Debian Bug report logs -
#118275
libapache-mod-ssl: mod-ssl-makecert doesn't work anymore
Reported by: dwayne@lfchosting.com
Date: Sun, 4 Nov 2001 18:03:01 UTC
Severity: important
Tags: woody
Found in version 2.8.5-2
Fixed in versions libapache-mod-ssl/2.8.5-3, libapache-mod-ssl/2.8.5-4, libapache-mod-ssl/2.8.7-1
Done: Robert van der Meulen <rvdm@debian.org>
Bug is archived. No further changes may be made.
Toggle useless messages
Report forwarded to debian-bugs-dist@lists.debian.org, Robert van der Meulen <rvdm@debian.org>:
Bug#118275; Package libapache-mod-ssl.
(full text, mbox, link).
Acknowledgement sent to Roland Mas <lolando@debian.org>:
New Bug report received and forwarded. Copy sent to Robert van der Meulen <rvdm@debian.org>.
(full text, mbox, link).
Message #5 received at submit@bugs.debian.org (full text, mbox, reply):
Package: libapache-mod-ssl
Version: 2.8.5-2
Severity: normal
I used to generate my SSL certificates and keys with mod-ssl-makecert.
Now it seems that I cannot do it anymore:
# mod-ssl-makecert
[...]
/usr/sbin/mod-ssl-makecert: /usr/lib/apache/mkcert.sh: No such file or directory
#
It is still documented in
/usr/share/doc/libapache-mod-ssl-doc/README.Debian.gz, though.
I suggest either rewriting the doc or (preferably) provide another
working script to generate keys. Or document a way to generate such
keys.
Roland.
-- System Information
Debian Release: testing/unstable
Architecture: i386
Kernel: Linux minimir 2.4.9 #2 Tue Aug 21 20:50:52 CEST 2001 i586
Locale: LANG=C, LC_CTYPE=C
Versions of packages libapache-mod-ssl depends on:
ii apache 1.3.22-2 Versatile, high-performance HTTP s
ii libc6 2.2.4-5 GNU C Library: Shared libraries an
ii libdb3 3.2.9-11 Berkeley v3 Database Libraries [ru
ii libssl0.9.6 0.9.6b-2 SSL shared libraries
ii make 3.79.1-10 The GNU version of the "make" util
ii openssl 0.9.6b-2 Secure Socket Layer (SSL) binary a
Information forwarded to debian-bugs-dist@lists.debian.org, Robert van der Meulen <rvdm@debian.org>:
Bug#118275; Package libapache-mod-ssl.
(full text, mbox, link).
Acknowledgement sent to root <root@ttimo.net>:
Extra info received and forwarded to list. Copy sent to Robert van der Meulen <rvdm@debian.org>.
(full text, mbox, link).
Message #10 received at 118275@bugs.debian.org (full text, mbox, reply):
Package: libapache-mod-ssl
Version: 2.8.5-2
hey there.. sorry to be a pain, what's the current situation on this
bug? What can I do to generate a new certificate while this is broken?
regards
TTimo
-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux akira 2.4.16 #1 Fri Nov 30 10:38:45 CET 2001 i586
Locale: LANG=C, LC_CTYPE=C
Versions of packages libapache-mod-ssl depends on:
ii apache 1.3.22-5 Versatile, high-performance HTTP s
ii libc6 2.2.4-7 GNU C Library: Shared libraries an
ii libdb3 3.2.9-14 Berkeley v3 Database Libraries [ru
ii libssl0.9.6 0.9.6b-4 SSL shared libraries
ii make 3.79.1-10 The GNU version of the "make" util
ii openssl 0.9.6b-4 Secure Socket Layer (SSL) binary a
Information forwarded to debian-bugs-dist@lists.debian.org, Robert van der Meulen <rvdm@debian.org>:
Bug#118275; Package libapache-mod-ssl.
(full text, mbox, link).
