Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

I made a copy of the site for development, I can’t understand why it doesn’t work via https #3710

Open
heiheshang opened this issue Mar 14, 2024 · 3 comments
Open

I made a copy of the site for development, I can’t understand why it doesn’t work via https #3710

heiheshang opened this issue Mar 14, 2024 · 3 comments

Comments

@heiheshang
Copy link
Contributor

mod_ssl_self_signed:51 SSL: Problem with certificates: {need_rsa_private_key,"/home/oper/Programs/zotonic/user/sites/123/ssl/123.pem","use: openssl rsa -in sitename.key -out sitename.pem"}
there is no dh-params.pem file in the ssl directory.
@mworrell
Copy link
Member

@mmzeeman Do you have an idea? This is a 0.x site - we do have some write routines for the dh file, but I only see the dh-params.pem mentioned in the cert_files/1 function, and it looks like it should be generated on the fly?

@mmzeeman
Copy link
Member

There are pre-configured dh parameters. When there is no file, the default, or one of the pre-configured named parameters will be written to disk. check_certs/1 in mod_ssl_self_signed does that.

@mmzeeman
Copy link
Member

We use the ones recommended here: https://datatracker.ietf.org/doc/html/rfc7919

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@mworrell @heiheshang @mmzeeman