[sslh] Using Apache and mod_gnutls
Malte Rabenseifner
mail at malte-rabenseifner.de
Tue Mar 20 16:40:19 CET 2012
On 20.03.2012 16:06, Yves Rutschle wrote:
>
> Can you post your VirtualHost section and maybe ports.conf and sslh conf as
> well?
>
My distribution (Arch Linux) uses a different file layout but I hope I
collected all necessary information. This is what I have in
conf/extra/httpd-gnutls.conf (this file is include in httpd.conf):
===================
Listen 444
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl .crl
GnuTLSCache dbm "/var/run/httpd/gnutls_scache"
GnuTLSCacheTimeout 600
<VirtualHost _default_:444>
DocumentRoot "/srv/http"
ServerName www.stormseeker.de:444
ServerAdmin webmaster at stormseeker.de
ErrorLog "/var/log/httpd/error_log"
TransferLog "/var/log/httpd/access_log"
GnuTLSEnable on
GnuTLSPriorities NORMAL
# Export exactly the same environment variables as mod_ssl to CGI
# scripts.
GNUTLSExportCertificates on
GnuTLSCertificateFile /root/certificates/stormseeker.de.crt
GnuTLSKeyFile /root/certificates/stormseeker.de.key
</VirtualHost>
===================
I already tried disabling all options to make the settings similar to
yours, without success.
sslh gets started with:
/usr/bin/sslh -p 192.168.91.3:443 --ssh 127.0.0.1:22 --ssl 127.0.0.1:444
-u nobody -P /var/lock/sslh.lock
I would be happy for a hint where to look for a configuration error.
--
Malte Rabenseifner
mail at malte-rabenseifner.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4505 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://rutschle.net/pipermail/sslh/attachments/20120320/9ba32a98/attachment-0001.bin>
More information about the sslh
mailing list