drevls8138 2018-08-25 16:17

已采纳

独立的Wamp服务器ssl auth设置

Want to setup a portable server from Apache, PHP and MySQL, all of them from the newest binary.

Downloaded and configured each other, but have 2 issue, which i think is only one. First: I set the loglevel to Info in httpd.conf, and started the server. Error.log contains:

[Sat Aug 25 17:32:35.246609 2018] [ssl:info] [pid 13736:tid 592] AH01887: Init: Initializing (virtual) servers for SSL
[Sat Aug 25 17:32:35.246609 2018] [ssl:info] [pid 13736:tid 592] AH01914: Configuring server servertwo.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.247609 2018] [ssl:info] [pid 13736:tid 592] AH02568: Certificate and private key servertwo.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.key
[Sat Aug 25 17:32:35.247609 2018] [ssl:info] [pid 13736:tid 592] AH01914: Configuring server serverone.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.247609 2018] [ssl:info] [pid 13736:tid 592] AH02568: Certificate and private key serverone.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.key
[Sat Aug 25 17:32:35.249606 2018] [ssl:info] [pid 13736:tid 592] AH01914: Configuring server localhost:443 for SSL protocol
[Sat Aug 25 17:32:35.250605 2018] [ssl:warn] [pid 13736:tid 592] AH01909: localhost:443:0 server certificate does NOT include an ID which matches the server name
[Sat Aug 25 17:32:35.250605 2018] [ssl:info] [pid 13736:tid 592] AH02568: Certificate and private key localhost:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/server.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/server.key
[Sat Aug 25 17:32:35.250605 2018] [ssl:info] [pid 13736:tid 592] AH01876: mod_ssl/2.4.34 compiled against Server: Apache/2.4.34, Library: OpenSSL/1.1.0h
[Sat Aug 25 17:32:35.284684 2018] [socache_shmcb:info] [pid 13736:tid 592] AH00830: Shared memory socache initialised
[Sat Aug 25 17:32:35.284684 2018] [ssl:info] [pid 13736:tid 592] AH01887: Init: Initializing (virtual) servers for SSL
[Sat Aug 25 17:32:35.284684 2018] [ssl:info] [pid 13736:tid 592] AH01914: Configuring server servertwo.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.285683 2018] [ssl:info] [pid 13736:tid 592] AH02568: Certificate and private key servertwo.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.key
[Sat Aug 25 17:32:35.285683 2018] [ssl:info] [pid 13736:tid 592] AH01914: Configuring server serverone.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.285683 2018] [ssl:info] [pid 13736:tid 592] AH02568: Certificate and private key serverone.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.key
[Sat Aug 25 17:32:35.286682 2018] [ssl:info] [pid 13736:tid 592] AH01914: Configuring server localhost:443 for SSL protocol
[Sat Aug 25 17:32:35.286682 2018] [ssl:warn] [pid 13736:tid 592] AH01909: localhost:443:0 server certificate does NOT include an ID which matches the server name
[Sat Aug 25 17:32:35.286682 2018] [ssl:info] [pid 13736:tid 592] AH02568: Certificate and private key localhost:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/server.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/server.key
[Sat Aug 25 17:32:35.286682 2018] [ssl:info] [pid 13736:tid 592] AH01876: mod_ssl/2.4.34 compiled against Server: Apache/2.4.34, Library: OpenSSL/1.1.0h
[Sat Aug 25 17:32:35.297671 2018] [mpm_winnt:notice] [pid 13736:tid 592] AH00455: Apache/2.4.34 (Win64) OpenSSL/1.1.0h PHP/7.2.9 configured -- resuming normal operations
[Sat Aug 25 17:32:35.297671 2018] [mpm_winnt:notice] [pid 13736:tid 592] AH00456: Server built: Jul 10 2018 10:15:24
[Sat Aug 25 17:32:35.297671 2018] [mpm_winnt:info] [pid 13736:tid 592] AH80000: Distributed by: The Apache Haus
