Can I install SSL into an existing Apache server without having to completely recompile it? I really thinking that's not p[ossible but maybe there is a way around and I just haven't stumbled across the correct answer.

Thanks for any and all help.

Depends on which SSL package you use and how you compiled Apache...you had to have compiled apache to be able to dynamically load modules...

Is there some reason why you don't want to compile Apache again?

/nebulus

Short answer: no.

Longer answer: on 2.0 and above, yes. If the 1.3 Apache server happened to be built with the "EAPI" patches, then yes.

As far as I can remember, there is a patch required to Apache 1.3 (A core patch, *not* a module) to enable it to accept mod_ssl, and hence accept SSL connections.

The reason for this is that back when the USA banned the export of encryption software, even adding hooks to an existing product to enable encryption to be added at a later date by third parties was considered to be creating encryption software. Because some of Apache's authors were in the USA, they would technically be breaking this law by doing so.

They had to maintain the interface for binary compatibility's sake.

Apache 2.0 has SSL support built in (although it isn't necessary enabled by default), and hence has no such issue. The SSL support *may* be a module (but I can't remember)

I still haven't found any help for installing this F**king modssl with Apache 2.0. I unfortunately was looking at older documentation.

I'm also running PHP4.

Any tips would be greatly appreciated.

Thanks again.

The current version is Apache 2.0.46 , why would you want to stay with an old and unsecure version. Why not just upgrade to a more secure package and add ssl to it when you do it.

Anything else?


--PuRe

If you could post what specific problems you are having, we might could help a little bit better...

I personally have always just used the 1.X versions of apache and the mod_ssl patches (www.modssl.org) and have always had great luck getting those servers up quickly (more because of my familiarity with doing it this way versus using 2.x). The last server I setup, I compiled Apache after using the mod_ssl patch (you pass all configuration parameters to the configuration program of mod_ssl that you will use for apache) and configured it to accept dynamic modules. I then compiled PHP into its own seperate module and dynamically load it into PHP. Had the server up and working after a couple of hours (the only reason it took that long was I was trying to add PHP in at the same time as SSL and they weren't playing nicely with each other), throw out the experimenting I did with PHP and it was down to about 15 mins...

Anyway, if you could be a little more specific about what problems you are having, I would be willing to help...

/nebulus

My problem is just getting mod_ssl enabled on an Apache 2.0 server. I have not found, as of yet, a HOWTO on enabling mod_ssl on Apache 2.0

I've found many, many resources on Apache 1.3x and mod_ssl but I know that Apache 2.0 is a completely different beast altogether so those don't seem to apply. At least the instructions I gleened from various white papers says the process is different.

What would you like to know? I'm using PHP4 , OpenSSL, Apache 2.0.

This all started a day ago when I was informed I needed to be an Apache guru by noon today, weel as you can see that didn't happen so here I am, overdue on this "assignment" and I still don't know how to do this simple thing. And from what I've read it isn't that hard. Problem is nothing tells me what "it" is.....

I've never been so confounded about anything as this. I usually can get anything working with anything. Hell I've gotten an HP3000 running MPE/XL (circa 1979) printing to a winNT3.51 machine and a Novell Netware 3.12 server. But this, I'm just stumped on.

I dont know if any one ever seen wampp but its like a fully loaded pack

Apache 2.0.46, MySQL 4.0.13, PHP 4.3.2 + PEAR, Perl 5.8.0, mod_php 4.3.2, mod_perl 1.99_10, mod_ssl 2.0.46, openssl 0.9.7b, PHPMyAdmin 2.5.1, Webalizer 2.01-10, Mercury Mail Transport System for Win32 and NetWare Systems v3.32, JpGraph 1.12.1, Fastsream NetFile Server 5.6.0.511, (WEB-DAV + MOD AUTH MYSQL experimental); well suitably as server service under NT, w2k, XP Prof.

Check it out for your self apachefriends.org (http://www.apachefriends.org/) :D

Great, a german website. Not that that isn't helpful.....but.......it isn't. Thanks anyway.

Here is the English version of the site http://www.apachefriends.org/index-en.html ;)

Ok KorpDeath, good news and bad news...

I downloaded the Apache 2.0.46 (I already have OpenSSL 0.97b). I did not compile PHP or mess with it because I tend to like to add it later as a module.

So did this on a Sun Sparc system running Solaris 2.9 and on an Intel PIII system running redhat. The sad thing is I am infinitely more familiar with Solaris, but Apache 2.0 went kablooey when I tried to pass the same exact arguments to the configuration script that I used for RH that worked fine (I think this is why I have always stuck with Apache 1.X.X).

Issued to the configuration script:

./configure --prefix=/usr/apache2 --disable-autoindex --enable-cgi --enable-so --with-ssl=/usr/openssl --enable-ssl

Like I said, Solaris 2.9 on Sun Sparc, configures fine, dies when I issue the make (using gcc)
with compile errors...

On the RedHat box, it makes fine, compiles fine, and installs no problem...

So, specific questions:

1) What OS are you trying to install it on?

2) Is there any reason why you can't use the 1.3.27 version?

3) Did just giving you the options to turn on ssl answer the question? (I will have to admit, the documentation with the Apache source tree for the 2.0 version is horrific compared to the 1.3.X versions...)

/nebulus