Apache 2.0.52 mod_ssl MSIE statuswrl.cgi not loading

Shawn Iverson shawn at nccsc.k12.in.us
Tue Dec 21 03:01:18 CET 2004


Greetings!  

I am having trouble with the statuswrl.cgi when using mod_ssl support in
apache with the Internet Explorer browser.  I receive the following
error:  "Internet Exploerer cannot download statuswrl.cgi?host=all from
x.x.x.x."  Interestingly, Firefox/Mozilla does not exhibit this problem
and is able to get the file, but it opens Internet Explorer and calls
the Cortona plugin to open it locally.  A similar problem was discussed
in a prior posting:  

<START>

From: Thomas Nilsen <Thomas at ro...> 
 RE: 3D statusmap   
2003-02-10 00:18  
 found the culprit... I"m using Nagios over HTTPS, which causes the 3D
view to fail. I don"t
know if it is Nagios/Apache or the 3d plugin for the browser that"s
causing it, but once I
swithced to HTTP it works. 

<END>

My question continues where this one left off -- is there a way to get
the statuswrl.cgi to work in MSIE without sacrificing SSL on the apache
server?  If so, I would be very much interested.  My best guess is that
MSIE is not allowing the vrml page to be cached locally.  Is there
something I can change on the server or client that would work around
this?

Relevant details are below.

Here is my apache access_log when accessing nagios without ssl.  Just a
normal entry:

x.x.x.x - xxxxxxxxx [20/Dec/2004:19:50:04 -0500] "GET
/nagios/cgi-bin/statuswrl.cgi?host=all HTTP/1.1" 200 108868 "-"
"Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1)"

Here is my ssl_access_log and ssl_request_log when using ssl, also
normal:

x.x.x.x - xxxxxxx [20/Dec/2004:20:36:17 -0500] "GET
/nagios/cgi-bin/statuswrl.cgi?host=all HTTP/1.1" 200 108868

[20/Dec/2004:20:36:17 -0500] x.x.x.x SSLv2 RC4-MD5 "GET
/nagios/cgi-bin/statuswrl.cgi?host=all HTTP/1.1" 108868

Nothing shows up in the ssl_error_log and error_log during the GET.


Versions being used: Fedora Core 3, Apache 2.0.52 with mod_ssl and
mod_auth_pam support, Nagios 1.2, Nagios Plugins 1.3.1

Remote Client:  IE 6.0.2900.2180.xp_sp2...  128 bit cipher strength,
Cortona VRML plugin 4.2.0.93

</etc/httpd/conf.d/nagios.conf START>

# Nagios CGI configuration
ScriptAlias /nagios/cgi-bin/ "/usr/local/nagios/sbin/"
<Directory "/usr/local/nagios/sbin/">
    Options ExecCGI
    AllowOverride None
    Order deny,allow
    Deny from all
    Allow from 127.0.0.1
    Allow from x.x.x.x/x
    AuthType Basic
    AuthName "Nagios Web Access"
    Require user xxxxxxxxxxxxxxxxx
    AuthPAM_Enabled on
    AuthPAM_FallThrough off
    SSLCipherSuite -all:SSLv2:+HIGH
    SSLRequireSSL
</Directory>

# Nagios HTML configuration
Alias /nagios /usr/local/nagios/share/
<Directory "/usr/local/nagios/share">
    Options None
    AllowOverride None
    Order deny,allow
    Deny from all
    Allow from 127.0.0.1
    Allow from x.x.x.x/x
    AuthType Basic
    AuthName "Nagios Web Access"
    Require user xxxxxxxxxxxxxxxxx
    AuthPAM_Enabled on
    AuthPAM_FallThrough off
    SSLCipherSuite -all:SSLv2:+HIGH
    SSLRequireSSL
</Directory>

</etc/httpd/conf.d/nagios.conf END>

Shawn Iverson
Technology Associate
MCP W2K3S and W2KP, Linux+, Network+, A+
New Castle Community School Corporation
shawn at nccsc.k12.in.us


-------------------------------------------------------
SF email is sponsored by - The IT Product Guide
Read honest & candid reviews on hundreds of IT Products from real users.
Discover which products truly live up to the hype. Start reading now. 
http://productguide.itmanagersjournal.com/
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null





More information about the Users mailing list