[x] Welcome to LinuxSolved.com Linux help forums, here we are a community of Linux users helping each other. It is helpful to both ie. new linux users as well experienced one. We always have our experts to help you and ofcourse members help each other, so you can ask for help any time by Registering.: Click to Register

Welcome, Guest. Please login or register.
Did you miss your activation email?


Login with username, password and session length

Linux Forums - Linux Help,Advice & support community:LinuxSolved.com  |  Forum  |  Network Troublshooting  |  Linux Servers Support  |  Topic: Apache:mod_ssl:Error: Private key not found.
Welcome to LinuxCommunity

You have just arrived to a friendly linux community which is helping Linux Users from Years.. You can be its part if you have not already joined it. Registration is FREE and is gateway to unlimited help and support to all your linux related needs. If you are an GNU/Linux supporter then you have come to the right place.
Pages: [1]
« previous next »
  Print  
Author Topic: Apache:mod_ssl:Error: Private key not found.  (Read 614 times)
0 Members and 1 Guest are viewing this topic.
nemotech
New Member

Offline Offline

Posts: 1


View Profile
« on: December 21, 2009, 02:27:56 PM »
hi folks,

I have Apache 2.2.8 running on Red Hat Enterprise Linux Server release 5 (Tikanga).

I have installed a purchased certificate on my server. Upon restarting httpd, I get the following error:


# /etc/init.d/httpd start
Apache/2.2.8 mod_ssl/2.2.8 (Pass Phrase Dialog)
Some of your private key files are encrypted for security reasons.
In order to read them you have to provide the pass phrases.

Server myserver.mydomain.com:443 (RSA)
Enter pass phrase:Apache:mod_ssl:Error: Private key not found.
**Stopped

In the log files, I can see the messages below:

[Mon Dec 21 21:21:23 2009] [error] Init: Private key not found
[Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218710120 error:0D094068:asn1 encoding routines:d2i_ASN1_SET:bad tag
[Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag
[Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error
[Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218734605 error:0D09A00D:asn1 encoding routines:d2i_PrivateKey:ASN1 lib
[Mon Dec 21 22:18:34 2009] [info] Loading certificate & private key of SSL-aware server
[Mon Dec 21 22:18:34 2009] [info] Init: Requesting pass phrase via builtin terminal dialog


Apache is chrooted and the crt and key files are found in the conf folder.

I even used the commands below to check my .crt, .csr and .key files and they do match:

$ openssl x509 -noout -modulus -in server.crt | openssl md5
$ openssl rsa -noout -modulus -in server.key | openssl md5
$ openssl req -noout -modulus -in server.csr | openssl md5


I have even given the .key file 777 permissions.

I have read that there can be 3 workarounds to this problem, but none of these are suitable for me:

1. Buy a new certificate
2. Disable the pass-phrase
3. Unencrypt the .key file

I would appreciate any help I could get from you. Below are my config files found at /chROOT/usr/local/lamp/httpd.2.2.8/conf

Thanks beforehand
Nemo



********************************** httpd.conf******************************
ServerRoot "/usr/local/lamp/httpd-2.2.8"

Listen 443
Listen 80


LoadModule perl_module        modules/mod_perl.so
LoadModule php5_module           modules/libphp5.so


<IfModule !mpm_netware_module>
User myuser
Group mygroup
</IfModule>


ServerAdmin serveradmin@mydomain.com


ServerName xxx.yyy.com:80


DocumentRoot "/websites/yyy/"


<Directory />
    Options FollowSymLinks
    AllowOverride AuthConfig
    Order deny,allow
    Deny from all
</Directory>


<Directory "/websites">
    Options -Indexes FollowSymLinks
    AllowOverride AuthConfig FileInfo Options Indexes
    Order allow,deny
    Allow from all
</Directory>


<IfModule dir_module>
    DirectoryIndex index.php index.html
</IfModule>


<FilesMatch "^\.ht">
    Order allow,deny
    Deny from all
    Satisfy All
</FilesMatch>


ErrorLog "logs/error_log"


LogLevel debug


<IfModule log_config_module>
    LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
    LogFormat "%h %l %u %t \"%r\" %>s %b" common

    <IfModule logio_module>
      LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
    </IfModule>

    CustomLog "logs/access_log" common
</IfModule>


<IfModule alias_module>
    ScriptAlias /cgi-bin/ "/usr/local/lamp/httpd-2.2.8/cgi-bin/"

</IfModule>


<IfModule cgid_module>
</IfModule>


<Directory "/usr/local/lamp/httpd-2.2.8/cgi-bin">
    AllowOverride None
    Options None
    Order allow,deny
    Allow from all
</Directory>


DefaultType text/plain


<IfModule mime_module>
    TypesConfig conf/mime.types
    AddType application/x-compress .Z
    AddType application/x-gzip .gz .tgz
    AddType application/x-httpd-php php
    AddType application/x-httpd-php php3
    AddType application/x-httpd-php-source phps
</IfModule>


ErrorDocument 403 http://xxx.yyy.com/error/
ErrorDocument 404 http://xxx.yyy.com/error/

