On Thu, 2011-09-29 at 20:03 -0600, Leonel Nunez wrote: > Packages for Ubuntu Oneiric 11.10 are ready at launchpad so .. start > testing your new servers ;) Cool. I'm installing right now.... > As of now I'll include packages for 11.10 -- -- Vincenzo Ampolo http://vincenzo-ampolo.net http://goshawknest.wordpress.com
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Ok, I must been doing something stupid. This should take me less than 10 minutes, but for some reason it is not working. I am trying to create a simple virtua server to use php. There I want to test some php cms like wordpress or joomla. Nothing fancy, just a simple vserver for php aplications. I set the document root to /jaulas/pruebas/home/pruebas/web because I am using a chroot user with ssh. For some reason the document root always goes to /var/www instead of /jaulas/pruebas/home/pruebas/web. I am using cherokee 1.2.2. Here is my configuration for that virtual server: vserver!130!directory_index = index.php,index.html vserver!130!document_root = /jaulas/guachala/home/guachala/web vserver!130!error_writer!filename = /var/log/cherokee/pruebas-error vserver!130!error_writer!type = file vserver!130!logger = combined vserver!130!logger!access!filename = /var/log/cherokee/pruebas-access vserver!130!logger!access!type = file vserver!130!match = wildcard vserver!130!match!domain!1 = *cms.cayambelibre.com vserver!130!nick = www.guachala.com vserver!130!rule!20!encoder!gzip = 1 vserver!130!rule!20!handler = fcgi vserver!130!rule!20!handler!balancer = round_robin(Continue reading)
Hi!, I am still having this problem, anyone have any idea how can I fix it?
I checked the config.log file and found this:
configure:19603: gcc -std=gnu99 -o conftest -march=nocona -O3 conftest.c -lssl -L/opt/openssl-1.0.0e/lib -ldl >&5
/usr/bin/ld: warning: libcrypto.so.1.0.0, needed by /opt/openssl-1.0.0e/lib/libssl.so, not found (try using -rpath or -rpath-link)
but the files are there:
[root <at> server lib]# pwd
/opt/openssl-1.0.0e/lib
[root <at> server lib]# ls -la
drwxr-xr-x 4 root root 4096 Sep 30 17:31 .
drwxr-xr-x 6 root root 4096 Sep 30 17:31 ..
drwxr-xr-x 2 root root 4096 Sep 30 17:31 engines
-rw-r--r-- 1 root root 3575530 Sep 30 17:31 libcrypto.a
lrwxrwxrwx 1 root root 18 Sep 30 17:31 libcrypto.so -> libcrypto.so.1.0.0
-r-xr-xr-x 1 root root 1968482 Sep 30 17:31 libcrypto.so.1.0.0
-rw-r--r-- 1 root root 643388 Sep 30 17:31 libssl.a
lrwxrwxrwx 1 root root 15 Sep 30 17:31 libssl.so -> libssl.so.1.0.0
-r-xr-xr-x 1 root root 403713 Sep 30 17:31 libssl.so.1.0.0
drwxr-xr-x 2 root root 4096 Sep 30 17:31 pkgconfig
Any suggestion?
thanks for your time!
Jorge S.On Fri, Sep 30, 2011 at 3:16 PM, Alvaro Lopez Ortega <alvaro <at> octality.com> wrote:Check the config.log file. It contains the internal details of every test performed by the configure script.
--
Sent from my HTC----- Reply message -----
From: "Jorge Sarmiento" <jorge.sarmiento <at> gmail.com>
To: "cherokee" <cherokee <at> lists.octality.com>
Subject: [Cherokee] problem compiling with ssl support under CentOS 5 + openssl-1.0.0e built from sources
Date: Fri, Sep 30, 2011 9:26 am
Hi,I am trying to compile cherokee (latest trunk cherokee-1.2.99b6870) with SSL support under CentOS 5.7I've compiled openssl-1.0.0e from sources using:./config shared --prefix=/opt/openssl-1.0.0e && make && make installto avoid it overwriting native CentOS 5.7 OpenSSL rpm'sAnd I'm trying to configure Cherokee using:./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var --disable-ipv6 --with-ldap=no --with-mysql=no --with-geoip=no --with-ffmpeg=no --with-wwwroot=/var/www/cherokee/default/ --with-libssl=/opt/openssl-1.0.0e --enable-static=yes --enable-static-module=allHowever I keep on getting:OpenSSL support noI've trying several combinations on the --with-libssl= value (/opt/openssl-1.0.0e /opt/openssl-1.0.0e/lib /opt/openssl-1.0.0e/include), but still no OpenSSL support after ./configAny ideas what I could be doing wrong?thanks!Jorge S.
