[Mod_nss-list] working with mod_proxy
Rob Crittenden
rcritten at redhat.com
Tue May 11 14:28:53 UTC 2010
Joshua Roys wrote:
> On 05/10/2010 05:03 PM, Rob Crittenden wrote:
>> Gah, I need to fix that FAQ it seems...
>>
>> If you have mod_nss 1.0.8 then you should be ok with mod_proxy as long
>> as mod_ssl isn't loaded into Apache (really, even if you don't use it,
>> the shared library being loaded is enough to cause problems).
>>
>
> Thanks, it does indeed work - almost. Now it is complaining about not
> knowing a name for something and tells us to look at apache bug 36468.
> The patch in that bug seems to no longer apply... help!
Yeah, that patch was for the 2.0.x version of Apache IIRC and lots has
changed since. What version of Apache do you have and what distro are
you running?
This patch should apply to Apache 2.2.x and address the problem:
--- httpd-2.2.3/modules/proxy/proxy_util.c.orig
+++ httpd-2.2.3/modules/proxy/proxy_util.c
@@ -2432,6 +2432,7 @@ PROXY_DECLARE(int) ap_proxy_connection_c
/* For ssl connection to backend */
if (conn->is_ssl) {
+ conn->connection->remote_host = conn->hostname;
if (!ap_proxy_ssl_enable(conn->connection)) {
ap_log_error(APLOG_MARK, APLOG_ERR, 0,
s, "proxy: %s: failed to enable ssl support "
rob
More information about the Mod_nss-list
mailing list