3

Apache:mod_ssl:Error: Private key not found.

view full story
linux-howto

http://www.linuxforums.org – hi folks, I have Apache 2.2.8 running on Red Hat Enterprise Linux Server release 5 (Tikanga). I have installed a purchased certificate on my server. Upon restarting httpd, I get the following error: # /etc/init.d/httpd start Apache/2.2.8 mod_ssl/2.2.8 (Pass Phrase Dialog) Some of your private key files are encrypted for security reasons. In order to read them you have to provide the pass phrases. Server myserver.mydomain.com:443 (RSA) Enter pass phrase:Apache:mod_ssl:Error: Private key not found. **Stopped In the log files, I can see the messages below: [Mon Dec 21 21:21:23 2009] [error] Init: Private key not found [Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218710120 error:0D094068:asn1 encoding routines:d2i_ASN1_SET:bad tag [Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218529960 error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag [Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218595386 error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error [Mon Dec 21 21:21:23 2009] [error] SSL Library Error: 218734605 error:0D09A00D:asn1 encoding routines:d2i_PrivateKey:ASN1 lib [Mon Dec 21 22:18:34 2009] [info] Loading certificate & private key of SSL-aware server [Mon Dec 21 22:18:34 2009] [info] Init: Requesting pass phrase via builtin terminal dialog Apache is chrooted and the crt and key files are found in the conf folder. I even used the commands below to check my .crt, .csr and .key files and they do match: $ openssl x509 -noout -modulus -in server.crt | openssl md5 $ openssl rsa -noout -modulus -in server.key | openssl md5 $ openssl req -noout -modulus -in server.csr | openssl md5 I have even given the .key file 777 permissions. I have read that there can be 3 workarounds to this problem, but none of these are suitable for me: 1. Buy a new certificate 2. Disable the pass-phrase 3. Unencrypt the .key file I would appreciate any help I could get from you. Thanks beforehand Nemo (HowTos)