Thread: Apache SSL

    #1
  1. No Profile Picture
    Registered User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jun 2013
    Posts
    2
    Rep Power
    0

    Apache SSL


    Hi
    I am using apache httpd server 2.2.15 on Centos.

    In Firefox under "Manual Proxy Configuration" I have set all protocols to https://myserver port 81
    I need all proxied traffic to be encrypted therefore it needs to be SSL.

    However I cannot get it to work. My most recent error is "The connection to the server was reset while the page was loading"
  2. #2
  3. Did you steal it?
    Devshed Supreme Being (6500+ posts)

    Join Date
    Mar 2007
    Location
    Washington, USA
    Posts
    14,066
    Rep Power
    9398
    Have you set up Apache as a proxy? On that port? Checked error logs?
  4. #3
  5. No Profile Picture
    Registered User
    Devshed Newbie (0 - 499 posts)

    Join Date
    Jun 2013
    Posts
    2
    Rep Power
    0
    Originally Posted by requinix
    Have you set up Apache as a proxy? On that port? Checked error logs?

    Yes, yes, and yes.

    The access log shows nothing...

    here is my config file. IPs and domain are censored



    ServerTokens OS

    ServerRoot "/etc/httpd"

    PidFile run/httpd.pid

    Timeout 60

    KeepAlive Off

    MaxKeepAliveRequests 100


    KeepAliveTimeout 15

    <IfModule prefork.c>
    StartServers 8
    MinSpareServers 5
    MaxSpareServers 20
    ServerLimit 256
    MaxClients 256
    MaxRequestsPerChild 4000
    </IfModule>

    <IfModule worker.c>
    StartServers 4
    MaxClients 300
    MinSpareThreads 25
    MaxSpareThreads 75
    ThreadsPerChild 25
    MaxRequestsPerChild 0
    </IfModule>

    Listen IP address:80

    LoadModule auth_basic_module modules/mod_auth_basic.so
    LoadModule auth_digest_module modules/mod_auth_digest.so
    LoadModule authn_file_module modules/mod_authn_file.so
    LoadModule authn_alias_module modules/mod_authn_alias.so
    LoadModule authn_anon_module modules/mod_authn_anon.so
    LoadModule authn_dbm_module modules/mod_authn_dbm.so
    LoadModule authn_default_module modules/mod_authn_default.so
    LoadModule authz_host_module modules/mod_authz_host.so
    LoadModule authz_user_module modules/mod_authz_user.so
    LoadModule authz_owner_module modules/mod_authz_owner.so
    LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
    LoadModule authz_dbm_module modules/mod_authz_dbm.so
    LoadModule authz_default_module modules/mod_authz_default.so
    LoadModule ldap_module modules/mod_ldap.so
    LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
    LoadModule include_module modules/mod_include.so
    LoadModule log_config_module modules/mod_log_config.so
    LoadModule logio_module modules/mod_logio.so
    LoadModule env_module modules/mod_env.so
    LoadModule ext_filter_module modules/mod_ext_filter.so
    LoadModule mime_magic_module modules/mod_mime_magic.so
    LoadModule expires_module modules/mod_expires.so
    LoadModule deflate_module modules/mod_deflate.so
    LoadModule headers_module modules/mod_headers.so
    LoadModule usertrack_module modules/mod_usertrack.so
    LoadModule setenvif_module modules/mod_setenvif.so
    LoadModule mime_module modules/mod_mime.so
    LoadModule dav_module modules/mod_dav.so
    LoadModule status_module modules/mod_status.so
    LoadModule autoindex_module modules/mod_autoindex.so
    LoadModule info_module modules/mod_info.so
    LoadModule dav_fs_module modules/mod_dav_fs.so
    LoadModule vhost_alias_module modules/mod_vhost_alias.so
    LoadModule negotiation_module modules/mod_negotiation.so
    LoadModule dir_module modules/mod_dir.so
    LoadModule actions_module modules/mod_actions.so
    LoadModule speling_module modules/mod_speling.so
    LoadModule userdir_module modules/mod_userdir.so
    LoadModule alias_module modules/mod_alias.so
    LoadModule substitute_module modules/mod_substitute.so
    LoadModule rewrite_module modules/mod_rewrite.so
    LoadModule proxy_module modules/mod_proxy.so
    LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
    LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
    LoadModule proxy_http_module modules/mod_proxy_http.so
    LoadModule proxy_ajp_module modules/mod_proxy_ajp.so
    LoadModule proxy_connect_module modules/mod_proxy_connect.so
    LoadModule cache_module modules/mod_cache.so
    LoadModule suexec_module modules/mod_suexec.so
    LoadModule disk_cache_module modules/mod_disk_cache.so
    LoadModule cgi_module modules/mod_cgi.so
    LoadModule version_module modules/mod_version.so
    Include conf.d/*.conf


