RE: Linux Red Hat 7.2 + openSSL 0.9.7 + Apache 1.3.27 + mod_ssl 2.8.1 2 = PROBLEMS!!!
-Original Message- From: Boyle Owen [mailto:[EMAIL PROTECTED] Sent: 25 February 2003 15:15 To: [EMAIL PROTECTED] Subject: RE: Linux Red Hat 7.2 + openSSL 0.9.7 + Apache 1.3.27 + mod_ssl 2.8.1 2 = PROBLEMS!!! Sensitivity: Confidential Why is apachectl in /usr/sbin/apachectl? This sounds like the default installation that came with RH. Your apachectl and httpd should be in /home/aspco1/apache_1.3.27/bin. What happens if you do /home/aspco1/apache_1.3.27/bin/apachectl startssl? I think this is your MAIN problem... You should be able to install this on Red Hat with no problems (I haven't tried it yet though. Compiling openssl 0.9.7 on Red Hat 7.2 and above is on my todo list). Remove the Red Hat apache, modssl and mm packages first with: rpm -e mm apache modssl You might find you have other packages installed, eg php. You'll need to remove these too. DON'T REMOVE THE REDHAT OPENSSL PACKAGE. You'll have even more problems if you do... Like Owen, I don't think you can build mod_ssl without mm either. - John Airey, BSc (Jt Hons), CNA, RHCE Internet systems support officer, ITCSD, Royal National Institute of the Blind, Bakewell Road, Peterborough PE2 6XU, Tel.: +44 (0) 1733 375299 Fax: +44 (0) 1733 370848 [EMAIL PROTECTED] A world of difference - in the UK, 37 million people put their faith on the last census as Christian. In Saudi Arabia, this answer would carry a death sentence for any Saudi. - NOTICE: The information contained in this email and any attachments is confidential and may be legally privileged. If you are not the intended recipient you are hereby notified that you must not use, disclose, distribute, copy, print or rely on this email's content. If you are not the intended recipient, please notify the sender immediately and then delete the email and any attachments from your system. RNIB has made strenuous efforts to ensure that emails and any attachments generated by its staff are free from viruses. However, it cannot accept any responsibility for any viruses which are transmitted. We therefore recommend you scan all attachments. Please note that the statements and views expressed in this email and any attachments are those of the author and do not necessarily represent those of RNIB. RNIB Registered Charity Number: 226227 Website: http://www.rnib.org.uk __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Linux Red Hat 7.2 + openSSL 0.9.7 + Apache 1.3.27 + mod_ssl 2.8.1 2 = PROBLEMS!!!
PLain text please.. Now you have to plough through the mail below to find my comments Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. -Original Message- From: Zampognaro Sergio [mailto:[EMAIL PROTECTED] Sent: Dienstag, 25. Februar 2003 15:05 To: [EMAIL PROTECTED] Subject: Linux Red Hat 7.2 + openSSL 0.9.7 + Apache 1.3.27 + mod_ssl 2.8.1 2 = PROBLEMS!!! Importance: High Sensitivity: Confidential Hi, everything is in the subject! I installed everything following this procedure: $ ./config --prefix=/home/aspco1/openSSL $ make $ make test $ make install # extract the packages $ gzip -d -c apache_1.3.27.tar.gz | tar xvf - $ gzip -d -c mod_ssl-2.8.12-1.3.27.tar.gz | tar xvf - # apply mod_ssl to Apache source tree $ cd /mod_ssl-2.8.12-1.3.27 $ ./configure --with-apache=../apache_1.3.27 $ cd .. # build/install Apache with mod_ssl $ cd apache_1.3.27 $ SSL_BASE=/home/aspco1/openSSL $ ./configure --prefix=/home/aspco1/apache_1.3.27 --enable-module=proxy --enable-module=ssl $ make $ make certificate TYPE=test $ make install $ cd .. # cleanup after work $ rm -rf mod_ssl-2.8.12-1.3.27 $ rm -rf apache_1.3.27 Everything seems to be ok, but when I try to start the web server: $ apachectl start Ouch! ap_mm_create(1048576, /var/run/httpd.mm.22620) failed Error: MM: mm:core: failed to open semaphore file (Permission denied): OS: No such file or directory /usr/sbin/apachectl start: httpd could not be started * Why is apachectl in /usr/sbin/apachectl? This sounds like the default installation that came with RH. Your apachectl and httpd should be in /home/aspco1/apache_1.3.27/bin. What happens if you do /home/aspco1/apache_1.3.27/bin/apachectl startssl? I think this is your MAIN problem... Be certain you are executing the right apache before proceeding! Also, did you install the MM shared memory library (http://www.ossp.org/pkg/lib/mm/)? I don't think it is entirely necessary although I've never installed without it. * Even bad with SSL: $ apachectl startssl usage: /usr/sbin/apachectl (start|stop|restart|fullstatus|status|graceful|configtest|help) start - start httpd stop - stop httpd restart- restart httpd if running by sending a SIGHUP or start if not running fullstatus - dump a full status screen; requires lynx and mod_status enabled status - dump a short status screen; requires lynx and mod_status enabled graceful - do a graceful restart by sending a SIGUSR1 or start if not running configtest - do a configuration syntax test help - this screen (startssl is not recognized!!!), and finally: $ httpd -l Compiled-in modules: http_core.c mod_so.c suexec: enabled; valid wrapper /usr/sbin/suexec Even if I compiled with --enable-module=proxy --enable-module=ssl options I can't see proxy and ssl modules in the list of compiled-in modules!!! What's happening??? thanks Sergio This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]