Posts Tagged ‘contact’

Trip to Bakadjiiski ( Bakadji ) monastery Bulgaria near Yambol peak Bakadji and a Rocker Moto feast- A little known tourist Mountain virgin perl of Bulgaria

Saturday, May 13th, 2017

Bakadjiiski_monastery-Holy_Saviour_little-known-cheap-tourist-destination-perl-of-Bulgaria

Perhaps many of Bulgarian citizens and people in Europe who have heard about Bulgaria and its Capital Sofia or have been on a tourism trip to Bulgaria know Saint Alexander Nevski Cathedral in Bulgaria capital Sofia.

However perhaps few know or have heard that saint Alexander Nevskij's Cathedral is not the only Church dedicated to the Russian saint but earlier another small Christian church was build as a remembrance and honor of the Russian-Turkish War Bulgarian liberators who were consisting of (Russian, Belarusians, Ukrainian, Finish and Romanian) soldiers who have sacrificed there life (according to official sources about 70 000 – 100 000 deaths from Russian side) but unofficial sources says 200 000 – 300 000 as a real numbers of victims of Russians and about les say at least 80 000 victims of Bulgarian side.

The Russian-Turkish Liberation war of 1877 and liberation of Bulgarian from Ottoman slavery are among the most notable events for Bulgarian history.

With the coming of peaceful times, the warm feelings and high appreaciation of Bulgarian nation to Russian liberators have been demonstrated numerous times with the creation of innumerable number of Christian Churches and Chapel and other Christian monuments, the most notable along with saint Aleksander Nevski on the city center of Sofia is the monument of emperor Alexander Nikolaevich II-nd   the Liberator

Pametnik_Tsar_Osvoboditel_city-center-Sofia_Alexander_II_Nikolaevich-Russian-emperor-liberator-of-Bulgaria

The first monument in remembrance of the Russo-Turkish Bulgarian Liberation war was built nearby the city of Yambol after the victory of 23rd Donsk – Khazak regiment in Yambol is established 55th infantry (Podolski) regiment, 95th infantry regiment of Krasnoyarsk and some other Russian troop forces while finally in the end of year 1878 here is established 30th infantry regiment of the corups of General Skobelev-Junior.
In the beginning of next year the famous General discusses with Yambol citizens his idea to build a Church "for eternal remembrance of Russian soldiers on the battlefield during the liberation of Bulgarian of Ottoman slavery".

 

Bakadjika-monastery-Church-Saint_Alexander_Nevski-pic

It is decided the idea to be implemented with joint forces between the North slope on the first peak of Bakadjika – also known as "Saint Spas", and on its ridge – on the same place of the Destroyed by Turkish soldiers Monastery "Sveti Spas / Holy Saviour) during the Bulgarian Uprising of April (Aprilsko Vozstanie).
Gen Skobelev and the local people decided to build a small chappel in honor of Russian saint Alexander Nevski who played key role for the rise of Russian nation and thanks to whome Russians managed to escape slavery from the surrounding Turkish khan rulers like Bhatai Khan etc.

With the success of preliminary plan, the place become a common visited (usually mostly during Summer months) by citizens of about 12 km far Yambol city.

With the withdrawal of last Russian soldiers of the region while departing from there general Skobelev gave a precious gift to the newly built Church – an Evangelion with an Engraved Cross.

Evangelion-donated-by-general-Skobelev-to-Bakadjika-church-saint-Alexander-Nevski

Evangelion gift by general Skobelev

The_Crucifix-gift-by-general-Skobelev-to-commemoration-Church

The Cross gift by General Skobelev to the new built memoriam Church saint Alexander Nevski

Icon_Alexander_Nevski-XIX-century-Bakadjika-liberation-memorial-Church

Icon of Alexander Nevski kept in the St. Aleksander Nevski Memorial Church in Bakadjika Holy Saviour Monastery.