[Sat Aug 25 17:32:35.297671 2018] [mpm_winnt:info] [pid 13736:tid 592] AH80001: Compiled with: Visual Studio 2015
[Sat Aug 25 17:32:35.297671 2018] [core:notice] [pid 13736:tid 592] AH00094: Command line: 'Apache_2.4.34/bin/httpd.exe -d C:/wamp_p/Apache_2.4.34'
[Sat Aug 25 17:32:35.300667 2018] [mpm_winnt:notice] [pid 13736:tid 592] AH00418: Parent: Created child process 14088
[Sat Aug 25 17:32:35.660294 2018] [ssl:info] [pid 14088:tid 652] AH01887: Init: Initializing (virtual) servers for SSL
[Sat Aug 25 17:32:35.660294 2018] [ssl:info] [pid 14088:tid 652] AH01914: Configuring server servertwo.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.661293 2018] [ssl:info] [pid 14088:tid 652] AH02568: Certificate and private key servertwo.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.key
[Sat Aug 25 17:32:35.661293 2018] [ssl:info] [pid 14088:tid 652] AH01914: Configuring server serverone.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.661293 2018] [ssl:info] [pid 14088:tid 652] AH02568: Certificate and private key serverone.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.key
[Sat Aug 25 17:32:35.662292 2018] [ssl:info] [pid 14088:tid 652] AH01914: Configuring server localhost:443 for SSL protocol
[Sat Aug 25 17:32:35.662292 2018] [ssl:warn] [pid 14088:tid 652] AH01909: localhost:443:0 server certificate does NOT include an ID which matches the server name
[Sat Aug 25 17:32:35.662292 2018] [ssl:info] [pid 14088:tid 652] AH02568: Certificate and private key localhost:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/server.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/server.key
[Sat Aug 25 17:32:35.662292 2018] [ssl:info] [pid 14088:tid 652] AH01876: mod_ssl/2.4.34 compiled against Server: Apache/2.4.34, Library: OpenSSL/1.1.0h
[Sat Aug 25 17:32:35.688265 2018] [socache_shmcb:info] [pid 14088:tid 652] AH00830: Shared memory socache initialised
[Sat Aug 25 17:32:35.688265 2018] [ssl:info] [pid 14088:tid 652] AH01887: Init: Initializing (virtual) servers for SSL
[Sat Aug 25 17:32:35.688265 2018] [ssl:info] [pid 14088:tid 652] AH01914: Configuring server servertwo.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.688265 2018] [ssl:info] [pid 14088:tid 652] AH02568: Certificate and private key servertwo.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/servertwo.key
[Sat Aug 25 17:32:35.688265 2018] [ssl:info] [pid 14088:tid 652] AH01914: Configuring server serverone.tld:443 for SSL protocol
[Sat Aug 25 17:32:35.689264 2018] [ssl:info] [pid 14088:tid 652] AH02568: Certificate and private key serverone.tld:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/serverone.key
[Sat Aug 25 17:32:35.689264 2018] [ssl:info] [pid 14088:tid 652] AH01914: Configuring server localhost:443 for SSL protocol
[Sat Aug 25 17:32:35.689264 2018] [ssl:warn] [pid 14088:tid 652] AH01909: localhost:443:0 server certificate does NOT include an ID which matches the server name
[Sat Aug 25 17:32:35.689264 2018] [ssl:info] [pid 14088:tid 652] AH02568: Certificate and private key localhost:443:0 configured from C:/wamp_p/Apache_2.4.34/conf/ssl/server.crt and C:/wamp_p/Apache_2.4.34/conf/ssl/server.key
[Sat Aug 25 17:32:35.689264 2018] [ssl:info] [pid 14088:tid 652] AH01876: mod_ssl/2.4.34 compiled against Server: Apache/2.4.34, Library: OpenSSL/1.1.0h
[Sat Aug 25 17:32:35.703250 2018] [mpm_winnt:notice] [pid 14088:tid 652] AH00354: Child: Starting 64 worker threads.

The [ssl:warn] [pid 14088:tid 652] AH01909: localhost:443:0 server certificate does NOT include an ID which matches the server name line says something is wrong with the certificate.

