Berkeley CSUA MOTD:Entry 12087
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2025/05/24 [General] UID:1000 Activity:popular
5/24    

2004/2/3-4 [Computer/SW/WWW/Server] UID:12087 Activity:low
2/3     Do I have to purchase an SSL cert from Verisign or one of those
        places inorder to allow my webserver to accept https requests?
        \_ yes.
        \_ You can set this up nicely with OpenSSL.  Make sure that the
           server's DN in the cert matches your hostname so that the only
           message the browser pops up is something along the lines of
           "untrusted root certificate".  Trusting an unmanaged certificate
           used only for SSL isn't a big deal.  If it's only used by people
           you know, you can make a root cert available for them to import
           into their browser.  Use google to find one of any number of
           howtos.  -John
        \_ No.  you can set up a dummy certificate if you don't mind getting
           a popup from your browser.  if this is for end users, though, you'll
           want to buy one.
           \_ alright, so someone posed this question back on 1/9, but never
              quite got a full answer... in terms of cheap, reliable ssl
              sellers... anyone have any good/bad stories to tell about
              http://freessl.com ? Any other recommended cheap ssl cert vendors?
              thanks.                   - rory
              \_ I posted in january. I think http://freessl.com doesn't
              \_ I posted the question in january. http://freessl.com doesn't
                 do wildcard certs, so you're limited to one FQDN.
                 do wildcard certs, so you're limited to one FQDN.
                 I want to use if for like <DEAD>mail.example.com<DEAD> and
                 I need to use the cert for like <DEAD>mail.example.com<DEAD> and
                 http://www.example.com and <DEAD>vhost.example.com<DEAD>.
                 For now I'm using a self-signed cert (not "dummy")
                 For clients using it for email, they can "install" or
                 http://www.example.com and <DEAD>vhost.example.com<DEAD>.
                 For now I'm using a self-signed cert (not "dummy")
                 For folks using it for email, they just install the cert.
                 If you're not doing ecommerce a self-signed cert may
                 be all that you need. It does SSL  _security_ fine
                 but not without the _autentication_ (trust). -brett
                 accept the cert the first time.  If you're not doing
                 ecommerce a self-signed cert may be all that you need. It
                 does SSL security fine but not autentication (trust). -brett
2025/05/24 [General] UID:1000 Activity:popular
5/24    

You may also be interested in these entries...
2009/7/8-16 [Computer/SW/OS/Linux, Computer/SW/Unix] UID:53124 Activity:nil
7/7     what happened to our web presence? http://www.csua.berkeley.edu
        not working
    \_ That would be because we've yet to set them up afaik. Steven *does* have
    a job after all. The idea is that we want a separate computer mounting the
    web directories, so that if an exploit compromises the webserver, the shell
    server (soda) itself will be insulated from the attack.
	...
2009/5/5-6 [Computer/HW/Laptop] UID:52950 Activity:moderate
5/5     Is there a good (or standard) way to make an offline copy of a w
        ordpress blog (mine, not someone else's)? tia.
        \_ oh man.
           \_ I could cobble something together with curl / wget, but I'd
              rather not if there is a standard way of doing this.  I'm
              pretty new to wordpress / blogging and I just want to keep
	...
2007/11/27-30 [Computer/SW/Languages/C_Cplusplus, Computer/SW/OS/Solaris] UID:48701 Activity:high
11/27   I'm using select to do a nonblocking check to see if a single socket
        has anything to read off it.  Problem is, I can have up to 12228
        file descriptors, and Linux fd_set only supports up to 4096.  Any idea
        what I can do about this?  (Or a better solution?) -jrleek
        \- 1. who are you
           2. i am busy this week and you didnt mention language
	...
2007/4/30-5/4 [Computer/SW/Languages/C_Cplusplus, Computer/SW/WWW/Server] UID:46485 Activity:nil
4/30    Technical question:
        I have a threaded webserver, one thread waits around and calls
        accept, then pulls threads out of a thread pool to handle the
        requests.  I want to be able to shut down the webserver cleanly, so
        I have the main thread wait for a signal to shutdown.  It then
        joins on the accept thread while the accept thread cleans up the
	...
2006/1/27-29 [Computer/SW/Languages/Web] UID:41573 Activity:nil
1/27    I've enabled suexec and ExecCGI in my apache2. I created a simple
        CGI that when `whoami` is executed, claims as me instead of
        www-data|http. Great. However, when I tried the same thing in
        php, it no longer executes as me. Why is that?
        \_ mod_php 'executed' stuff is run as the webserver uid
        \_ You'd have to run PHP under CGI to get this to work, and then it
	...
2006/1/17-18 [Computer/SW/Languages/Web] UID:41403 Activity:low
1/17    CGI or PHP, which one is better?
        \_ PHP.
        \_ CGI is actually the method by which pretty much all dynamic web
           applications function.  If you mean "CGI scripts", then that doesn't
           really say anything about what language/system you're using.  Perl?
           /bin/sh?  C?
	...
2006/1/16-18 [Computer/SW/Languages/Java, Computer/SW/Languages/Misc] UID:41392 Activity:high
1/16    Okay, I have a technical question here. I administer a cluster
        of java webservers running jetty (not resin, sorry). They are behind
        a load balancer. They used to start up fine under "load" i.e. in
        the load balancer configuration. The latest code release
        broke this somehow and now they crash upon startup unless
        I remove them from the load balancer first. The programmers
	...
2005/7/27-29 [Computer/SW/WWW/Server] UID:38845 Activity:nil
7/27    Sorry, I broke my webserver (mod_perl fall down and go boom).
        http://csua.org/u stuff will hopefully be back up by tonight.  --dbushong
        \_ Or...tomorrow.  mod_perl is not happy.  Sigh.
        \_ Does anyone actually USE http://csua.org? I don't and haven't even since
           http://tinyurl.com proved to be much better
           \_ Holy mythical creatures, batman!  His wounds are closing!
	...
2004/11/23 [Computer/SW/WWW/Server, Academia/Berkeley/CSUA] UID:35032 Activity:nil
11/23   The CSUA webserver is down
        \_ works for me as of 8:56am. --twohey
           \_ I just restarted it.  To the original poster, could you
              please mail root when you notice things are broken?  --mconst
        \_ Now works for me as well.  (It didn't about 10 minutes ago.)
	...
2004/8/25-26 [Computer/Domains] UID:33139 Activity:high
8/25    Looking for a cheap/reliable domain registry company.
        \_ godaddy
           \_ their webserver uses windoze. try http://000domains.com
           \_ my workplace had a few complaints go to godaddy for some
              email marketing (not unsolicited bulk email) a couple years
              ago and had the domains pulled without any checks.  So
	...
Cache (96 bytes)
www.example.com -> www.example.com/
These domain names are reserved for use in documentation and are not available for registration.
Cache (156 bytes)
freessl.com
Buy Now 96%+ Browser Recognition * Normally $349 GeoTrust(TM) Enhance your customer's confidence with the prestige of the international GeoTrust brand name.