache2/bin/httpd -V

Does everything look okay?

Phil
--
Phil Ehrens | Fun stuff:
The LIGO Laboratory, MS 18-34 | http://www.ralphmag.org
California Institute of Technology | http://www.trenchman.com
1200 East California Blvd. | http://www.tokyotosho.com
Pasadena, CA 91125 USA | My gpg public key:
Phone:(626)395-8518 Fax:(626)793-9744 | http://www.imbe.net/peligo.asc
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: cant start ssl on apache2

On Fri, 27 Apr 2007, javier rojas wrote:

> 2007/4/27, Phil Ehrens :
>> Are you calling apachectl using the full path to the apachectl
>> that knows where THOSE conf files are?
>>
>
> /usr/local/apache2/bin/apachectl restart
>
> to see if apachectl was reading the correct httpd.conf and it didn't
> start the server....

I don't know if this will help... I have an installation on linux (2.4.18)
wherein apache is installed in /usr/local/apachessl2/, and if I issue the
'apachectl restart' command it will *not* start SSL.

Instead, I must execute 'apachectl startssl'.

You can see if you have this situation: just examine the apachessl script
(using less, vi, or your favorite editor) and search for 'startssl'. In
my script, it looks like it just boils down to a '-DSSL' being passed to
the invocation of httpd.

You may also want to invoke the httpd executable by-hand to see if it
issues anything on STDERR, and also check the error logfile that you have
specified in your .conf file. If Apache is getting that far, it will
almost certainly give you some good feedback.

Finally (or perhaps first), you may want to invoke 'apachectl -t' to have
it check your config file for syntax errors. It will not only tell you if
you've mistyped something, but in some cases it'll tell you that you've
left something out or specified conflicting configuration options.

-dpmott
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: cant start ssl on apache2

> And when you run
>
> /usr/local/apache2/bin/httpd -V
>
> Does everything look okay?

mmmmm, this is what i was looking for.....

/usr/local/apache2/bin/httpd -V
Server version: Apache/2.0.49
Server built: Apr 23 2007 10:41:23
Server's Module Magic Number: 20020903:7
Architecture: 64-bit
Server compiled with....
-D APACHE_MPM_DIR="server/mpm/prefork"
-D APR_HAS_SENDFILE
-D APR_HAS_MMAP
-D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
-D APR_USE_PROC_PTHREAD_SERIALIZE
-D APR_USE_PTHREAD_SERIALIZE
-D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
-D APR_HAS_OTHER_CHILD
-D AP_HAVE_RELIABLE_PIPED_LOGS
-D HTTPD_ROOT="/usr/local/apache2"
-D SUEXEC_BIN="/usr/local/apache2/bin/suexec"
-D DEFAULT_PIDLOG="logs/httpd.pid"
-D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
-D DEFAULT_LOCKFILE="logs/accept.lock"
-D DEFAULT_ERRORLOG="logs/error_log"
-D AP_TYPES_CONFIG_FILE="conf/mime.types"
-D SERVER_CONFIG_FILE="conf/httpd.conf"

i think it was not compiled with ssl support....:(

--
Ciao, Javier
linux counter #393724
GPG Key Fingerprint = 46B76CFEDB0161089D9ECB22FEFDE7EBA8C2007E
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: cant start ssl on apache2

2007/4/27, David P. Mott :
> On Fri, 27 Apr 2007, javier rojas wrote:
>
> > 2007/4/27, Phil Ehrens :
> >> Are you calling apachectl using the full path to the apachectl
> >> that knows where THOSE conf files are?
> >>
> >
> > /usr/local/apache2/bin/apachectl restart
> >
> > to see if apachectl was reading the correct httpd.conf and it didn't
> > start the server....
>
> I don't know if this will help... I have an installation on linux (2.4.18)
> wherein apache is installed in /usr/local/apachessl2/, and if I issue the
> 'apachectl restart' command it will *not* start SSL.
>
> Instead, I must execute 'apachectl startssl'.
>
> You can see if you have this situation: just examine the apachessl script
> (using less, vi, or your favorite editor) and search for 'startssl'. In
> my script, it looks like it just boils down to a '-DSSL' being passed to
> the invocation of httpd.
>
> You may also want to invoke the httpd executable by-hand to see if it
> issues anything on STDERR, and also check the error logfile that you have
> specified in your .conf file. If Apache is getting that far, it will
> almost certainly give you some good feedback.
>
> Finally (or perhaps first), you may want to invoke 'apachectl -t' to have
> it check your config file for syntax errors. It will not only tell you if
> you've mistyped something, but in some cases it'll tell you that you've
> left something out or specified conflicting configuration options.

hello :)

if u comment the lines



in your ssl.conf file, everytime you start your server it will
automatically start support for ssl, so there's no need for
apachectl startssl

the problem is that in the log folder in apache2, theres no log file
for ssl, so i think apache is not starting ssl support

/usr/local/apache2/bin/apachectl -t
Syntax OK

i didnt know this one, its very useful, thanks a lot!!!...:)

--
Ciao, Javier
linux counter #393724
GPG Key Fingerprint = 46B76CFEDB0161089D9ECB22FEFDE7EBA8C2007E
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org

Re: cant start ssl on apache2

javier rojas wrote:
> >And when you run
> >
> > /usr/local/apache2/bin/httpd -V
> >
> >Does everything look okay?
>
> mmmmm, this is what i was looking for.....
>
> /usr/local/apache2/bin/httpd -V
> Server version: Apache/2.0.49
> Server built: Apr 23 2007 10:41:23
> Server's Module Magic Number: 20020903:7
> Architecture: 64-bit
> Server compiled with....
> -D APACHE_MPM_DIR="server/mpm/prefork"
> -D APR_HAS_SENDFILE
> -D APR_HAS_MMAP
> -D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
> -D APR_USE_PROC_PTHREAD_SERIALIZE
> -D APR_USE_PTHREAD_SERIALIZE
> -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT
> -D APR_HAS_OTHER_CHILD
> -D AP_HAVE_RELIABLE_PIPED_LOGS
> -D HTTPD_ROOT="/usr/local/apache2"
> -D SUEXEC_BIN="/usr/local/apache2/bin/suexec"
> -D DEFAULT_PIDLOG="logs/httpd.pid"
> -D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
> -D DEFAULT_LOCKFILE="logs/accept.lock"
> -D DEFAULT_ERRORLOG="logs/error_log"
> -D AP_TYPES_CONFIG_FILE="conf/mime.types"
> -D SERVER_CONFIG_FILE="conf/httpd.conf"
>
> i think it was not compiled with ssl support....:(

It won't tell you that from -V. Is there a file named:

/usr/local/apache2/modules/mod_ssl.so

Phil
--
Phil Ehrens | Fun stuff:
The LIGO Laboratory, MS 18-34 | http://www.ralphmag.org
California Institute of Technology | http://www.trenchman.com
1200 East California Blvd. | http://www.tokyotosho.com
Pasadena, CA 91125 USA | My gpg public key:
Phone:(626)395-8518 Fax:(626)793-9744 | http://www.imbe.net/peligo.asc
____________________________________________________________ __________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List modssl-users@modssl.org
Automated List Manager majordomo@modssl.org