The httpd.conf contains the following relevant lines:

LoadModule ssl_module modules/mod_ssl.so
<IfModule ssl_module>
#Include conf/extra/httpd-ssl.conf
Include conf/extra/httpd-ahssl.conf
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>

The ahssl.conf is exists, and the linked certificate exists too in

C:\wamp_p\Apache_2.4.34\conf\ssl\server.crt
C:\wamp_p\Apache_2.4.34\conf\ssl\server.key

The httpd-ahssl.conf is original, not changed.

The PHPinfo relevant output is here

When i install Apache as a system service it is not started due to this error, but i can start it manually or net start command, and it is working.

Second: I installed phpmyadmin, but not configured a server (no ini copied). When i try to login with test account it is cannot login. The error can seen here

When i open a cmd and login with mysql -u test -p ,it works, and i can log in with phpmyadmin as well. Until the sql server and or the http server not restarted anytime can login with that user which logged in in console too in this session.

Is that belong the ssl?

I commented it at php.ini and httpd.conf too, servers restarted, but the login problem stayed the same.

What need i to do? Thanks!

Update 1:

I tried to generate new certificates, but i run into trouble. It cannot find the config file, but it is there where it search for it. Checked double:

c:\wamp_p\Apache_2.4.34\bin>openssl req -new -x509 -nodes -out server.crt -keyout server.key
Can't open 'C:\wamp_p\Apache_2.4.34\conf\openssl.cnf' for reading, Invalid argument
1664:error:0200107B:system library:fopen:Unknown error:crypto\bio\bss_file.c:74:fopen(''C:\wamp_p\Apache_2.4.34\conf\openssl.cnf'','rb')
1664:error:2006D002:BIO routines:BIO_new_file:system lib:crypto\bio\bss_file.c:83:
1664:error:0E078002:configuration file routines:def_load:system lib:crypto\conf\conf_def.c:152:
1664:error:0200107B:system library:fopen:Unknown error:crypto\bio\bss_file.c:74:fopen(''C:\wamp_p\Apache_2.4.34\conf\openssl.cnf'','r')
1664:error:2006D002:BIO routines:BIO_new_file:system lib:crypto\bio\bss_file.c:83:
Generating a 2048 bit RSA private key
......+++
..........................................................+++
writing new private key to 'server.key'
-----
unable to find 'distinguished_name' in config
problems making Certificate Request
1664:error:0E06D06A:configuration file routines:NCONF_get_string:no conf or environment variable:crypto\conf\conf_lib.c:272:

I installed an xampp setup, and take the server.key and server.crt files from it, nad copied to my apache conf/ssl directory and original files are overwritten.

No SSL:Warn record was found after this in the error.log after I started the server.

The PhpMyAdmin still cannot login until i not login with mysql.exe with the test user. I not understand what is the connection between the windows terminal and webbrowser phpmyadmin.

When i successfully logged in with phpmyadmin a take a shot, and saw the ssl is not being used...

Update 2:

I dont think this is an ssl certificate problem. This is a test code step-by-step in console and webbrowser:

----------------- Windows command line ----------------- 
c:\wamp_p\mysql_8.0.12\bin>net stop mysql
The MySQL service is stopping.
The MySQL service was stopped successfully.

----------------- Chrome browser with sqltest.php ----------------- 
Warning: mysqli_connect(): (HY000/2002): No connection could be made because the target machine actively refused it. in C:\wamp_p\htdocs\sql.php on line 3
Error: Unable to connect to MySQL. Debugging errno: 2002 Debugging error: No connection could be made because the target machine actively refused it.

----------------- Windows command line ----------------- 
c:\wamp_p\mysql_8.0.12\bin>net start mysql
The MySQL service is starting.
The MySQL service was started successfully.