After the depearture of Russian soldiers the consturctuion works of the temple are completed by Bulgarians with the material aids from Russia.
The iconostasis follows the Russian Orthodox Church tradition engraved by Russian monks and moved in parts to be mounted in the Church.

monastery_Bakadjishki_Sv_Spas_Holy_Saviour

The gonfalons and most of the icons are brought by Kiev Pechersk Lavra (The biggest and one of oldest if not earliest monastery on Russian lands) nowdays in capital of Ukrain Kiev.

In 1884 with the presence of the Russian embassador for Eastern Romelia with many official guests and locals
the official sanctification of the Church-monumentum st. Alexander Nevski (nowadays Bakadjishki monastery) has beenmade.
The Church and monastery had gone through a really hard times during Communism (Socialism) in Bulgaria 1944-1989 and until 10-15 years ago it has been left in a very bad state.

However thanks to locals and a Hieromonk Sofronij (known by many locals as Stefan Bradata (Stefan The Beard), the monastery has been quickly starting to recover its material base.

Bakadjishki_Monastery_Church_Sv_Spas_St_Alexander_Nevski

hramov_Praznik_Sv-Spas-Bakadjika-near-Yambol-monastery

Fr. Sofronij has been in process of building monastic corups where guests can stay for a night or few but is facing financial problems and he is kindly asking anyone who has the finances and love for Christ and the Eastern Orthodox Church to help with finances, material goods or even workforce and of course novice monks are always needed.

Bakadjishki-monastery-Sv-Spas-interior-Bulgarian-monastery-near-Yambol

Nearby the monastery there is a famous Cave well (holy spring water), which according to the local tradition has been revealed in a dream to a monk and the monks has dug hardly the cave wall about 30 meters and then dug down exactly the the place where the monk had the Vision of the Blessed Mother Mary.
Just like in the dream the Miraculous Holy Spring water has emerged exactly on the place shown in the dream, because of the resemblance of the Well found with the Evangelion story of the Samaritan woman at the well – whose name btw in Christian Eastern Orthodox tradition is Photinia, the well later received a name The Well of Samaritan.

The_Well-of-the-Samaritan-Woman-meeting-Christ-in-Bakajdkishki-monastery-Bulgaria


The entrance door leading to the Cave Samaritan Well

the-well-of-the-samaritan-holy-spring-monastery-bokadjika-near-yambol

The_Well-of-the-Samaritan-Holy-Spring-near-Bakadjishki-monastery-Holy-Savior-Bulgaria-Abbot-Hieromonk-Sofronij

Fr. Sofronij with the Italian sculteres of the Lord Jesus Christ and the Samaritan

Well-cave-near-Bakadjika-monastery

The Well with (Buklica – traditional water vessel in Bulgaria)

The_Samaritan-Well-in-Sveti_Spas_monastery-near-Bakadjika-peak-Bulgaria-Bakadjishki-monastery

Italian statues of Christ and the Samaritan Woman at the Well (Holy Water / Agiasmo / Aiazmo Spring)

In case if you want to spend the night in Bakadjika Monastery for a really cheap – 5 euro please contact:

Yambol Bakadjicite
089 895 4611
bradara_indjata@abv.bg


Each on Bakadjika it has become a local tradition for Rockers / Metalheads and Moto fans all around Southern Bulgaria
to gather near Bakadji just 1 km away from Bakadjiski monastery.
Since ancient times the spiritual centers has always attracted people and perhaps this is also true for Bakadjika which earlier has been a place for a heroic battles for freedom and nowdays has become a rocker arena of a different understanding of wild life and human freedom.

This year 2017 it is the 20th anniversary for Rockers gathering on 12 of May on Bakadjika-Yambol Moto feast to meet other who are alike. The rocker event is about to last 3 days until 15 of May.
For the safety of Rockers this year the rockers has been granted a great honor as a Bishop of the Bulgarian Orthodox Church (Bishop of Agathopol – Ierotey Kosakov his whole biography is on Bg-Patriarchy website here) has personally come to the event to pray (with the so called Vodosvet – Or Blessing of Water) for the well being of the Rockers who are to ride and take participation of organized games and racing events of Bakadjika feast.