_______________________________________________ Cherokee mailing list Cherokee <at> lists.octality.com http://lists.octality.com/listinfo/cherokee
Jorge, if you get it working, let me know. In the past I had the same problem with CentOS 5.5. Right now I'm doing SSL encryption with nginx as a reverse proxy in front of Cherokee. Very ugly solution...but the reality is: Cherokee + CentOS + SSL = problems I still can't figure out why there are packages for home linux distros but there are not for enterprise ones, like RedHat or CentOS... As long there are no packages available for those arquitectures, there will be always the same compiling problems due to the Redhat policy of being so conservative with the software. Meanwhile, admins of big corporations think: do I deploy Apache -standard package, 0 problems- or do I install Cherokee -no standard package, and I need to compile it, compilation will not work,...then I need to install newer libssl libraries...., and compilation still will not work...- Ummmm, maybe I'll get a try to CHerokee next yearWhat a pity... Alvaro, can you see there are problems with Cherokee + CentOS/RedHat? Is it technically impossible to solve this situation? Is it impossible to statically compile all the stuff needed by Cherokee and create CentOS/RedHat packages? I can figure out what is the problem... come on, we put a man on the moon!
r--r-- 1 root root 3575530 Sep 30 17:31 libcrypto.a >> lrwxrwxrwx 1 root root 18 Sep 30 17:31 libcrypto.so -> >> libcrypto.so.1.0.0 >> -r-xr-xr-x 1 root root 1968482 Sep 30 17:31 libcrypto.so.1.0.0 >> -rw-r--r-- 1 root root 643388 Sep 30 17:31 libssl.a >> lrwxrwxrwx 1 root root 15 Sep 30 17:31 libssl.so -> libssl.so.1.0.0 >> -r-xr-xr-x 1 root root 403713 Sep 30 17:31 libssl.so.1.0.0 >> drwxr-xr-x 2 root root 4096 Sep 30 17:31 pkgconfig >> >> Any suggestion? >> >> thanks for your time! >> >> Jorge S. >> >> >> On Fri, Sep 30, 2011 at 3:16 PM, Alvaro Lopez Ortega >> <alvaro <at> octality.com>wrote: >> >>> Check the config.log file. It contains the internal details of every >>> test >>> performed by the configure script. >>> >>> -- >>> Sent from my HTC >>> >>> >>> ----- Reply message ----- >>> From: "Jorge Sarmiento" <jorge.sarmiento <at> gmail.com> >>> To: "cherokee" <cherokee <at> lists.octality.com> >>> Subject: [Cherokee] problem compiling with ssl support under CentOS 5 + >>> openssl-1.0.0e built from sources >>> Date: Fri, Sep 30, 2011 9:26 am >>> >>> >>> Hi, >>> >>> I am trying to compile cherokee (latest trunk cherokee-1.2.99b6870) >>> with >>> SSL support under CentOS 5.7 >>> >>> I've compiled openssl-1.0.0e from sources using: >>> ./config shared --prefix=/opt/openssl-1.0.0e && make && make install >>> to avoid it overwriting native CentOS 5.7 OpenSSL rpm's >>> >>> And I'm trying to configure Cherokee using: >>> ./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var >>> --disable-ipv6 --with-ldap=no --with-mysql=no --with-geoip=no >>> --with-ffmpeg=no --with-wwwroot=/var/www/cherokee/default/ >>> --with-libssl=/opt/openssl-1.0.0e --enable-static=yes >>> --enable-static-module=all >>> >>> However I keep on getting: >>> OpenSSL support no >>> >>> I've trying several combinations on the --with-libssl= value >>> (/opt/openssl-1.0.0e /opt/openssl-1.0.0e/lib >>> /opt/openssl-1.0.0e/include), >>> but still no OpenSSL support after ./config >>> >>> Any ideas what I could be doing wrong? >>> >>> thanks! >>> >>> Jorge S. >>> >> >> -- --------------------- Hugo Vázquez Caramés "El trabajo que nunca se empieza es el que tarda más en finalizarse" (J. R. R. Tolkien) "La mayoría de las personas gastan más tiempo y energías en hablar de los problemas que en afrontarlos" (Henry Ford) "Lo imposible es el fantasma de los tímidos y el refugio de los cobardes" (N. Bonaparte) ======================================================== PENTEST Consultores Tel: 93 3962070 / Fax: 93 3962001 e-mail: hvazquez <at> pentest.es ======================================================== Gane credibilidad y confianza, visite http://www.pentest.es Este e-mail es confidencial y destinado únicamente a la persona a la cual va dirigido. Si Ud. no es el destinatario al cual va dirigido este e-mail o lo recibe por error, queda advertido que cualquier uso, difusión,impresión o copia de este mensaje está estrictamente prohibido. Si lo ha recibido por error, por favor, notifíquelo al remitente del mensaje This email is confidential and intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient,be advised that you have received this email in error and that any use,dissemination, forwarding, printing or copying of this email is strictly prohibited. If you have received this email in error please notify it to sender.