----------------- Chrome browser with sqltest.php ----------------- 
Warning: mysqli_connect(): PHP was built without openssl extension, can't send password encrypted in C:\wamp_p\htdocs\sql.php on line 3
Warning: mysqli_connect(): (HY000/1045): Access denied for user 'test'@'localhost' (using password: YES) in C:\wamp_p\htdocs\sql.php on line 3
Error: Unable to connect to MySQL. Debugging errno: 1045 Debugging error: Access denied for user 'test'@'localhost' (using password: YES)

----------------- Windows command line ----------------- 
c:\wamp_p\mysql_8.0.12\bin>mysql -u test -p
Enter password: ****
Welcome to the MySQL monitor.  Commands end with ; or \g.
Your MySQL connection id is 9
Server version: 8.0.12 MySQL Community Server - GPL

Copyright (c) 2000, 2018, Oracle and/or its affiliates. All rights reserved.

Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.

Type 'help;' or '\h' for help. Type '\c' to clear the current input statement.

mysql>

----------------- Chrome browser with sqltest.php ----------------- 
Warning: mysqli_connect(): (HY000/1049): Unknown database 'my_db' in C:\wamp_p\htdocs\sql.php on line 3
Error: Unable to connect to MySQL. Debugging errno: 1049 Debugging error: Unknown database 'my_db'

----------------- Windows command line ----------------- 
mysql> quit
Bye

c:\wamp_p\mysql_8.0.12\bin>

----------------- Chrome browser with sqltest.php ----------------- 
Warning: mysqli_connect(): (HY000/1049): Unknown database 'my_db' in C:\wamp_p\htdocs\sql.php on line 3
Error: Unable to connect to MySQL. Debugging errno: 1049 Debugging error: Unknown database 'my_db'

Update 3:

The Mysql server 8 change the authentication method, so making it force fallback to the old password plugin solve the login issue. Make to mysql server installation an my.ini with the following content:

[mysqld]
default_authentication_plugin=mysql_native_password

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

1条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dongwolu5275 2018-08-29 15:24
关注
To the first part:

Openssh.exe found in apache bin directory.

Server name found in apache/conf/extra/httpd-ahssl.conf file in the virtualserver directive. In my case it is localhost.

Openssh.cnf is in apache conf directory.

Generate Key and CRT files and copy these to conf/ssl dir and restart the server.

openssl req -new -newkey rsa:2048 -sha256 -days 365 -nodes -x509 -keyout server.key -out server.crt -config "C:\wamp_p\Apache_2.4.34\conf\openssl.cnf"

To the second part (for phpmyadmin):

MySQL Server 8 has a new password authentication plugin by default. To apply the original password plugin create my.ini to the mysql dir root.

[mysqld] default_authentication_plugin=mysql_native_password

If you had already created the users you need to alter it. You can check the Password authentication plugin for user with

USE MYSQL; SELECT user,host,plugin from user;

Bye!
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

报告相同问题？

关注问题

独立的Wamp服务器ssl auth设置 apache mysql php windows
2018-08-25 16:17

回答 1 已采纳 To the first part: Openssh.exe found in apache bin directory. Server name found in apache/conf/e
阿里云的服务器已经按步骤修改了ssl配置，但还是无法访问 ssl 服务器阿里云
2021-12-05 15:53

回答 1 已采纳反向代理去哪了？nginx日志看下
通过代理服务器进行SSL连接 php ssl
2014-04-18 15:06

回答 2 已采纳 Found the problem. There's no need (maybe only in this case, i'm not sure) to base64 encode the cr
Web服务器的配置与安装ssl证书
2023-04-03 00:19

开摆工作室的博客主流网页服务器安装与配置以及安装ssl证书，二级域名配置文件，错误跳转。
nginx服务器配置返回php代码 nginx php
2017-03-12 20:22

回答 1 已采纳 nginx processes a request by choosing a location. The new location does not contain the necessary
尝试使用Java连接https服务器时抛出SSLHandshakeException java php ssl
2015-09-15 06:38

回答 1 已采纳 The certificate for the site is fine so you don't need to disable certificate validation. But, the
Django部署到服务器之后前台后台的静态样式调用不出来 django python 服务器
2022-01-03 12:41