Bishop_Ierotey_Ksakovof_Agathopol-Bishop-of-Bulgarian-Orthodox-Church_Moto-rocker-feast-Bakadjika-2017

What is famous near the monastery and perhaps little known outside of Bulgaria and perhaps in Eastern Europe is the existence of Gigantic Monument (Soviet times / Communist) of Bronze build in year 1987 in honor of 110 years of the Liberation of Bulgarian from Ottoman Turkish Slavery. The monument is a kind of symbiosis between concrete plate with plastics and 32 tons of bronze.

The monument depicts events related to Bulgarian history divided on 3 parts.

1. A Russian Soldier and a Bulgarian (opalchenec = guerilla of the liberation war) – symbol of the heroic victory over Ottoman enslavers and the Victory of Christianity on Bulgarian lands over islam

2. Second comes plastics depicting a mother with a child – symbol of continuity between generations

3. A Cosmonaut (Spaceman) – a symbol for Bulgarian-Russian achievements in science and the mastering of cosmic space  and on the top with a plastic is a young-woman – a symbol for advance of resurrected Bulgarian nation

Bakadjik-memorial-of-Russian-liberators

Bakadjik-memorial-of-Russian-Liberators-3

Bakadjik-memorial-of-Russian-Liberators-1

Bakadjik-memorial-of-Russian-Liberators-4

 

Share this on

Run 2 and more Skypes simultaneously on Mac OS X – Run multiple Skype acccounts on same Mac

Saturday, June 21st, 2014

run-2-and-more-skypes-simultaneously-on-mac-os-x-multiple-skype-account-login-on-mac
For people running Mac OS X, the question of 
how is it possible to use 2 skype accounts in parallel on Mac probably makes good sense?

I don't own a Mac notebook and thefore I'm a Mac newbie, however, I'm into situation where I and my wife Svetlana went (for 3 days) to my hometown Dobrich and we have with us only her Mac OS X powered Mac Book air.

 

One user is already logged in Skype, (my wife) is expecting some relatives and friends to contact us and  same time I had to login to check few servers via ssh and discuss some server downtime issues from yesterday in Skype .
Thus we
need 2 skype instances to run separately on her Macbook air powered PC with Mac OS X Leopard
 

Earlier I've blogged how to make 2 and more Skype accounts work simultaneously on one Windows PC because I had to set it up for a company, in this short article I will explain how is possible to run many skype clients on Mac OS X.

 

1. Open Mac Terminal from Finder

finder-terminal-screenshot-mac-os-x-leopard-run-many-skypes-mac-os

2. In Terminal run the first Skype Instance

Type in Terminal:

open /Applications/Skype.app/Contents/MacOS/Skype

3. Run Second Skype instance

In older Skype Mac OS versions, I read the

/secondary

Skype command option was there and could be used to run a second parallel skype instance on Mac, however in newer releases this option was removed and if you try to invoke it warning window pops up saying an instance is already running.

mac-os-x-you-have-another-copy-of-skype-running-screenshot

To get around the issue and run the second Skype, quickest way is to run another Skype client under privileged user through sudo command (this is unsecure – but anyways as Mac OS is proprietary and we don't have access to code and probably there are tons of spy and report software integrated into the OS, it doesn't really matter.)

mac-os-x-skype-run-screenshot-pic

To get around the issue and run the second Skype, quickest way is to run another Skype client under privileged user through sudo command (this is unsecure – but anyways as Mac OS is proprietary and we don't have access to code and probably there are tons of spy and report software integrated into the OS, it doesn't really matter.)

