You know, I'd take the problem-solving attention away from SSL, and look more at other things like chron-jobs. My initial thought was that a cron-job (like log rotations) is causing troubles, especially at the end of the week... Sunday. Isn't that when most Unix distros do their 'weekly crons'? I looked at mine, and RH has theirs happen at 2AM Monday morning. Also, be careful about running the SSL server separate from the regular web server. Normally, they are the same server, but you can run them as separate instances of Apache (as I like to do) if you take care to keep their lock files and logs carefully isolated from each other (unless you otherwise are careful to know how to merge them successfully). Lastly, if you are running SSL from aa a separate daemon, it would imply to me that you are using the stock Apache from the distro to do regular serving. If this is the case, then the Apache in the distro is more likely to be configured in a way to cope with it's OS environment than your custom build SSL Apache. Compare the configurations of the two to see what differences exist which may explain the problems you are having. I'd have a hard time thinking it was cert or OpenSSL related if it works most of the time except for a certain day of the week.... I hope this helps! Phil On Mon, Jan 24, 2000 at 11:38:57PM +0200, [EMAIL PROTECTED] wrote: > > I'm not an openssl expert, but as far as I remember I have Apache 1.3.9 > with mod-ssl patch 1.3.7 using openssl 0.9.4 running using a Thawte > certificate under Redhat Linux 6.0 with no problems. > > I'm sure there are people that can help you if you provide more > information on your configuration. > > Roberty Sandilands > > On Mon, 24 Jan 2000, Aaron Gelner wrote: > > > Date: Mon, 24 Jan 2000 05:08:09 -0600 > > From: Aaron Gelner <[EMAIL PROTECTED]> > > Reply-To: [EMAIL PROTECTED] > > To: [EMAIL PROTECTED] > > Subject: Apache's SSL server side keeps crashing > > > > Dear List, > > > > Since our initial date of receiving our SSL cert CA'd by Thawte, every > > Sunday, Apache seemingly faults out on the Secured Socket Layer side, > > thus causing not a connection refused to port 443, instead, a connection > > reset error. We've contacted thawte, they have no idea *no kidding* as > > to what is going on. They recommended we try the openssl user list, so > > here I am. The logs report nothing that is substantially evident to > > WHEN and WHY the SSL part dies, though, there are particular statements > > about openSSL being "confused." Any help will be greatly appreciated. > > > > Regards, > > > > Aaron Gelner / [EMAIL PROTECTED] > > ______________________________________________________________________ > > OpenSSL Project http://www.openssl.org > > User Support Mailing List [EMAIL PROTECTED] > > Automated List Manager [EMAIL PROTECTED] > > > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] -- Philip Edelbrock -- IS Manager -- Edge Design, Corvallis, OR [EMAIL PROTECTED] -- http://www.netroedge.com/~phil PGP F16: 01 D2 FD 01 B5 46 F4 F0 3A 8B 9D 7E 14 7F FB 7A ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