Include conf/extra/httpd-vhosts.conf

Include conf/extra/httpd-default.conf

<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>

SetOutputFilter DEFLATE
SetEnvIfNoCase Request_URI \.(?:gif|jpe?g|png)$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.(?:exe|t?gz|zip|bz2|sit|rar)$ no-gzip dont-vary
SetEnvIfNoCase Request_URI \.pdf$ no-gzip dont-vary
FileETag None
TraceEnable Off

***********************************httpd-vhosts.conf***********************************


NameVirtualHost *:443
NameVirtualHost *:80


<VirtualHost *:80>
       ServerName xxx.yyy.com
       DocumentRoot /websites/yyy/
       ErrorLog logs/xxx-error_log
       CustomLog logs/xxx-access_log common
       ServerAdmin serveradmin@mydomain.com
</VirtualHost>


<VirtualHost *:443>
        DocumentRoot "/websites/myserver/"
        ServerName myserver.mydomain.com
        ErrorLog logs/myserver.mydomain-error_log
        CustomLog logs/myserver.mydomain-access_log common
        ServerAdmin serveradmin@mydomain.com   
</VirtualHost>



********************************httpd-ssl.conf******************************************

AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl    .crl

SSLPassPhraseDialog  builtin

SSLSessionCache        "shmcb:/usr/local/lamp/httpd-2.2.8/logs/ssl_scache(512000)"
SSLSessionCacheTimeout  300
SSLMutex  "file:/usr/local/lamp/httpd-2.2.8/logs/ssl_mutex"


<VirtualHost _default_:443>

DocumentRoot "/websites/myserver/"
ServerName myserver.mydomain.com:443
ServerAdmin serveradmin@mydomain.com
ErrorLog "logs/myserver.mydomain.com.ssl-error_log"
TransferLog "logs/myserver.mydomain.com.ssl-transfer_log"

SSLEngine on

SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL

SSLCertificateFile "/usr/local/lamp/httpd-2.2.8/conf/myserver.mydomain.com.crt"

SSLCertificateKeyFile "/usr/local/lamp/httpd-2.2.8/conf/myserver.mydomain.com.key"

<FilesMatch "\.(cgi|shtml|phtml|php)$">
    SSLOptions +StdEnvVars
</FilesMatch>

<Directory "/usr/local/lamp/httpd-2.2.8/cgi-bin">
    SSLOptions +StdEnvVars
</Directory>

BrowserMatch ".*MSIE.*" \
         nokeepalive ssl-unclean-shutdown \
         downgrade-1.0 force-response-1.0

CustomLog "/usr/local/lamp/httpd-2.2.8/logs/ssl_request_log" \
          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"

</VirtualHost>                                 



Logged
Pages: [1]
  Print  
« previous next »
 
Jump to:  

Related Topics
Subject Started by Replies Views Last post
secure.log unknown IP found ?? General Networking Support in Linux sathish 1 1289 Last post May 15, 2004, 05:35:27 AM
by engineerjude
Error 403 with Apache Linux Installation Support sothy 5 1034 Last post November 09, 2005, 05:25:02 AM
by sothy
Apache Error "(36) File name too long; General Networking Support in Linux anybody1234 2 802 Last post November 05, 2005, 02:36:56 AM
by anybody1234
NO SIR IT DOESNT HELP i says no file found at the .tar downl Other Devices shantanu_webmaster 1 1057 Last post October 12, 2006, 05:48:27 AM
by Ricky
The Red Hat CD was not found Linux Installation Support jmakie 2 438 Last post August 05, 2008, 05:56:43 PM
by karaokekarnival
Search LS
User
Welcome, Guest. Please login or register.
Did you miss your activation email?
July 29, 2010, 10:26:05 AM

Login with username, password and session length
Navigation
Recent Discussions
citadel how to install an...
by gabak
[July 24, 2010, 11:46:22 PM]
linux disk cannot mount t...
by zuzu97
[July 24, 2010, 04:10:46 PM]
ssh - execute the script ...
by dragoncity99
[July 23, 2010, 07:22:27 AM]
httpd-2.2.3 | error - suE...
by dragoncity99
[July 23, 2010, 07:20:53 AM]
Linux File System Structu...
by dragoncity99
[July 23, 2010, 07:19:15 AM]
how to configure dns for ...
by dragoncity99
[July 23, 2010, 07:15:30 AM]
yum giving problems in fe...
by dragoncity99
[July 23, 2010, 07:08:21 AM]
Control Port Multiplier v...
by dinhtandl
[July 19, 2010, 11:01:10 PM]
Help please
by rasheedahme27
[July 19, 2010, 10:01:58 AM]
Shockwave Flash 10.1 keep...
by hfactor
[July 19, 2010, 01:21:00 AM]
Stats
Members
Total Members: 7690
Latest: BOZZYPRINCESS
Stats
Total Posts: 9524
Total Topics: 2729
Online Today: 7
Online Ever: 128
(April 10, 2010, 10:24:17 PM)
Users Online
Users: 0
Guests: 8
Total: 8
Privacy Policy| Powered by SMF 1.1.7 | SMF © 2006-2008, Simple Machines LLC Theme & TinyPortal v0.9.8 © Bloc