4. Script it into 2nd_skype.sh for later use

To run and use two parallel skypes regularly it might be useful to make shell script out of it and place it somewhere, 2nd_skype.sh script should be something like:


#!/bin/bash
open /Applications/Skype.app/Contents/MacOS/Skype
sudo /Applications/Skype.app/Contents/MacOS/Skype

Then make the script executable with:

chmod a+x 2nd_skype.sh

5. Run more than 2 Skypes (Run multiple Skypes on same Mac PC hack)

There is another "hack" method with deleting the Skype.pid (Process ID). Skype recognize where it is running by checking its Skype.pid on start up.

Deleting the pid after each next Skype client launch,  allow the user to run as many Skypes as you want on Mac OS X but it is not clear for how long it time it will work.

rm -f ~/Library/Application Support/Skype/Skype.pid

Then launch again Skype in background from Mac Terminal

open -nW '/Application/Skype.app' &

In case if you wonder why the open command is used, since above line could be run also directly and Skype will pop-up, by using open command you instruct the program to detach itself from Terminal from which it run, so later if Terminal is closed Skype app. will not terminate.

Another approach is to create, a many users lets say 5 users and use the Skype sudo run method each client with a separate user.

sudo user1 /Applications/Skype.app/Contents/MacOS/Skype
sudo user2 /Applications/Skype.app/Contents/MacOS/Skype
sudo user3 /Applications/Skype.app/Contents/MacOS/Skype
sudo user4 /Applications/Skype.app/Contents/MacOS/Skype

sudo user5 /Applications/Skype.app/Contents/MacOS/Skype

I enclose the script with the custom icon (Skype) ready to be launched and Voila, on script launch Skype multiple login prompts pops up.

For the lazy ones who don't want to tamper with writting scripts or doing hacks to run Skype multiple times on Mac there is even a Multi Skype Launcher app for Mac.

 


 

Share this on

Stop contact form spam emails in Joomla, Disable “E-mail a copy of this message to your own address.” in Joomla

Friday, April 11th, 2014

email-copy-of-this-message-to-your-own-address_Contact_email_form
If you happen to have installed Joomla based website and setup a contact form and everything worked fine until recently but suddenly your server starts mysteriously acting as a spam relay – even though email server is perfectly secured against spam.
You probably have some issue with a website email contact form hacked or some vulnerability which allowed hackers to upload spammer php script.

I have a website based on Joomla and just until recently everything was okay until I noticed there are tons of spam flying out from my Qmail mail server (which is configured to check spam with Spamassassin has Bayesian Filtering, Distributed Checksum Claring House, Python Razor and plenty of custom anti-spam rules.

It was just yesterday I ended into that situation, then after evaluating all the hosted website, I've realized Spam issues are caused by an Old Joomla Website Contact form!

There were two issues in the form

in the contact form you have the field with a tick:

1. Well Known Joomla Form Vulnerability
Currently all Joomla (including 1.5.22 and 1.6 versions) are vulnerable to a serious spam relay problem as described in the official Joomla site.

There is a quick dirty workaround fix to contact form vulnerability –  disable a Joomla Comonent in ../joomla/components/com_mailto/

To disable it I had to:

cd /var/www/joomla/components
mv com_mailto com_mailtoNOT_USED

Above solution was described under a post resolve joomla spam relay earlier by Anatoliy Dimitrov (after checking closely the website it happened he is a colleague at HP 🙂 )

2. Second issue causing high amount of spam sent over the email server
was: "E-mail a copy of this message to your own address." contact form tick, which was practically enabling any Spammer with a list to inect emails and spam via the form sending copies to any email out on the internet!

