Support

andreas · #1 07-19-2011, 05:57 AM

*value must be set

webizen · #2 07-19-2011, 10:31 AM

you can manually empty the fields in config xml for the time being. admin cp will be updated to allow reset in a bit.

webizen · #3 07-20-2011, 11:19 AM

the latest 4.1.2 allows the reset.

netjess · #4 08-01-2011, 01:11 PM

I have a new install running on Ubuntu 10.10.
I accepted defaults during install.

When I try to set up my first SSL listener it sees the cert file but on the key file it returns "*file /etc/ssl/private/server.key does not exist. Please create manually".

In the server log it has the error:
0#_AdminVHost] [STDERR] PHP Warning: is_file() [<a href='function.is-file'>function.is-file</a>]: Stat failed for /etc/ssl/private/server.key (errno=13 - Permission denied) in /usr/local/lsws/admin/html.4.1.2/classes/ConfValidation.php on line 627

I have not been able to figure out what/who access is getting denied.
I compared permissions to the file to another server we have running and they look the same. I even added lsadm user to the root group (not sure that is a good idea).

sudo ls -l /etc/ssl/private/server.key
-rwxrwxr-- 1 root root 963 2011-07-28 16:49 /etc/ssl/private/server.key

any thoughts?

netjess · #5 08-01-2011, 01:40 PM

Well, I did a "chown -R lsadm:lsadm /etc/ssl/private" and that let me apply the key.

But now I am getting:
"[SSL] Config SSL Context with Certificate File: /etc/ssl/certs/server.crt and Key File:/etc/ssl/private/server.key get SSL error: error:0906406D:PEM routines:PEM_def_callback: problems getting password"

and

"[config:server:listener:SSL] failed to start SSL listener on address 192.168.1.238:443!"

mistwang · #6 08-01-2011, 02:03 PM

You can make /etc/ssl/private/ world readable temporarily, after save the configuration, then lock down the permission.
This issue will be addressed in next release 4.1.3 .

mistwang · #7 08-01-2011, 02:03 PM

Quote:

Originally Posted by netjess

Well, I did a "chown -R lsadm:lsadm /etc/ssl/private" and that let me apply the key.

But now I am getting:
"[SSL] Config SSL Context with Certificate File: /etc/ssl/certs/server.crt and Key File:/etc/ssl/private/server.key get SSL error: error:0906406D:PEM routines:PEM_def_callback: problems getting password"

and

"[config:server:listener:SSL] failed to start SSL listener on address 192.168.1.238:443!"

You have to remove the passcode of the private key.

netjess · #8 08-01-2011, 02:25 PM

Yeah, I have seen posts to that extent.
Looking at https://help.ubuntu.com/10.04/server...-security.html

- got it, guess I just have to read a bit closer.

Thanks for the assist.