I inherited a project that someone built in lampp, and I need create new SSL certs.
So I go to do so and it says that OpenSSL is not installed and to apt-get and install it.(Ubuntu by the way)
So before I did so, I wondered if it would cause any problems...since it was supposed to be part of the lampp stack.
We want to build a couple internal web apps for about 150 people to use, maybe 10 concurrently of any one app/site. LAMPP seems to be pretty simple to use for all it does, but their website has the following disclaimer at the bottom of this post, and there's some people here, programmers who like to make things way more intense/"cool" for programmers than they need to be for a small shop, who agrue that it shouldn't be used in production. I'm not really sure our internal 150 people classify as the type of "production" they are referring to below, I think they more mean a public facing site. We're never going to grow any bigger than this people-wise, or ever make these public facing sites. Just looking for some advice, as lampp seems very easy to use, as well as easy to backup and restore the entire lampp folder and get going on another server quickly in the event of a disaster.
As mentioned before, XAMPP is not meant for production use but only for developers in a development environment. The way XAMPP is configured is to be open as possible and allowing the developer anything he/she wants. For development environments this is great but in a production environment it could be fatal.
I just installed it by following steps in [URL]
but when I run "msfconsole", I got the following error messages telling me that ruby-openssl is not installed. I installed it "apt-get install libopenssl-ruby" but same message still comes again. I'm running Ubuntu 9.10.
root@qa-ud910-32-1:/opt/metasploit3/msf3/external/ruby-lorcon2# msfconsole
*** The ruby-openssl library is not installed, many features will be disabled!
*** Examples: Meterpreter, SSL Sockets, SMB/NTLM Authentication, and more
[-] ***
[Code]....
I installed LAMPP a couple of weeks ago and was working fine. Today when I try to start lampp, it will only start MySql and ProFTPD. It says "XAMPP: Another web server daemon is already running." How can I find out where this other server is located and stop it?
View 2 Replies View RelatedI want to recompile Apache in order to be SNI supportive because I need to use ssl named based virtual host:
I referred to the following links:
[URL]
I installed the latest version of openssl which is now openssl-1.0.0 I ran the following commands:
./config enable-tlsext --prefix=/usr/local2 --openssldir=/usr/local2/openssl
make
make test
make install
then to recompile apache with new SNI support I ran the following:
./configure --enable-so --enable-ssl --enable-rewrite --enable-unique-id --with-ssl=/usr/local2/openssl
make
make install
After that when I start Apache: /usr/local/apache2/bin/apachectl -k start I get the following error:
SSLStrictSNIVHostCheck failed; OpenSSL is not built with support for TLS extensions and SNI indication. Refer to the documentation, and build a compatible version of OpenSSL.
I got an task assigned to me, i have to create new ssl key, csr & crt files using openssl. But the file name must be of this kind (*.aaa.xx.aa). When I tried the file name starting with * its not accepting the file name. But when I tried with the file name starting with . its getting generated.
View 1 Replies View RelatedI would like to encrypt and decrypt zip file using OpenSSL keys. I have generated the keys and can encrypt normal text files but if I try to encrypt the zip file, I get error: "Error reading input Data" Following is what I have done.
generate keys:
Code:
openssl genrsa 4096 > private-key.pem
openssl rsa -pubout < private-key.pem
openssl rsa -pubout < private-key.pem > public-key.pem
encrypt the file:
Code:
openssl rsautl -encrypt -pubin -inkey public-key.pem -in test.zip test.zip.encrypted
I must use public/ private key pair (without any password) and I must use OpenSSL. But I can use any algorithm other than RSA (not sure which one to use and how).
For some years now I have been able to use openssl (apache-mod_ssl) to process encrypted traffic because I had, in effect, only one host - the main server - as the sole entry in our ssl_vhost.conf file.
Now we are working toward serving a couple of more secure sites for closely related organizations, but with their own distinct identities. This, in the past, would have meant additional static IPs with matching nic cards for starters. But my understanding is that since 2007/8 we have been able to use gnutls (apache-mod_gnutls) which gets around the old problem of Apache not being able to direct name-based traffic because that would not yet have been decoded. This is referred to as SNI - Server Name Indication.