Acknowledgement sent to "James A. Treacy" <treacy@debian.org>:
Extra info received and forwarded to list. Copy sent to Robert van der Meulen <rvdm@debian.org>.
(full text, mbox, link).
Message #15 received at 118275@bugs.debian.org (full text, mbox, reply):
For some reason, the file /usr/lib/apache/mkcert.sh was not included in
the package. You can grab a copy from
http://people.debian.org/~treacy/mkcert.sh
Just (as root)
cp mkcert.sh /usr/lib/apache
chmod 775 /usr/lib/apache/mkcert.sh
Then mod-ssl-makecert should work.
It is ridiculous that such a mistake as missing a file has not
been fixed yet - especially when it makes the package unusable.
I'll do an NMU if the maintainer doesn't respond soon.
--
James (Jay) Treacy
treacy@debian.org
Message sent on to Roland Mas <lolando@debian.org>:
Bug#118275.
(full text, mbox, link).
Reply sent to Robert van der Meulen <rvdm@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Roland Mas <lolando@debian.org>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #23 received at 118275-close@bugs.debian.org (full text, mbox, reply):
We believe that the bug you reported is fixed in the latest version of
libapache-mod-ssl, which has been installed in the Debian FTP archive:
libapache-mod-ssl-doc_2.8.5-3_all.deb
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl-doc_2.8.5-3_all.deb
libapache-mod-ssl_2.8.5-3.diff.gz
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.5-3.diff.gz
libapache-mod-ssl_2.8.5-3.dsc
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.5-3.dsc
libapache-mod-ssl_2.8.5-3_i386.deb
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.5-3_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 118275@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Robert van der Meulen <rvdm@debian.org> (supplier of updated libapache-mod-ssl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Thu, 10 Jan 2002 11:49:31 +0100
Source: libapache-mod-ssl
Binary: libapache-mod-ssl libapache-mod-ssl-doc
Architecture: source all i386
Version: 2.8.5-3
Distribution: unstable
Urgency: low
Maintainer: Robert van der Meulen <rvdm@debian.org>
Changed-By: Robert van der Meulen <rvdm@debian.org>
Description:
libapache-mod-ssl - Strong cryptography for Apache
libapache-mod-ssl-doc - Documentation for Apache module mod_ssl
Closes: 118275 128292
Changes:
libapache-mod-ssl (2.8.5-3) unstable; urgency=low
.
* Re-added mod-ssl-makecert.sh (Closes: #118275)
* Opened up the files in /usr/share/doc/libapache-mod-ssl/examples
(Closes: #128292)
Files:
7a9c94adf897362f22235e1206ffd1ea 717 non-US/main optional libapache-mod-ssl_2.8.5-3.dsc
171881ffe210ce4fcfe0c733a4d41de3 15731 non-US/main optional libapache-mod-ssl_2.8.5-3.diff.gz
7a6a85f9f084805f84bf3e90e272fc27 234828 non-US/main optional libapache-mod-ssl_2.8.5-3_i386.deb
c8f7a0a7332f62f4acf36efb83e22a61 301564 non-US/main optional libapache-mod-ssl-doc_2.8.5-3_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD4DBQE8PXTlFLJHZigagQ4RArfnAJ4nIzd21CudM44+QGFFjEvAOtrb7wCXZA27
ouUaWxWyahY2tEWczSfq3g==
=vvXI
-----END PGP SIGNATURE-----
Bug reopened, originator not changed.
Request was from "Ian Eure" <ieure@debian.org>
to control@bugs.debian.org.
(full text, mbox, link).
Severity set to `important'.
Request was from "Ian Eure" <ieure@debian.org>
to control@bugs.debian.org.
(full text, mbox, link).
Information forwarded to debian-bugs-dist@lists.debian.org, Robert van der Meulen <rvdm@debian.org>:
Bug#118275; Package libapache-mod-ssl.
(full text, mbox, link).
Acknowledgement sent to Ian Eure <ieure@debian.org>:
Extra info received and forwarded to list. Copy sent to Robert van der Meulen <rvdm@debian.org>.