You would definitely want to disable  "E-mail a copy of this message to your own address."
I wonder why ever any Joomla developer came up with this "spam form"?? 

joomla-disable-email-copy-of-this-message-to-your-own-address

Here is the solution to this:

1. Login to Joomla Admin with admin account
2. Goto Components -> Contacts -> Contacts
3. Click on the relevant Contact form
4. Under Contact Parameters go to Email Parameters
5. Change field E-mail Copy from Show to Hide and click Apply button

And Hooray the E-mail a copy of this message to your own address will be gone from contact form! 🙂

I've seen already plenty of problematic hacked servers and scripts before with Joomla in my last job in International University College – where joomla was heavy used, but I never experienced Joomla Security issues myself 'till know, in future I'm planning to never ever use joomla. Though it is an easy CMS system to setup a website its quite complicated to learn the menus – I remember when creating the problematic website it took me days until I properly setup all the menus and find all joomla components … besides these there is no easy way to migrate between different versions major releases in Joomla like in Wordperss, I guess this Mail Security Issue absolutely convinced me to quit using that piece of crap in future.

In mean Time another very serious Apache security flaw leaked on the Internet just few days ago – The OpenSSL Hearbleed Bug. Thanksfully I'm not running SSL anywhere on my website but many systems are affecting making most of your SSL communication with your Internet banking, E-mail etc. in danger. If you're running Apache with SSL make sure you test it for this vulnerability. Here is description of Heartbleed SSL Critical Vulnerability.

heartbleed_ssl_remote_vulnerability_logo

"The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library. This weakness allows stealing the information protected, under normal conditions, by the SSL/TLS encryption used to secure the Internet. SSL/TLS provides communication security and privacy over the Internet for applications such as web, email, instant messaging (IM) and some virtual private networks (VPNs).

The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users."

11

 

Share this on

How to change Outlook Signature – modify and delete Microsoft Outlook email signatures

Monday, February 17th, 2014

I'm using Mozilla Thunderbird over the last 5 years in my life. Just now in my new job place in Hewlett Packard, in order to have well functional mail (with exchange server) – I started using Microsoft Outlook.
Logically a little while after I started my work I have to update my Outlook E-mail signature to reflect my contact details (job position title, email, stand-alone / mobile phone, office address etc.). As of moment of writting I'm using Microsoft Outlook 14.0.6123.5001 (32 bit) part of Microsoft Office Professional Plus 2010.

Its a kind of irony that I had to use Microsoft products after all these years trying my best to avoid using Microsoft technologies but heh, this is life … Though this article will be a bit trivial I decided to blog it because already I had to change email signature for a 3rd time over the last 3 months and every now and then after a month time I tend to forget how I did it last time.

Here is how I changed Email Signature in Outlook:

1. Click on "New-Email" (located below File menu)

2. Click on "Insert" (menu tab)

3. Click on "Signature"

microsoft-outlook-pop3-mail-client-change-signature-screenshot

4. Click on "New" button

As you see Outlook is written in very intelligent manner 🙂
It is possible to have more than one signature and change them every now and then (I guess that's made for Schizophrenic people who like changing their signature a couple of times a day accepting different personalities 🙂 🙂 🙂
For already existing signatures just edit the old one – click on Edit Signature

microsoft-outlook-exchange-how-to-change-email-signature
http://www.clarion.edu/273437/
 

  • Rename Signatures:

        Perform steps 1-4 in ('Create Signatures') except click "Rename button instead of 'New' and begin typing new name.

  • Delete Signatures:

        Perform steps 1-4 in ('Create Signatures') except click 'Delete" button instead of 'New'.

  • Modify Signatures:

        Highlight signature name you wish to modify under

  1. "Select Signature to Edit" then modify signature.

  2. Click "Save" button to save any signature changes made.

Share this on

My PHP/ MySQL Restaurant Reservation Form

Tuesday, December 14th, 2010

Two months ago, I’ve developed a contact reservation form in PHP. The form is really easily customizable and is straight forward to integrate.
I’ve developed the form for a small restaurant which was missing the feature on it’s joomla based website in order to be able for restaurant clients to reserve tables.

Here is how my restaurant reservation form looks like:

hip0's plain php restaurant reservation form

Later on I found there are plenty of possibilities to easily make a reservation form in Joomla but at that time I had no idea that custom contact forms can be prepared with Joomla, so I developed my own one from scratch in plain PHP and MySQL.