Here my confusion begins. Is there an overlap between SSL and TLS? For instance, I would have generated RSA keys and a self-signed certificate with the genrsa command. Is this sufficient for gnutls or does it need to generate its own keys and certificates? I realize gnutls is relatively a new kid on the block but it is appealing and I'd like to give it a try.
I am working with the Mandriva/Mageia cooker with an x86_64 architecture so all packages are up-to-the-minute.
I am using fetchmail (with ssl support) to download my e-mail. About a week ago, the downloading from two servers stopped, among them gmail.com, due to an ssl error. Usually that means updating the ssl fingerprint in fetchmail.conf, and when I wanted to do this I discovered that there seems to a issue with openssl.
When I do openssl s_client -connect pop.gmail.com:995 -showcerts I now get an error
server:> openssl s_client -connect pop.gmail.com:995 -showcerts
CONNECTED(00000003) 5448:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:188:
Ubuntu 8.04 (2.6.24-28-server #1 SMP Sat Oct 16 17:53:34 UTC 2010 i686 GNU/Linux)OpenSSL 0.9.8g 19 Oct 2007
Can anybody explain to me what the error means and how to fix it?
It's been a short while since I had to put lampp on ubuntu 10.04. But, nevertheless I got it running eventually. I cannot seem to get it working on 10.10. Has anybody had experience with this yet? If so, what did you do to get it to work? Also, what differences does anybody know of that is preventing it from installing on 10.10 via the routes it would install on 10.04?
View 3 Replies View RelatedDoes anyone know if you can reconfigure webmin to use the lampp services instead of the default server services (e.g. apache, mysql, etc.)?
View 1 Replies View RelatedI had xampp going, but it got messed up and mysql wouldn't start. I thought reinstalling wou;d fix it, but it didn't.
when i do:
Code:
sudo /opt/lampp/lampp start
i get:
Code:
Starting XAMPP for Linux 1.7.3a...
[Code]....
i have been trying to host a site with lampp in ubuntu and i am pretty lost and sick of all the error messages, maby somone could give me a step by step guide how to do it. or got a bether option ?
View 8 Replies View RelatedHow can modify httpd-xampp.conf's permission on my opt/lampp/etc/extra/ directory? I tried chmod-ing it on terminal, there's no error message whatsoever on the terminal but it still can't be modified.
View 1 Replies View RelatedI have ubuntu 9.10, and installed the latest lampp with default options. Apache/Mysql/Proftpd would start and stop fine. I then did:
...which I got from here...[url] Although I'm pretty sure I was never prompted for the mySQL password. At any rate, now mySQL will not start (Apache and ProFTP are OK). Where can I start debugging this? Where is the conf file for mySQL?
I use dual boot with windos 7. i use xampp in win7. want to use lampp for ubuntu 10.04. i want to use one local server directoy for both . i successfuly changed htdocs location in lampp. but could not change mysql data directory location.
View 4 Replies View RelatedI am a newby in linux. i wanted to install lampp (xampp) but it gaves me an error that the operating system doesn't support 32 bit. I am using at this moment Fedora 12 x86_64.
I looked in another thread and they sad that i need to run yum whatprovides missing_lib_name but it don't show anything is there another way to get 32 bit support in linux because i really need xampp.
i was trying to move xampp's root directory from /opt/lampp/htdocs to /home/private/htdocs (in order to use Ubuntu One) but when i restarted apache i got "permission denied" when i tried to load the index page.so i said to my self...hey..let's chmod
i entered this three commands in terminal:
Code:
sudo chmod -R 755 /home/private/htdocs
sudo chmod 755 /home/private
sudo chmod 755 /home
('private' is my username)
after a couple of seconds everything begun to disapper, shortcuts on my desktop, my wallpaper...all.i even tried to execute another command with sudo but i got a nice error message that said i don't have permissions to execute bla bla.now i can't even log into my user.