(full text, mbox, link).
Message #32 received at 118275@bugs.debian.org (full text, mbox, reply):
forgot to cc.
---------- Forwarded Message ----------
Subject:
Date: Mon, 14 Jan 2002 18:06:07 -0800
From: Ian Eure <ieure@debian.org>
To: control@bugs.debian.org
reopen #118275
severity #118275 important
thanks
the wrong file was added. /usr/lib/mod-ssl-makecert.sh is exactly the same as
/usr/bin/mod-ssl-makecert.
it still fails in the same way.
-- snip --
# dpkg --status libapache-mod-ssl | grep ^Version
Version: 2.8.5-3
# mod-ssl-makecert
/etc/apache/ssl.crt/server.crt: already present
/etc/apache/ssl.csr/server.csr: already present
/etc/apache/ssl.key/server.key: already present
Do you really want to overwrite the existing certificate ? [y/N]: y
What type of certificate do you want to create ?
1. dummy (dummy self-signed Snake Oil cert)
2. test (test cert signed by Snake Oil CA)
3. custom (custom cert signed by own CA)
4. existing (existing cert)
Use dummy when you're a vendor package maintainer,
test when you're an admin but want to do tests only,
custom when you're an admin willing to run a real server
and existing when you're an admin who upgrades a server.
Normally you'd use "test" (2)
> 3
/usr/sbin/mod-ssl-makecert: /usr/lib/apache/mkcert.sh: No such file or
directoryroot!luigi:/etc/apache# ls -l /usr/lib/apache/*.sh
-rw------- 1 root root 1800 Jan 10 06:02
/usr/lib/apache/mod-ssl-makecert.sh
#
-- snip --
-------------------------------------------------------
Information forwarded to debian-bugs-dist@lists.debian.org, Robert van der Meulen <rvdm@debian.org>:
Bug#118275; Package libapache-mod-ssl.
(full text, mbox, link).
Acknowledgement sent to Unit 3 <unit3@demoni.ca>:
Extra info received and forwarded to list. Copy sent to Robert van der Meulen <rvdm@debian.org>.
(full text, mbox, link).
Message #37 received at 118275@bugs.debian.org (full text, mbox, reply):
Package: libapache-mod-ssl
Version: 2.8.5-2
From what I've been able to figure out, the file
/usr/lib/apache/mkcert.sh used to be a part of the libapache-mod-ssl
package, but it isn't anymore. This is what's causing the
mod-ssl-makecert script to fail. In combination with the current apache
bug that makes it impossible to enter passphrases for ssl keys, this is
becoming a serious problem, since now I can't even generate a new set of
keys without a passphrase.
-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux mr-t 2.4.17-586tsc #2 Sat Dec 22 21:56:51 EST 2001 i586
Locale: LANG=C, LC_CTYPE=C
Versions of packages libapache-mod-ssl depends on:
ii apache 1.3.22-5 Versatile, high-performance HTTP s
ii libc6 2.2.4-7 GNU C Library: Shared libraries an
ii libdb3 3.2.9-14 Berkeley v3 Database Libraries [ru
ii libssl0.9.6 0.9.6b-4 SSL shared libraries
ii make 3.79.1-10 The GNU version of the "make" util
ii openssl 0.9.6b-4 Secure Socket Layer (SSL) binary a
Reply sent to Robert van der Meulen <rvdm@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to Roland Mas <lolando@debian.org>:
Bug acknowledged by developer.
(full text, mbox, link).
