[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] How to install self-signed cert?
- Subject: Re: [cobalt-security] How to install self-signed cert?
- From: Michael Stauber <cobalt@xxxxxxxxxxxxxx>
- Date: Wed, 5 Sep 2001 22:38:23 +0200
- Organization: Stauber Multimedia Design
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Daniel,
> I have upgraded to Apache 1.3.20 on my RaQ 3. I
> did NOT, however, run "make install", as I had
> read that this would screw up the Cobalt
> web gui.
Might as well be if you'e not darn carefully, right. The thing is that you
can compile a new Apache and get it to work with the adminserver. However,
you need to make sure you compile it with the same options as the Apache that
Cobalt built ages ago.
A looong time ago I used the following script on a RaQ2 (not RaQ3!!) to
recompile an Apache so that it included a static PHP4.0.3 module. While the
script will not work on the RaQ3 without modifications it might give you
ideas what your compile configuration is supposed to look like. Especially
the included libs and the set paths:
---------------config.final---------------
#!/bin/sh
##
## config.status -- APACI auto-generated configuration restore script
##
## Use this shell script to re-run the APACI configure script for
## restoring your configuration. Additional parameters can be supplied.
##
OPTIM="-O2 -fomit-frame-pointer -DCOBALT_RAQ_LED" \
LIBS="-lpam -lpwdb -ldl" \
../configure \
"--prefix=/usr" \
"--libexecdir=/usr/lib/apache" \
"--sysconfdir=/etc/httpd/conf" \
"--serverroot=/etc/httpd" \
"--datadir=/usr/doc/httpd" \
"--includedir=/usr/include/apache" \
"--logfiledir=/var/log/httpd" \
"--localstatedir=/var" \
"--runtimedir=/var/run" \
"--proxycachedir=/var/cache/httpd" \
"--enable-module=all" \
"--enable-module=rewrite" \
"--add-module=/usr/src/redhat/SOURCES/mod_auth_pam.c" \
"--enable-shared=remain" \
"--disable-rule=WANTHSREGEX" \
"--activate-module=src/modules/php4/libphp4.a" \
"$@"
---------------config.final---------------
You can also fetch some of the compile settings from the old apache by running
/usr/sbin/httpd -V <-- capital V!!
And yes, once you have run configure and make, don't run make install.
Instead copy the executable "httpd" to /usr/sbin/httpd, but *before* you
should make a backup of the original.
Also you will need to modify your /etc/httpd/httpd.conf (backup before!!) to
implement a few things and options which are either new, or no longer working.
> How to install a self-signed cert?
If you did build Apache with SSL support (missing in the above configuration)
and have proper paths set, then the GUI should be able to handle that for you.
I'm sorry that I cannot do more than to give you a few pointers or even tell
you things you might already have figured out by yourself. But maybe someone
else who knows more will jump in.
--
With best regards,
Michael Stauber
SOLARSPEED.NET