Mod_SSL and Apache 2.0.48 "curiosity"

Hello anyone.

I'm a newbye to Apache (I mean, I'm running on my "home server" since
a year, but without any "wonderful things" on it. Just serving files
to me and friends)

Now, I wanted to play a little with SSL, only for my curiosity.
Having to upgrade from the .39 to .48 I got the .msi file (yes, I'm
running it on Win) that come without mod.ssl because of the export
rules.

I searched a little on the web and I found some mod_ssl, already
complied for w32 environment and with some other stuff to put in the
system directories.
to be precise I got files from here:
http://www.madhon.co.uk/modssl/modssl2048.zip

So I'm asking... Is all this stuff "safe"? I would like to have some
"official" compile of the stuff, before putting it in my system, but I
can't find a complied one from safe place....

Many thanks,
have a nice day.



--

Ciao da
_ ! _
`^ _ ^'
Belldandy
(EMAIL : Belldandy*levami*@supereva.it)
(FIDO : 2:334/403.150 )
(http://www.ltisystems.dyndns.org/files/)
( ------- Presidente del GERAK ------- )

Belldandy <Belldandy*levami*@supereva.it> wrote:
> So I'm asking... Is all this stuff "safe"?

You are running the most unsafe OS on earth and you worry about Apache?
Davide

--
| Tip of the day: The Windows 95 CD-ROM makes an excellent skeet shoot
| target.

Back to the earth....

>> So I'm asking... Is all this stuff "safe"?
>You are running the most unsafe OS on earth and you worry about Apache?

(I was expecting something like that)

I built my home over quicksand, you're right.

But can you help me in have the apache pavement "at least" without
"for free" holes?

tnx.



--

Ciao da
_ ! _
`^ _ ^'
Belldandy
(EMAIL : Belldandy*levami*@supereva.it)
(FIDO : 2:334/403.150 )
(http://www.ltisystems.dyndns.org/files/)
( ------- Presidente del GERAK ------- )

"Belldandy" <Belldandy*levami*@supereva.it> wrote in message
news:fp8200l5s08bq0fgijrgdbfp99p3n4emeo@4ax.com...

> So I'm asking... Is all this stuff "safe"? I would like to have some
> "official" compile of the stuff, before putting it in my system, but I
> can't find a complied one from safe place....

I can't vouch for the safety of those you have downloaded. I can however
vouch for the safety of my own:
http://rab.members.easyspace.com/apache-ssl/
but then why should you believe me? Problem is that there is no official
build, so you either compile it yourself, or you take your chances.
Compiling it yourself isn't hard, maybe you should give it a try.

Richard.

I would ten to trust the sunsite or some official mirror site like some ISPs
and check the keys. They all should have the same key for the same build
"Richard Antony Burton" <richardaburton-NOSPAM-@hotmail.com> wrote in
message news:XY9Mb.4308091$be.686628@news.easynews.com...
>
> "Belldandy" <Belldandy*levami*@supereva.it> wrote in message
> news:fp8200l5s08bq0fgijrgdbfp99p3n4emeo@4ax.com...
>
> > So I'm asking... Is all this stuff "safe"? I would like to have some
> > "official" compile of the stuff, before putting it in my system, but I
> > can't find a complied one from safe place....
>
> I can't vouch for the safety of those you have downloaded. I can however
> vouch for the safety of my own:
> http://rab.members.easyspace.com/apache-ssl/
> but then why should you believe me? Problem is that there is no official
> build, so you either compile it yourself, or you take your chances.
> Compiling it yourself isn't hard, maybe you should give it a try.
>
> Richard.
>
>

"gg" <NoEMailPlease@allMailIgnored.net> wrote in message
news:idaMb.3962$Eq.2241@clgrps12...
> I would ten to trust the sunsite or some official mirror site like some
ISPs
> and check the keys. They all should have the same key for the same build

What keys?

Richard.

> What keys?

pgp keys for the binary packages. but they can differ for different
builds depending on compiler versions and options.

joachim

> So I'm asking... Is all this stuff "safe"? I would like to have some
> "official" compile of the stuff, before putting it in my system, but I
> can't find a complied one from safe place....

Why not compile it yourself?

You can find the instructions on...

http://www.devside.net

Or if you do not have VS.NET or MS VC++, you can download a fully
compiled package with SSL under...

http://www.devside.net/web/server/download

"TowerOfPower" <towerofpower@operamail.com> wrote in message
news:e53e0702.0401111350.4f7fce88@posting.google.c om...
> > So I'm asking... Is all this stuff "safe"? I would like to have some
> > "official" compile of the stuff, before putting it in my system, but I
> > can't find a complied one from safe place....
>
> Why not compile it yourself?

Yes, this is easy, but as you point out you will need a compiler.

> Or if you do not have VS.NET or MS VC++, you can download a fully
> compiled package with SSL under...

Which brings us back to the original point. Why should he trust your (or
anyone elses) compiled versions.

Richard.

I decided to pick one and try out, since mine is only matter of
"playing" to learn a little.... and thus I have no critical data to
protect, after all... I'll just be not happy to reinstall anything ^^;

I'll surely come back to ask someone "why this is not working", but in
the meantime many thanks to all.



--

Ciao da
_ ! _
`^ _ ^'
Belldandy
(EMAIL : Belldandy*levami*@supereva.it)
(FIDO : 2:334/403.150 )
(http://www.ltisystems.dyndns.org/files/)
( ------- Presidente del GERAK ------- )