Message #42 received at 118275-close@bugs.debian.org (full text, mbox, reply):
We believe that the bug you reported is fixed in the latest version of
libapache-mod-ssl, which has been installed in the Debian FTP archive:
libapache-mod-ssl-doc_2.8.5-4_all.deb
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl-doc_2.8.5-4_all.deb
libapache-mod-ssl_2.8.5-4.diff.gz
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.5-4.diff.gz
libapache-mod-ssl_2.8.5-4.dsc
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.5-4.dsc
libapache-mod-ssl_2.8.5-4_i386.deb
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.5-4_i386.deb
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 118275@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Robert van der Meulen <rvdm@debian.org> (supplier of updated libapache-mod-ssl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Tue, 29 Jan 2002 20:13:22 +0100
Source: libapache-mod-ssl
Binary: libapache-mod-ssl libapache-mod-ssl-doc
Architecture: source all i386
Version: 2.8.5-4
Distribution: unstable
Urgency: low
Maintainer: Robert van der Meulen <rvdm@debian.org>
Changed-By: Robert van der Meulen <rvdm@debian.org>
Description:
libapache-mod-ssl - Strong cryptography for Apache
libapache-mod-ssl-doc - Documentation for Apache module mod_ssl
Closes: 118275 128746
Changes:
libapache-mod-ssl (2.8.5-4) unstable; urgency=low
.
* Fixed build depends (Closes: #128746)
* added mkcert.sh (Closes: #118275)
Files:
90f20738db7373e712c236aa7ca27470 717 non-US/main optional libapache-mod-ssl_2.8.5-4.dsc
0af2efb5661ada95a0c84b894b5a0f66 15765 non-US/main optional libapache-mod-ssl_2.8.5-4.diff.gz
fb3c54f43f4f49e6258bfcfc04b5477a 239654 non-US/main optional libapache-mod-ssl_2.8.5-4_i386.deb
056fc3b5a0dd062ba2c6c601e43ff22b 301600 non-US/main optional libapache-mod-ssl-doc_2.8.5-4_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE8VvSoFLJHZigagQ4RAo8nAKDJ4iagyR9PWWT8mWqs0yjo8/RroACeKvvh
/fCnU2p1wFLPWRj1u7IT+HU=
=8g1x
-----END PGP SIGNATURE-----
Information forwarded to debian-bugs-dist@lists.debian.org, Robert van der Meulen <rvdm@debian.org>, libapache-mod-ssl@packages.qa.debian.org:
Bug#118275; Package libapache-mod-ssl.
(full text, mbox, link).
Acknowledgement sent to "LFC - Dwayne C. Litzenberger" <dwayne@lfchosting.com>:
Extra info received and forwarded to list. Copy sent to Robert van der Meulen <rvdm@debian.org>, libapache-mod-ssl@packages.qa.debian.org.
(full text, mbox, link).
Message #47 received at 118275@bugs.debian.org (full text, mbox, reply):
reopen 118275 dwayne@lfchosting.com
severity 118275 important
tags 118275 +woody
thanks
This bug is still not fixed in testing.
Followup-For: Bug #118275
Package: libapache-mod-ssl
Version: 2.8.5-2
-- System Information
Debian Release: 3.0
Architecture: i386
Kernel: Linux thesystem 2.4.17 #1 Tue Feb 5 10:19:20 CST 2002 i686
Locale: LANG=C, LC_CTYPE=C
Versions of packages libapache-mod-ssl depends on:
ii apache 1.3.22-5 Versatile, high-performance HTTP s
ii libc6 2.2.5-3 GNU C Library: Shared libraries an
ii libdb3 3.2.9-14 Berkeley v3 Database Libraries [ru
ii libssl0.9.6 0.9.6c-1 SSL shared libraries
ii make 3.79.1-12 The GNU version of the "make" util
ii openssl 0.9.6c-1 Secure Socket Layer (SSL) binary a
Bug reopened, originator set to dwayne@lfchosting.com.
Request was from "LFC - Dwayne C. Litzenberger" <dwayne@lfchosting.com>
to control@bugs.debian.org.
(full text, mbox, link).
Severity set to `important'.
Request was from "LFC - Dwayne C. Litzenberger" <dwayne@lfchosting.com>
to control@bugs.debian.org.
(full text, mbox, link).
Tags added:
Request was from "LFC - Dwayne C. Litzenberger" <dwayne@lfchosting.com>
to control@bugs.debian.org.