Hugo:
Jorge, if you get it working, let me know. In the past I had the same problem with CentOS 5.5. Right now I'm doing SSL encryption with nginx as a reverse proxy in front of Cherokee. Very ugly solution...but the reality is:
Cherokee + CentOS + SSL = problems
I still can't figure out why there are packages for home linux distros but there are not for enterprise ones, like RedHat or CentOS...
As long there are no packages available for those arquitectures, there will be always the same compiling problems due to the Redhat policy of being so conservative with the software. Meanwhile, admins of big corporations think: do I deploy Apache -standard package, 0 problems- or do I install Cherokee -no standard package, and I need to compile it, compilation will not work,...then I need to install newer libssl libraries...., and compilation still will not work...- Ummmm, maybe I'll get a try to CHerokee next year
What a pity...
Alvaro, can you see there are problems with Cherokee + CentOS/RedHat? Is it technically impossible to solve this situation? Is it impossible to statically compile all the stuff needed by Cherokee and create CentOS/RedHat packages? I can figure out what is the problem... come on, we put a man on the moon!
Kind Regards,--
On Wed, 05 Oct 2011 05:54:13 +0200, Jorge Sarmiento <jorge.sarmiento <at> gmail.com> wrote:Hi!, I am still having this problem, anyone have any idea how can I fix it?
I checked the config.log file and found this:
configure:19603: gcc -std=gnu99 -o conftest -march=nocona -O3 conftest.c
-lssl -L/opt/openssl-1.0.0e/lib -ldl >&5
/usr/bin/ld: warning: libcrypto.so.1.0.0, needed by
/opt/openssl-1.0.0e/lib/libssl.so, not found (try using -rpath or
-rpath-link)
but the files are there:
[root <at> server lib]# pwd
/opt/openssl-1.0.0e/lib
[root <at> server lib]# ls -la
drwxr-xr-x 4 root root 4096 Sep 30 17:31 .
drwxr-xr-x 6 root root 4096 Sep 30 17:31 ..
drwxr-xr-x 2 root root 4096 Sep 30 17:31 engines
-rw-r--r-- 1 root root 3575530 Sep 30 17:31 libcrypto.a
lrwxrwxrwx 1 root root 18 Sep 30 17:31 libcrypto.so ->
libcrypto.so.1.0.0
-r-xr-xr-x 1 root root 1968482 Sep 30 17:31 libcrypto.so.1.0.0
-rw-r--r-- 1 root root 643388 Sep 30 17:31 libssl.a
lrwxrwxrwx 1 root root 15 Sep 30 17:31 libssl.so -> libssl.so.1.0.0
-r-xr-xr-x 1 root root 403713 Sep 30 17:31 libssl.so.1.0.0
drwxr-xr-x 2 root root 4096 Sep 30 17:31 pkgconfig
Any suggestion?
thanks for your time!
Jorge S.
On Fri, Sep 30, 2011 at 3:16 PM, Alvaro Lopez Ortega <alvaro <at> octality.com>wrote:Check the config.log file. It contains the internal details of every test
performed by the configure script.