I installed IBSng in ubuntu-server .but i can not start this server :Code:[root@myserver]# /etc/init.d/IBSng start.: 8: Can't open /etc/rc.d/init.d/functions"functions" file is in RPM base system . and ubuntu have not this file
View 2 Replies View RelatedI'm unable to compile ruby 1.9.X and I found out it was related to openssl, although it seems there's a patch available for ruby I don't know how to apply it so I was thinking on downgrading to openssl 0.9.8n
I'm using F13 btw, I'm still posting it here as openssl 1.0.0 was first introduced on F12, the other major distros are still using openssl 0.9.8k so there's no much information on the problem
I have a weird problem in which I try to use cryptodev in Openssl version 0.9.8g, but then if an error occurs or the system logs out, the version for Openssl rolls back to 0.9.8b.I have also tried reinstalling, but no dice. The version stays 0.9.8b. I am using Intel Tolapai with RedHat 5
View 1 Replies View RelatedI was upgrading openssl 0.7 to 0.9.81 in my redhat 9 server. I've followed the guideline from here: [url]
Now everything is messed up There's no libcrypto.so in /usr/local/ssl/lib directory. Only libcrypto.a. Neither in /usr/lib or /lib directory. I can't even run scp or wget to download rpm of openssl. Getting libcrypto.so error. I've use locate command to find libcrypto.so. There's none. I've run ./config, make, make test and make install command again in the openssl 0.9.81 source directory. But no luck. No libcrypto.so. This is a production server and the httpd went down.
I am trying to get openssl to verify a certificate. I will walk you through what I have done so far.
1. openssl genrsa -des3 -out connect.mydomain.com.key 2048
2. openssl req -new -key connect.mydomain.com.key -out connect.mydomain.com.csr
3. Bought an SSL from GoDaddy.
4. Submitted my CSR
5. Downloaded sf_bundle.crt (CA File I presume)
6. Downloaded connect.mydomain.com.crt
Now I can do the following: [root@server tls]# openssl verify -CAfile sf_bundle.crt connect.mydomain.com.crt
connect.mydomain.com.crt: OK This is specifying the CAfile.
[Code]...
in order to share profiles between a Mahara and a Moodle installation I need to get OpenSSL working.
I've got OpenSSL installed on the server and followed this tutorial. However, I still get an error message saying that either OpenSSL or PHPs support for OpenSSL are missing: Could not generate a new SSL key. Are you sure that both openssl and the PHP module for openssl are installed on this machine?
What would be the next steps to actually set up the Apache server and PHP so they can use OpenSSL? (I've already specified the path to my caconfig.cnf file in Maharas config.php)
I am a new administrator and am running SLES 11 on a VM. I have openssl installed, but when I attempt to compile an add-on module to Nginx I get the following list of errors:
[Code]...
I've been googling around and have had a bit of a hard time trying to find help with this little issue. Managed to install CouchDB on the server at work after doing some fiddling due to not having spidermonkey availableAnyways, rt of this involved updating openssl.fter doing this however all hell broke loose.It seems a lot of programs needed the old version- I keep getting: error while loading shared libraries: libssl.so.0.9.8: cannot open shared object file: No such file or directory
I did a search:
>locate libssl.so.0.9.8
And it returned:
[code]...
I have problem in installing openvpn I get this error:
[Code]....
I want to use FIPS mode under linux. With openssl-0.9.8o, I typed "./config fipscanisterbuild" and then typed "make". The compile successful. Then I did a test about fips, below is my test code (main.cpp):
#include <iostream>
#include <openssl/ssl.h>
#include <openssl/fips.h>
int main(int argc, char *argv[])
{
[Code]....
Is it mandatory to reboot a public server after upgrading openssl? Or is it sufficient to restart the services?
View 2 Replies View RelatedI'm using Apache as a web server and mod_ssl to handle my certs. Everything was working fine on Fedora 11 running 0.9.8x of openssl until I updated to 12. Version 1.0.0beta4 of open ssl is full of bugs. It is basically incompatible with .net and php's implementation of SSL. Running wireshark actually shows it fails at handshake stages...
I'm not here to report the bugs relating to openssl but can somebody please explain why there is an unstable version of openssl in Fedora 12 as standard?