1 |
I'm trying to make use of SSL on my server box. I followed the wiki at |
2 |
http://gentoo-wiki.com/Apache_Modules_mod_ssl on my client PC and |
3 |
everything worked right. However, when I try it on my server PC and I |
4 |
go to start Apache with the new configs for SSL, Apache won't start and |
5 |
I get the following output to /var/log/apache2/error_log: |
6 |
|
7 |
bullet ssl # cat /var/log/apache2/error_log |
8 |
[Tue Jul 11 17:55:11 2006] [notice] suEXEC mechanism enabled |
9 |
(wrapper: /usr/sbin/suexec2) |
10 |
[Tue Jul 11 17:55:11 2006] [error] Init: Unable to read server |
11 |
certificate from file /usr/lib/apache2/conf/ssl/server.pem |
12 |
[Tue Jul 11 17:55:11 2006] [error] SSL Library Error: 218529960 |
13 |
error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag |
14 |
[Tue Jul 11 17:55:11 2006] [error] SSL Library Error: 218595386 |
15 |
error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error |
16 |
|
17 |
The permissions on the files in /usr/lib/apache2/conf/ssl are the same |
18 |
on both my client and server box. Here they are: |
19 |
|
20 |
bullet conf # pwd |
21 |
/usr/lib/apache2/conf |
22 |
bullet conf # ls -l |
23 |
total 96 |
24 |
-rw-r--r-- 1 root root 2068 Jul 6 22:30 apache2-builtin-mods |
25 |
drwxr-xr-x 5 root root 4096 Dec 12 2005 conf |
26 |
-rw-r--r-- 1 root root 37188 Jul 6 22:30 httpd.conf |
27 |
-rw-r--r-- 1 root root 1131 Mar 30 15:21 jk-workers.properties |
28 |
-rw-r--r-- 1 root root 12958 Jul 6 22:30 magic |
29 |
-rw-r--r-- 1 root root 15020 Nov 27 2005 mime.types |
30 |
drwxr-xr-x 2 root root 4096 Jul 10 22:14 modules.d |
31 |
drwx------ 2 root root 4096 Jul 11 17:53 ssl |
32 |
drwxr-xr-x 2 root root 4096 Jul 11 17:54 vhosts.d |
33 |
bullet conf # ls -l ssl |
34 |
total 16 |
35 |
-r-------- 1 root root 794 Sep 25 2005 server.crt |
36 |
-rw-r--r-- 1 root root 582 Jul 11 17:53 server.csr |
37 |
-r-------- 1 root root 891 Sep 25 2005 server.key |
38 |
-rw-r--r-- 1 root root 493 Jul 10 22:21 server.pem |
39 |
|
40 |
What's going wrong here? Why can't I start Apache with SSL? |
41 |
|
42 |
-- |
43 |
gentoo-user@g.o mailing list |