--
Sent from my HTC
----- Reply message -----
From: "Jorge Sarmiento" <jorge.sarmiento <at> gmail.com>
To: "cherokee" <cherokee <at> lists.octality.com>
Subject: [Cherokee] problem compiling with ssl support under CentOS 5 +
openssl-1.0.0e built from sources
Date: Fri, Sep 30, 2011 9:26 am
Hi,
I am trying to compile cherokee (latest trunk cherokee-1.2.99b6870) with
SSL support under CentOS 5.7
I've compiled openssl-1.0.0e from sources using:
./config shared --prefix=/opt/openssl-1.0.0e && make && make install
to avoid it overwriting native CentOS 5.7 OpenSSL rpm's
And I'm trying to configure Cherokee using:
./configure --prefix=/usr --sysconfdir=/etc --localstatedir=/var
--disable-ipv6 --with-ldap=no --with-mysql=no --with-geoip=no
--with-ffmpeg=no --with-wwwroot=/var/www/cherokee/default/
--with-libssl=/opt/openssl-1.0.0e --enable-static=yes
--enable-static-module=all
However I keep on getting:
OpenSSL support no
I've trying several combinations on the --with-libssl= value
(/opt/openssl-1.0.0e /opt/openssl-1.0.0e/lib /opt/openssl-1.0.0e/include),
but still no OpenSSL support after ./config
Any ideas what I could be doing wrong?
thanks!
Jorge S.
---------------------
Hugo Vázquez Caramés
"El trabajo que nunca se empieza es el que tarda más en finalizarse" (J. R. R. Tolkien)
"La mayoría de las personas gastan más tiempo y energías en hablar de los problemas que en afrontarlos" (Henry Ford)
"Lo imposible es el fantasma de los tímidos y el refugio de los cobardes" (N. Bonaparte)
========================================================
PENTEST Consultores
Tel: 93 3962070 / Fax: 93 3962001
e-mail: hvazquez <at> pentest.es
========================================================
Gane credibilidad y confianza, visite http://www.pentest.es
Este e-mail es confidencial y destinado únicamente a la persona a la cual va dirigido. Si Ud. no es el destinatario al cual va dirigido este e-mail o lo recibe por error, queda advertido que cualquier uso, difusión,impresión o copia de este mensaje está estrictamente prohibido. Si lo ha recibido por error, por favor, notifíquelo al remitente del mensaje
This email is confidential and intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient,be advised that you have received this email in error and that any use,dissemination, forwarding, printing or copying of this email is strictly prohibited. If you have received this email in error please notify it to sender.
_______________________________________________ Cherokee mailing list Cherokee <at> lists.octality.com http://lists.octality.com/listinfo/cherokee
OK, don't be dramatic...
Hello Guys,
OK, don't be dramatic...
That's why I can't understand why:
1.- There are no statically linked binary compiled packages with all the required libraries -openssl 1+,...-
or
2.- Why compilation with openssl 1+ do not work easily -I do not know if ir works at all...-
Anyway, the key point is what you have told: "there are thousands of CentOS 5.x servers at hosting providers". Yes that's a fact.
Regards,
On Wed, 05 Oct 2011 10:36:47 +0200, Jorge Sarmiento <jorge.sarmiento <at> gmail.com> wrote:It's indeed a shame because there are thousands of CentOS 5.x servers at hosting providers (probably more than Debian/Ubuntu/etc.)
--
---------------------
Hugo Vázquez Caramés
"El trabajo que nunca se empieza es el que tarda más en finalizarse" (J. R. R. Tolkien)
"La mayoría de las personas gastan más tiempo y energías en hablar de los problemas que en afrontarlos" (Henry Ford)
"Lo imposible es el fantasma de los tímidos y el refugio de los cobardes" (N. Bonaparte)
========================================================
PENTEST Consultores
Tel: 93 3962070 / Fax: 93 3962001
e-mail: hvazquez <at> pentest.es
========================================================
Gane credibilidad y confianza, visite http://www.pentest.es
Este e-mail es confidencial y destinado únicamente a la persona a la cual va dirigido. Si Ud. no es el destinatario al cual va dirigido este e-mail o lo recibe por error, queda advertido que cualquier uso, difusión,impresión o copia de este mensaje está estrictamente prohibido. Si lo ha recibido por error, por favor, notifíquelo al remitente del mensaje
This email is confidential and intended solely for the use of the individual to whom it is addressed. If you are not the intended recipient,be advised that you have received this email in error and that any use,dissemination, forwarding, printing or copying of this email is strictly prohibited. If you have received this email in error please notify it to sender.