回答 6 已采纳首先问题肯定在nginx第一nginx是否有静态文件目录的权限第二配置文件重定向静态文件那里 root与alias主要区别在于nginx如何解释location后面的uri，这会使两者分别以不同的方
搭建 centos7.4+php7.2+ssl 服务器过程
2018-12-04 19:11

小霸王小胖子的博客本文以 “ centos7.4 + php7.2 + ssl ” 为例讲述搭建服务器的过程，是本人装机多次的经验所得，理论上适用于 centos7以上，请各位看官自行斟酌，有什么说的不对的地方还请多多指教安装apache 1、安装apache ...
如何在Mac OS 10.11上修复Web服务器并启用PHP apache macos php
2016-03-03 23:07

回答 1 已采纳 It seems you missing virtualhost default setting looks like this : <VirtualHost *:80>
Url使用发布数据在LAMP服务器上重写 apache html php
2019-07-12 20:20

回答 1 已采纳 Allow me to admit to answer this with a [face_palm] + DOH! I did rewrite the code not to use the
内部服务器错误 - CPanel托管 php
2015-11-04 02:49

回答 1 已采纳 cPanel is by the friendliest platform for hosting and is very welcoming for those who don't have h
如何将本地使用PHP搭建的网站搬到云服务器
2022-03-13 18:18

不混世的大魔王的博客如何将本地使用PHP搭建的网站搬到云服务器 已经毕业快一年了，去年这个时候还在忙活自己的毕设，由于对于Java不太熟练，所以就先使用php写的网站后台，很简易，但是对于当时的自己还是很有成就感的，心里一直想着把...
超薄路由无法在服务器上运行 php
2015-10-10 13:44

回答 2 已采纳 Ok, figured the problem so if someone in future encounters same problem, this fixed it for me: E
wamp服务器发送邮件,如何从本地WAMP服务器发送电子邮件发送电子邮件Gmail Hotmail等？...
2021-07-30 17:07

717542177的博客 a) Open the "php.ini". For XAMPP,it is located in C:\XAMPP\php\php.ini. Find out if you are using WAMP or LAMP server. Note : Make a backup of php.ini fileb) Search [mail function] in the ...
Linux系统下邮件服务器的搭建（Postfix+Dovecot+SSL）
2022-08-20 10:04

第九系艾文的博客 Linux系统下邮件服务器的搭建（Postfix+Dovecot+SSL）
响应服务器535.5.7.0AUTH,javamail "535 5.7.3 Authentication unsuccessful" 问题排查
2021-08-13 12:56

极客有车的博客有一家odm的服务器用Javamail发邮件的时候报错Authentication unsuccessful 其他的有些又是正常的网上查了一下解决方法如下JavaMailSenderImpl认证异常了,出现:javax.mail.AuthenticationFailedException: failed to...
auth:UniFi 授权上网代码 This repository has been archived and moved to GitHub Enterprise
2021-06-12 16:40

###v.3.2.7及以上版本，需修改auth/deps/unifi.php中ssl版本(有多处代码) curl_setopt($ch, CURLOPT_SSLVERSION, 3); 改为 curl_setopt($ch, CURLOPT_SSLVERSION, 1); ###微信配置和Controller配置请参照 ###微博...
没有解决我的问题, 去提问

悬赏问题

¥35 平滑拟合曲线该如何生成
¥100 c语言，请帮蒟蒻写一个题的范例作参考
¥15 名为“Product”的列已属于此 DataTable
¥15 安卓adb backup备份应用数据失败
¥15 eclipse运行项目时遇到的问题
¥15 关于#c##的问题：最近需要用CAT工具Trados进行一些开发
¥15 南大pa1 小游戏没有界面，并且报了如下错误，尝试过换显卡驱动，但是好像不行
¥15 自己瞎改改，结果现在又运行不了了
¥15 链式存储应该如何解决
¥15 没有证书，nginx怎么反向代理到只能接受https的公网网站

独立的Wamp服务器ssl auth设置

1条回答 默认 最新

悬赏问题

1条回答默认最新