I'm try to start certificate authentication from my web site..
vhosts.conf for httpd:
<IfModule mod_ssl.c>
<VirtualHost 127.0.0.1:443>
ServerName ca.asu
[Code].....
i've been trying to configure authentication for a particular tool on a website i've been building
i've tried php http authorization and .htaccess/.htpasswd files, neither seem to work
Code:
<?php
if (!isset($_SERVER['PHP_AUTH_TYPE'])) {
header('WWW-Authenticate: Basic realm="My Realma"');
header('HTTP/1.0 401 Unauthorized');
[Code]....
In my httpd log I always get this recurring error
[notice] Digest: generating secret for digest authentication ...
[notice] Digest: done
[warn] RSA server certificate CommonName (CN) `srvspam' does NOT match server name!?
i just bought ssl certificate for my website but i really like huh? how to install it no idea!
View 1 Replies View RelatedI was trying to configure user authentication in SSH using certificate method.As u all know the usual way of authentication is using the ssh-keygen method. But i want the another method where we create a certificate key and send it to the CA, which signs it and send back etc etc.I cannot find any unique procedure in the net to configure this method.
View 3 Replies View Relateddoes anybody have a nice tutorial about creating and installing Apache client certificate (PKCS12) ? I`m looking for some tutorials to CentOS. This what I have found on the internet for some reasons doesnt work. Or maybe somebody could write here how to do it?
View 1 Replies View RelatedI get an Untrusted Connection error when I visit this site to login into my GRE account, and I cannot add it as an exception, in Mozilla Firefox 4.0 on Ubuntu 11.04. When I visit the site using Chrome, I have no issues. Is this a bug in Firefox's certificate management? I'm using Ubuntu 11.04. I do not get this error in Windows' Firefox 4.0.
View 3 Replies View RelatedI have CentOS Directory Server running on CentOS 5. I try to add certificate, issued by our CA. I made an certificate request, and I got the certificate. I installed it, but I forgot to install the CA Certificate. Now I got the following error:
View 2 Replies View RelatedI've had qmail running on a server for three years, almost forgot how difficult that installation was. I got away with it because I downloaded Qmail Rocks and followed all their instructions step by step. However, Qmail Rocks is based on qmail 1.03. I just had to install qmail on a new server, so this time I looked around and found netqmail 1.06 and decided to go with it, following the instructions on Life With Qmail. It was a good decision. A read a lot more documentation and now I understand qmail a lot better.
But I can't get past one point: authentication. Consider this test on Qmail Rocks:
Code:
telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 somewhere.anywhere.com ESMTP
ehlo localhost
250-somewhere.anywhere.com
250-AUTH LOGIN CRAM-MD5 PLAIN
250-AUTH=LOGIN CRAM-MD5 PLAIN
250-STARTTLS
250-PIPELINING
250 8BITMIME
starttls
220 ready for tls
quit
quit
Connection closed by foreign host.
That test works fine on my old server. But qmail behaves differently on my new server:
Code:
# netqmail-1.06> telnet localhost 25
Trying 127.0.0.1...
Connected to localhost.
Escape character is '^]'.
220 domain.com ESMTP
ehlo localhost
250-domain.com
250-PIPELINING
250 8BITMIME
starttls
502 unimplemented (#5.5.1)
quit
221 domain.com
Connection closed by foreign host.
That same page on Qmail Rocks says that I need to have a certificate, the procedure is described here. The installation procedure given by LWQ does not include that step. Running 'make cert' inside the source directory of netqmail-1.06 does not work:
Code:
# netqmail-1.06> make cert
make: *** No rule to make target `cert'. Stop.
In my vast ignorance, I copied /var/qmail/control/servercert.pem from my old server over to the new one. I also fixed all ownership and permissions. I don't know if I am allowed to do that. But although those are two different boxes, I am in fact installing the same domain in the new box. The new server is going to replace the old one as soon as it's running perfectly. I restarted qmail and... authentication still does not work.
When I am trying to run the Xserver using the command startx I am getting the below mentioned error
xauth: creating new authority file /oracle/oracle10g/.serverauth.22555
Fatal server error:PAM authentication failed, cannot start X server. Perhaps you do not have console ownership?
[code]....