The form’s fields are in Dutch, because the form I’ve developed for a Dutch restaurant.
However changing the form text is really easy,to do so open the php file and modify it, according to your needs.
I decided to share here the reservation form in hope that it might be helpful to somebody out there.
The Reservation form is licensed under GPLv2 so you’re very welcome to distribute and modify it freely.

The form installation is described in the README file you will find bundled with the reservation form archive.

You can d Download my PHP restaurant reservation form here

Feedback on the form is very welcome!
 

Share this on

Howto install GeoTrust RapidSSL certificate on Debian Lenny / Squeeze / Wheezy Linux

Thursday, March 25th, 2010

I faced the task of generating official Validated SSL Certificates by in mydaily duties as a System Administrator at cadiaholding.com . Though generating self-signedSSL certificate is comparatively easy task. It was a pain in the ass setting Apache version 2.2.9-10+lenny6to correctly serve pages through https:// protocol over openssl version 0.9.8g-15+lenny6.I’ll try to go through the whole process of Generating the certificate in order to help some other Debianusers out there to face less setbacks in such a simple task as installing a Trusted SSL Certificate issued(bought) by RapidSSL. Even though this article will mostly deal with SSL certificate issued by RapidSSL,it should be not a problem to apply this methodogy with Verisign or some of the other Geotrust issuedSecure Socket Layer certificates.

In generating the Validated certficate I used enom which is a domain name,ssl certificates, email and hosting company whole-saler.
Fron emon’s website after logging in and using the web interface, there are two major things required to fill inin order to issue your Trusted SSL certificate.

1. Fill in in a form a CSR file, this is usually generated on the Linux server using the openssl.
To issue the CSR file required by Enom use the following commands:

a. First we generate an DES3 RSA encrypted key which we will use next to generate the opeensl CSR file required by ENOM.
debian:~# /usr/bin/openssl genrsa -des3 -out www.domain.com.key 2048
Enter pass phrase for www.domain.com.key:

You’ll be required to fill in a pass-phrase that will be later be required to fill in before Apache servers starts or restarts,so make sure you fill something you either remember or you keep the password stored in a file.
You have to change also the www.domain.com.key in accordance with your domain name.
Now as we already have a proper generated DES3 RSA key afterwards it’s necessery to generate the CSR file with the openssl command line frontend.
So here is how:

debian:~# /usr/bin/openssl req -new -key /home/hipo/www.domain.com.key -out /home/hipo/www.domain.com.csr

Again in the above example change all the paths and file names as you wish.
It’s necessery that the end user fill in a number of questions related to the Certificate Signing Request.
Herein I’ll list what kind of prompts will emerge after executing the above command:

Enter pass phrase for /home/hipo/www.domain.com.key:
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:
State or Province Name (full name) [Some-State]:
Locality Name (eg, city) []:
Organization Name (eg, company) [Internet Widgits Pty Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (eg, YOUR name) []:
Email Address []:
Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:

Note that you’ll hav eto fill in the pass phrase previously entered during the generation of the www.domain.com.key file.
In case if you’d like to read more thoroughly on the subject of howto create a Certificate Signing Request or (CSR) as we called it on multiple times, you can read About Certificate Signing Request (CSR) Generation Instructions – Apache SSL more in depth here

2. Hopefully following the above instructions you’ll now have a file named www.domain.csrJust open the www.domain.scr and copy paste it’s content to the ENOM website CSR * webform.

3. Further on select your Webserver type on Enom’s website:In our case we have to select Apache + ApacheSSL

4. What follows next is filling in your company contact information This is also required for proper certificate generation, you have to think twice before you fill in this data, take a note this can’t be changed later on without issuing a brand SSL new certificate.