    User apache
    Group apache

    ServerAdmin rootatlocalhost

    ServerName demonproxy.domain.org

    UseCanonicalName On

    DocumentRoot "/var/www/html"

    <Directory />
    Options FollowSymLinks
    AllowOverride None
    Order deny,allow
    Deny from all
    </Directory>

    <Directory "/etc/httpd/html">
    Options Indexes FollowSymLinks
    AllowOverride None
    Order allow,deny
    Allow from all
    </Directory>

    <IfModule mod_userdir.c>


    </IfModule>

    AccessFileName .htaccess

    <Files ~ "^\.ht">
    Order allow,deny
    Deny from all
    Satisfy All
    </Files>

    TypesConfig /etc/mime.types

    DefaultType text/plain


    <IfModule mod_mime_magic.c>
    # MIMEMagicFile /usr/share/magic.mime
    MIMEMagicFile conf/magic
    </IfModule>

    HostnameLookups Off



    ErrorLog logs/error_log


    LogLevel warn


    LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
    LogFormat "%h %l %u %t \"%r\" %>s %b" common
    LogFormat "%{Referer}i -> %U" referer
    LogFormat "%{User-agent}i" agent


    CustomLog logs/access_log combined


    ServerSignature On

    Alias /icons/ "/var/www/icons/"

    <Directory "/var/www/icons">
    Options Indexes MultiViews FollowSymLinks
    AllowOverride None
    Order allow,deny
    Allow from all
    </Directory>


    <IfModule mod_dav_fs.c>
    # Location of the WebDAV lock database.
    DAVLockDB /var/lib/dav/lockdb
    </IfModule>


    ScriptAlias /cgi-bin/ "/var/www/cgi-bin/"


    <Directory "/var/www/cgi-bin">
    AllowOverride None
    Options None
    Order allow,deny
    Allow from all
    </Directory>





    BrowserMatch "Mozilla/2" nokeepalive
    BrowserMatch "MSIE 4\.0b2;" nokeepalive downgrade-1.0 force-response-1.0
    BrowserMatch "RealPlayer 4\.0" force-response-1.0
    BrowserMatch "Java/1\.0" force-response-1.0
    BrowserMatch "JDK/1\.0" force-response-1.0


    BrowserMatch "Microsoft Data Access Internet Publishing Provider" redirect-carefully
    BrowserMatch "MS FrontPage" redirect-carefully
    BrowserMatch "^WebDrive" redirect-carefully
    BrowserMatch "^WebDAVFS/1.[0123]" redirect-carefully
    BrowserMatch "^gnome-vfs/1.0" redirect-carefully
    BrowserMatch "^XML Spy" redirect-carefully
    BrowserMatch "^Dreamweaver-WebDAV-SCM1" redirect-carefully

    SSLCertificateFile /etc/httpd/conf/ssl.crt/demonproxy.crt
    SSLCertificateKeyFile /etc/httpd/conf/ssl.key/demonproxy.key
    <IfModule mod_proxy.c>
    ProxyRequests On
    SSLEngine On
    SSLSessionCache shm:/etc/httpd/logs/ssl_gcache_data(512000)
    SSLSessionCacheTimeout 600
    SSLProxyCACertificateFile /etc/httpd/conf/ssl.crt/demonproxy.crt
    <Proxy *>
    Order allow,deny
    Deny from all
    AuthType Basic
    AuthName "Welcome"
    AuthUserFile /conf/password.file
    require valid-user
    SSLrequireSSL
    # SSLProxyCACertificateFile /conf/ssl.crt/demonproxy.crt
    </Proxy>


    ProxyVia Block


    </IfModule>


    <VirtualHost IP address:80>
    ServerAdmin helpatplace.com
    DocumentRoot /var/www/html
    ServerName demonproxy.domain.org
    ErrorLog logs/demonproxy.domain.org-error_log
    CustomLog logs/demonproxy.domain.org-access_log common
    SSLEngine on
    SSLCertificateFile conf/ssl.crt/demonproxy.crt
    SSLCertificateKeyFile conf/ssl.key/demonproxy.key
    </VirtualHost>


    <VirtualHost IP address:443>
    ServerAdmin helpatdomain.com
    DocumentRoot /var/www/html
    ServerName demonproxy.domain.org
    ErrorLog logs/demonproxy.domain.org-error_log
    CustomLog logs/demonproxy.domain.org-access_log common
    SSLEngine on
    SSLCertificateFile conf/ssl.crt/demonproxy.crt
    SSLCertificateKeyFile conf/ssl.key/demonproxy.key
    </VirtualHost>

IMN logo majestic logo threadwatch logo seochat tools logo