I'm trying to install an Ubuntu cloud on my home network - I've been following this guide. When I arrived at STEP 6: Install an image from the store PART 3: Click on the Store tab I get the following error message on the page: Error 60: server certificate verification failed. CAfile: /etc/ssl/certs/ca-certificates.crt CRLfile: none
View 1 Replies View RelatedCan't find any step by step info about moving web site from one server to another. I have to move website from open BSD to CentOS. Maybe somebody can help me with this. All I did is : copied www directory to new server, installed apache, installed php, installed mysql, copied mysql datadase to new server.But website still not loading.
View 1 Replies View Relatedhow to turn my computer on and browse the web. I want to host my website form my computer, only problem i don't now how to do it. It will take some time for me to understand this Os. (For now) My question is Can i use xampp linux to host my website using the security of centos. i now how to use xampp but i don't now how to use centos.? try reading around but i connot event find the yum program use to install softwares.
View 4 Replies View RelatedI have set up a 5.5 installation on a Virtual box VM. The Virtualbox (not for the VM) network preferences have DHCP Server disabled and IPV address and the network mask I believe are valid for my home network. My VM is up and running and it has gotten an IP address from my home router and everything seems fine. From any machine in my house I can ssh into my centos installation. I went ahead and started up the httpd service and the website is up. IOW, I can see it from my centos box - when I navigate to http://localhost However, I cannot see it from any other machine on the net. The IP address of the centos bos is 192.168.0.141. From the centos I can do a ttp://192.168.0.141 and see the Apache 2 test Page. I can see that from anywhere else. Although I can ssh to that machine.
View 4 Replies View RelatedI have 4 centos5 apache webservers all on the same network, recently, 2 of the webservers have stopped being able to ping or browse one particular website where feeds are obtained from this site. I have checked and firewall and selinux settings are disabled. The two webservers are able to ping and browse other sites. Dns settings are the same for all 4 servers. traceroute for working and not working webservers are the same.
View 1 Replies View RelatedI am using KVM and created four guest Operating systems on it.The server host is Ubuntu 10.04.I am using 4 websites in a reverse proxy environment.One of our website is running on CentOS VM.Right now there is no traffic on the website static HTML pages.I do not have any clue as why it was taking longer time to be accessed.
View 2 Replies View RelatedI have installed centOS Server edition on my laptop and installed apache and mysql on server, i wanted to understand how can i make my server on line and host my website on my own server. I am using MTNL Broad band, and i have one static ip, How to make web server in centOS 5.5.
View 7 Replies View Relatedi have a website named [URL]... now i want to access this website using proxy server(squid,or etc...) under my personal server named [URL]...means that [URL]...
View 4 Replies View RelatedI already have this setup working in a debian server but I would like to setup the same in CentOS 5.3. I just copied all the configuration files to the CentOS server but I'm getting the following errors in messages:
vsftpd: nss_ldap: reconnecting to LDAP server (sleeping 64 seconds)...
vsftpd: nss_ldap: reconnecting to LDAP server (sleeping 64 seconds)...
crond[24483]: nss_ldap: reconnecting to LDAP server (sleeping 4 seconds)...
crond[24483]: nss_ldap: reconnecting to LDAP server (sleeping 8 seconds)...
crond[24483]: nss_ldap: reconnecting to LDAP server (sleeping 16 seconds)...
crond[24483]: nss_ldap: reconnecting to LDAP server (sleeping 32 seconds)...
[Code]...
I'm running freeradius2-2.1.7-7.el5, on CentOS 5.5. I have gotten all of the authentication setup for active directory and I know that the machine is able to pass requests along to our AD server. However it doesn't appear that freeradius is doing the same. I have been looking at the attached radius -x output for about 2 days now and I have done a ton of searching and have come up relatively empty handed.
View 3 Replies View RelatedI would like to configure Squid and DansGuardian that way, that it's a Proxy with Authentication via Website. That means: A new Notebook gets about DHCP the Network-Information like IP-Adress etc.. When he now tries to open a Internet connection it should check if he's authenticated and if not he should get (if this try is from a browser) a login screen in http. It should also not be possible to have internetconnection without being logged in. The clients are Windoze, Mac and Linux. My question now. What programms/deamons are there for doing this authentication. Would you decide for another Programm instead of Squid?
