Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

mod_ssl and Apache 2.0.46, open port 443

Status
Not open for further replies.
joker3

joker3

IS-IT--Management
Jan 18, 2002
5
US
I am running Apache 2.0.46 and it doesn't appear that it was compiled with mod_ssl. This first became evident when I opened port 443 in my iptables firewall and all tests (nmap, telnet, netstat, etc) show that the port is closed.

So, in my reading, I came across this:

"Make sure that you have /etc/httpd/conf/httpd.conf configured properly. in httpd.conf you should have a line like this (not commented out) Include conf.d/*.conf. in /etc/httpd/conf.d/ssl.conf you should have a line that says listen 443. keep in mind though that you will probably need to generate your own security certificates for ssl.

Also, make sure that mod_ssl is being loaded from httpd.conf or ssl.conf. If i remember correctly the command to load mod_ssl is in ssl.conf. LoadModule ssl_module modules/mod_ssl.so."

I don't seem to have anything referencing ssl.conf, so I am assuming it wasn't compiled with mod_ssl.

What would be the next step? I am thinking that I should upgrade apache to apache 2.2.8, but I understand that is a fairly significant upgrade from 2.0.

Assuming that I don't upgrade, would I just recompile the version I have, using mod_ssl. If I do upgrade to 2.2.8, what should I be looking to break? Is there some process that has worked well for anyone?
 
Sort by date Sort by votes
The ssl module doesn't get compiled in. It is simply loaded. If you are missing the module, you may have to upgrade. If you are using a distro that has yum installed, That would be the best way to go about it. Yum will not only download and install httpd but will also look for dependencies which are files that other packages need to have upgraded for everything to play nice. For example sometimes when you upgrade php, you also have to upgrade mysql and sometimes your vesion of apache is not compatible with newer releases of those so you can see why I'm suggesting a package management system like yum. You can also set it to check for updates nightly. That way you have the latest security updates a lot like Windows Update does automatically.

 
Upvote 0 Downvote
If you're running Apache on a Windows machine, you can get all the files you need very conveniently here:

If you're running a different OS, you may need to rebuild Apache, I'm not sure. When doing so, set the variables to include SSL by running [tt]./configure ??enable?shared=ssl ??enable?module=ssl[/tt] before you rebuild it.

You shouldn't have to upgrade, I've had SSL on my personal computers through several Apache versions.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

kristiandg
  • Locked
  • Question
Linux, "port mirror" between two boxes...
Replies
0
Views
249
kristiandg
kristiandg
AbidingDude
  • Locked
  • Question
Newbie Apache Cache Question
Replies
5
Views
392
AbidingDude
AbidingDude
bk Patel
  • Locked
  • Question
Openscape 4000 Eco Server
Replies
3
Views
430
bk Patel
bk Patel
SamBones
  • Locked
  • Question
CentOS 7 and Putty
Replies
2
Views
245
SamBones
SamBones
daniel.warner
  • Locked
  • Question
Desperately need help setting up wildcard certs on Apache/Tomcat
Replies
2
Views
257
daniel.warner
daniel.warner

Part and Inventory Search

Sponsor

Back
Top