_______________________________________________
Cherokee mailing list
Cherokee <at> lists.octality.com
http://lists.octality.com/listinfo/cherokee
_______________________________________________ Cherokee mailing list Cherokee <at> lists.octality.com http://lists.octality.com/listinfo/cherokee
Hi everyone, I'm trying to configure Cherokee to host a site over SSL. However, for some reason, Cherokee is serving plain HTTP over port 443, and not HTTPS. In other words, https://springfield.youareaninja.com/ doesn't work, but http://springfield.youareaninja.com:443/ works. My configuration: - Cherokee 1.2.99 from the unstable Debian repository (installed on Debian Testing) - SSL/TLS back-end set to OpenSSL/libssl - Port 443 added as a port, and "TLS/SSL port" ticked - Certificate and certificate key specified in vserver Security tab This server only has one virtual host, the default host. I initially tried with a StartSSL certificate, but I tried "Tasks -> SSL/TLS testing" in rule management and it has the same issue. At the moment, it's set to use the self-signed certificate. Any suggestions or ideas? Thanks!
cat ssl.crt sub.class1.server.ca.pem > ssl_chained.crt You need to use ssl_chained.crt as a cert file :) Greetings, Jędrzej Nowak On Thu, Oct 6, 2011 at 2:42 PM, Daniel Lo Nigro <dan15 <at> ymail.com> wrote: > Hi everyone, > I'm trying to configure Cherokee to host a site over SSL. However, for some reason, Cherokee is serving plain HTTP over port 443, and not HTTPS. In other words, https://springfield.youareaninja.com/ doesn't work, but http://springfield.youareaninja.com:443/ works. > > My configuration: > - Cherokee 1.2.99 from the unstable Debian repository (installed on Debian Testing) > - SSL/TLS back-end set to OpenSSL/libssl > - Port 443 added as a port, and "TLS/SSL port" ticked > - Certificate and certificate key specified in vserver Security tab > > This server only has one virtual host, the default host. I initially tried with a StartSSL certificate, but I tried "Tasks -> SSL/TLS testing" in rule management and it has the same issue. At the moment, it's set to use the self-signed certificate. > > Any suggestions or ideas? > > Thanks! > _______________________________________________ > Cherokee mailing list > Cherokee <at> lists.octality.com > http://lists.octality.com/listinfo/cherokee > _______________________________________________ Cherokee mailing list Cherokee <at> lists.octality.com http://lists.octality.com/listinfo/cherokee
Those packages will work -whihout problems- in CentOS? Anyone can confirm that is using fedora packages in CentOS 5.x with ssl working fine? Regards, On Thu, 06 Oct 2011 06:40:48 +0200, Sergio Aguilar Guerrero <chekolyn <at> gmail.com> wrote: > Hello Guys, > > I belive that Cherokee is already available for those systems. > > Please take a look at http://fedoraproject.org/wiki/EPEL > http://download.fedora.redhat.com/pub/epel/5/x86_64/repoview/cherokee.html > > I mostly use Ubuntu, so I haven't tested them. > > Rock on! > > Sergio > > On Wed, Oct 5, 2011 at 1:47 AM, Hugo Vazquez Carames > <hvazquez <at> pentest.es>wrote: > >> OK, don't be dramatic...
RSS Feed5 | |
|---|---|
35 | |
3 | |
55 | |
16 | |
60 | |
22 | |
31 | |
13 | |
7 | |
8 | |
22 | |
7 | |
28 | |
23 | |
63 | |
116 | |
82 | |
71 | |
83 | |
79 | |
66 | |
50 | |
83 | |
99 | |
106 | |
112 | |
174 | |
217 | |
209 | |
137 | |
230 | |
164 | |
120 | |
89 | |
255 | |
241 | |
175 | |
120 | |
163 | |
152 | |
215 | |
173 | |
258 | |
276 | |
299 | |
176 | |
224 | |
203 | |
199 | |
140 | |
92 | |
198 | |
143 | |
222 | |
254 | |
78 | |
152 | |
57 | |
71 | |
49 | |
63 | |
83 | |
43 | |
21 | |
47 | |
12 | |
51 | |
24 | |
25 | |
47 | |
46 | |
29 | |
38 | |
9 | |
46 | |
73 | |
88 | |
33 | |
86 | |
84 | |
88 | |
64 | |
29 | |
53 | |
64 | |
92 | |
72 | |
77 |