View 2 Replies View RelatedI am using Samba on the lastest CentOS 5 64bit however the netlogon for windows authentication isn't working.
View 18 Replies View RelatedHow do I turn winbind authentication off or vsftpd. I keep getting these error messages in the /var/log/ secure:vsftpd: pam_winbind(vsftpd:auth): request failed: No such user, PAM error was User not known to the underlying authentication module (10), NT error was NT_STATUS_NO_SUCH_USER.I already tried remarking out different things in the config files. Is it safe to remark out the winbind stuff in /etc/pam.d/system-auth if we are using the smbclient to connect to a Windows share?Why would you want to to use AD to authenticate users for something simple like FTP is beyond me.I merely want it to authenticate against local system users.
View 3 Replies View RelatedI am having a time at trying to get a simple FTP setup to my Var/www/html folder for my canned Joomla website. I can log in anon with no write permissions, but it will not log in using any users I have setup on the server. I've googled a bunch, but nothing to correct my 530 authentication failure when I try to log in as one of my user accounts for the server.
View 2 Replies View RelatedI'm configuring a new Centos 5.5 server in replacement of an old W2K server.The topology of our network is simple : one file/dhcp/dns relay server and workstations (PC's and some MAC's) plus network printers and scanners.All the workstations have dynamic IP addresses (easier because a lot of 'dynamic' changes : new persons with their own laptop, ...) and the server and printers/scanners have fixed IP addresses.I edited the dhcpd.conf (see here underneath), I have the file dhcpd.leases but it doesn't start !
DHCPD.CONF
ddns-update-style interim;
ignore client-updates;
[code].....
when I reboot the server with centos 5.5 the SMB deamon doesn't start?
View 2 Replies View RelatedI am trying to install openssh server with public key authentication on CentOS.
But i am getting following error message: Disconnected: No supported authentication method available Server refused keys
My sshd_conf file is as follows:
I have Windows 2008R2 Server acting as Domain Controller for Windows7/XP clients. and CentOS 5.3 Installed configured as Samba Server, I want to make it as ADS member server so any user to login to any machine, and be able to access their Samba share.
View 3 Replies View RelatedI am administrating a server with CentOS installed. It came with qmail and courier-imap preinstalled, and Plesk.I need to manually add email accounts outside of Plesk, because my 1-domain Plesk license only allows the creation of one email address (yes, it sucks).
When I say add email account I mean creating a new email address, have email for that address be stored in its maildir, and have a corresponding imap (and hipefully also pop3) account that will be able to read that mail. All this with virtual domains.I've already found out how to create the new email addresses for qmail, so that email for the new email address is being delivered correctly. Now I need to create the imap/pop3 accounts for courier.
For the qmail part, I create a folder in in /var/qmail/mailnames/virtualdomain.org/username and a maildir called Maildir inside it. This is how the first mail address was created by Plesk and i'd like to maintain the same structure. As I've said, the qmail part is already working, I need to get the courier-imap part to work. Ideally, it should accept login with both short (i.e. myuser) and long (i.e. myuser@virtualdomain.org) user names.
Currently the only authentication module that is enabled in courier-imap is authpsa, which is Plesk's authentication module.in order to add more authentication modules, do I just need to add them to the authentication module list in /etc/courierimap/imapd, or do I need to reinstall courier-imap with support for such authentication modules? I thought I would only need to add them to the list, but I've noticed that the /usr/lib/courier-imap/authlib/ folder only contains a binary called "authpsa". Does that mean that other authentication modules are not even installed? If so, can I install them without reinstalling courier?
The second question is, what would be the most recommended authentication module that would make it easiest to create new email addresses/accounts from the command line? I need to be able to write a shell scripts capable of creating a new email address with all that is needed, and I'd like to keep this script as simple as possible, so for example I'd avoid mysql-based authentication as it sounds rather complicated. And the last question is, if I do need to reinstall courier-imap, how can I install a package without recompiling it? Will my one existing mailbox keep working?
i have a small issue, to make our network more secure, i now require outgoing email to require authentication. Now the problem..i have a automated mailer that does not have the option to authenticate. is there a way to allow a certain email address or the local network to send out without authentication? If i cannot do this for a single email user to allow them through with authentication, how would i remove the authentication paramaters in the postfix smtp..
View 2 Replies View Related