Apart from the 3 major above requirements to fill in Enom there are some few more radio buttons to use to make some selections according to your personal preferences, however I won’t take time to dig in that and I’ll leave this to you.
After all the above is fulfilled you’ll have to submit your certificate details and choose an email address to which you will receive in a minute a RapidSSL Certificate Request Confirmation

Following a link from the email, will show you some basic information about the certificate about to be generated. That’s your final chance to cancel the issued Trusted Certificated.
If you’re absolutely sure the information about to enter the certificate is correct then you’ll have to follow a link and approve the certificate.

You’ll be informed that you’ll receive your certificate either through Certifier website (e.g. Enom’s website) or via another email.
I thought it’s more probable I receive it via email but anyways I was wrong. More thank 4 hours has passed since the certificate was issued and is available via Enom’s interface but I haven’t received nothing on my mail.
Therefore my friendly advice is to check about your brand new shiny Trusted Certificate on Emom’s website. I had mine ready in about 10 minutes after the CSR was issued.

Assuming that you’ve succesfully obtained the SSL Trusted certificate from RapidSSL what follows is setting up the certificate.
Initially I tried using documentation from RapidSSL website called Installing your SSL Certificate / Web Server Certificate / Secure Server Certificate from RapidSSL.com
I tried to configure one of my Virtualhost as shown in their example inserting in my /etc/apache/sites-available/www.domain.com file, few directives within the VirtualHost something like the shown below

SSLEngine on
# domain.com.crt cointains the Trusted SSL certificate generated and obtained by you from RapidSSL
SSLCertificateFile /etc/apache2/ssl/www.domain.com.crt
# www.domain.com.key contains the file used to generate the CSR file as described earlier in this post
SSLCertificateKeyFile /etc/apache2/ssl/www.domain.com.key

It is also possible insetad of using the SSLCertificateFile and SSLCertificateKeyFile directvies directives in Apache config to use:

 

Another alternative is to use

SSLCertificateFile /etc/ssl/certs/your-domain-name.crt
SSLCertificateKeyFile /etc/ssl/certs/your-domain-name.key
SSLCACertificateFile /etc/ssl/certs/gd_bundle.crt

The key file is the one generated earlier on the server and handed to the SSL regisrar, the files:

your-domain-name.crt and gd_bundle.crt files are provided by RapidSSL or from whatever SSL registrater the SSL was purchased.

After trying the above configuration and restarting apache with:

/etc/init.d/apache2 restart

Apache failed to start, it might be helpful to somebody out there the error I had in my apache error.log:
The error.log red the following:

[warn] RSA server certificate is a CA certificate (BasicConstraints: CA == TRUE !?)

After some 30 minutes or an hour of Googling on the error I came to the conclusion that the error is caused, becauseApache is supposed to work with .PEM files instead of the classical .CRT and .KEY files asnormally approached in most of the other Unix operating systems.

It took me a bit more of reading on the internet to find out that actually the .pem files so widely adopted in Debian simply contain both the www.domain.com.key file and the www.domain.com.crt key simply pasted one after another, this I also observed from the default Apache self-signed certificate that I believe comes with debian /etc/apache2/ssl/apache.pem .
So I copied both the content of my www.domain.com.key and www.domain.com.crt and store it in one file:
/etc/apache2/ssl/www.domain.com.pem

Also the following configuration:
SSLEngine on
SSLCertificateFile /etc/apache2/ssl/www.domain.com.pem

had to go in your
/etc/apache2/sites-enabled/www.domain.com

Last thing that’s left is to restart your Apache;

/etc/init.d/apache2 restart

Apache will prompt you for your certificate password entered by you during the www.domain.com.key generation. Type your password and with a bit of luck and hopefully with God’s help you’ll be having a Trusted Certificate on your webserver.

Last step is to check if the certificate is okay accessing your domain https://www.domain.com.

Well this is the end of the article, hope you enjoy.If you do please leave your comments, any corrections are also welcomed 🙂

Share this on