(full text, mbox, link).
Tags added: woody
Request was from "LFC - Dwayne C. Litzenberger" <dwayne@lfchosting.com>
to control@bugs.debian.org.
(full text, mbox, link).
Reply sent to Robert van der Meulen <rvdm@debian.org>:
You have taken responsibility.
(full text, mbox, link).
Notification sent to dwayne@lfchosting.com:
Bug acknowledged by developer.
(full text, mbox, link).
Message #60 received at 118275-close@bugs.debian.org (full text, mbox, reply):
We believe that the bug you reported is fixed in the latest version of
libapache-mod-ssl, which is due to be installed in the Debian FTP archive:
libapache-mod-ssl-doc_2.8.7-1_all.deb
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl-doc_2.8.7-1_all.deb
libapache-mod-ssl_2.8.7-1.diff.gz
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.7-1.diff.gz
libapache-mod-ssl_2.8.7-1.dsc
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.7-1.dsc
libapache-mod-ssl_2.8.7-1_i386.deb
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.7-1_i386.deb
libapache-mod-ssl_2.8.7.orig.tar.gz
to pool/non-US/main/liba/libapache-mod-ssl/libapache-mod-ssl_2.8.7.orig.tar.gz
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to 118275@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Robert van der Meulen <rvdm@debian.org> (supplier of updated libapache-mod-ssl package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmaster@debian.org)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Mon, 4 Mar 2002 16:37:43 +0100
Source: libapache-mod-ssl
Binary: libapache-mod-ssl libapache-mod-ssl-doc
Architecture: source all i386
Version: 2.8.7-1
Distribution: unstable
Urgency: medium
Maintainer: Robert van der Meulen <rvdm@debian.org>
Changed-By: Robert van der Meulen <rvdm@debian.org>
Description:
libapache-mod-ssl - Strong cryptography (HTTPS support) for Apache
libapache-mod-ssl-doc - Documentation for Apache module mod_ssl
Closes: 118275 133126 136656
Changes:
libapache-mod-ssl (2.8.7-1) unstable; urgency=medium
.
* New upstream release, for use with apache 1.3.23. (Closes: #133126)
* SECURITY: new upstream fixes buffer overflow condition (Closes: #136656)
* finally fixed mkcert.sh issue.. (Closes: #118275)
* Marked all /etc files as conffiles.
* Set execute bits on mod-ssl-makecert.sh to make lintian happy.
* [README.Debian] Corrected outdated file locations.
* Followed policy checklist and updated Standards-Version.
Files:
3192c0c7313aadc55a3b8c6058ad997c 717 non-US/main optional libapache-mod-ssl_2.8.7-1.dsc
3e3a6a630cf56daa44f33d6da8bc5e65 751993 non-US/main optional libapache-mod-ssl_2.8.7.orig.tar.gz
5efc0619086a5b8def39f3eeca44261e 16214 non-US/main optional libapache-mod-ssl_2.8.7-1.diff.gz
8381b330d39e996a2b41d95c6b035322 237878 non-US/main optional libapache-mod-ssl_2.8.7-1_i386.deb
52ef002316de79a228a190ab43d39012 302414 non-US/main optional libapache-mod-ssl-doc_2.8.7-1_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE8g5UMFLJHZigagQ4RAtyeAKDjF5XeEgclFxzhp2l8k8IIFz0y+ACfWgPb
0/mKp6rYINpURuSWyJMocE4=
=f6BT
-----END PGP SIGNATURE-----
Send a report that this bug log contains spam.
Debian bug tracking system administrator <owner@bugs.debian.org>.
Last modified:
Mon Jun 5 01:41:20 2023;
Machine Name:
buxtehude
Debian Bug tracking system
Debbugs is free software and licensed under the terms of the GNU
Public License version 2. The current version can be obtained
from https://bugs.debian.org/debbugs-source/.
Copyright © 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson,
2005-2017 Don Armstrong, and many other contributors.