Hi All
I'm running Apache 2.2.9 on Windows Server 2003 (64-bit version) in a
production environment with mod_ssl configured. The only type of
SSLSessionCache I am able to use is dbm. If I try the memory-based cache
(shmcb, shmht or just shm), I get this error:
Syntax error on line 62 of C
the scenes, you might
still be right... I'll try it out as soon as I can and let you know.
Thanks a lot
Johan
-Original Message-
From: Martin Dickau [mailto:[EMAIL PROTECTED]
Sent: 01 September 2008 12:18 PM
To: [EMAIL PROTECTED]
Subject: Re: Error when trying shmcb SSLSessionCache on 64-bit
: RE: Error when trying shmcb SSLSessionCache on 64-bit Windows
Hi Martin
1) I'm still reluctant to use an unofficial build, but its good to know
others are using it.
2) Wow, well spotted with your (x86) theory! It also failed with a
relative path: logs/ssl_scache(512000), but depending on how
Title: Problems with SSLSessionCache
I am getting the following message each time my server tries to cache a session id in my dbm file:
[31/Mar/2004 16:03:34 01122] [trace] Inter-Process Session Cache: request=SET status=BAD id
didn't
mention which session cache type you're using - what's the
SSLSessionCache directive in your config? Also, if you run with tracing
on and you get a GET/MISSED, can you check backwards from there for a
log message with the same id byte-string, hopefully it's a PUT/MISSED
or something like
I am using SSLSessionCache dbm:/usr/local/apache/logs/ssl_cache. The dbm
files are created but they remain empty when I attempt with client auth
turned on. Where is the size limitation set on the caching of sessions? I
do see the request=SET, status=BAD as you mentioned, which seems
On April 2, 2004 01:41 pm, Loyless Jerrod A Contr ESC/NI7S1 wrote:
I am using SSLSessionCache dbm:/usr/local/apache/logs/ssl_cache. The
dbm files are created but they remain empty when I attempt with client
auth turned on. Where is the size limitation set on the caching of
sessions? I do
Apache setup :
Windows 2000 Server / Apache 2.0.47
/ mos_ssl 2.0.48 / OpenSSL 0.9.7c
I have one site responding to HTTP (80)
and two virtual hosts responding to HTTPS (443) all using separate IP addresses.
I have a question about the SSLSessionCache
directive
The directive was setup
Thanks, Cliff! That seemed to work.
At 04:50 PM 5/15/2002 -0400, you wrote:
On Wed, 15 May 2002, Ted Bannon wrote:
I've been trying to make use of the SSLSessionCache shared memory option in
my Apache config:
#SSLSessionCacheshmht:/data/home/apache/1.3.24/logs/ssl_scache
Hi,
I've been trying to make use of the SSLSessionCache shared memory option in
my Apache config:
#SSLSessionCacheshmht:/data/home/apache/1.3.24/logs/ssl_scache(512000)
#SSLSessionCacheshmcb:/data/home/apache/1.3.24/logs/ssl_scache(512000)
SSLSessionCache dbm:/data/home
On Wed, 15 May 2002, Ted Bannon wrote:
I've been trying to make use of the SSLSessionCache shared memory option in
my Apache config:
#SSLSessionCacheshmht:/data/home/apache/1.3.24/logs/ssl_scache(512000)
#SSLSessionCacheshmcb:/data/home/apache/1.3.24/logs/ssl_scache(512000
the
problem sometime back (version 2.8.4)
we enabled the
SSLSessionCache mode using
dbm and it started
to work great then.
Any
ideas?
-Arthur.
[EMAIL PROTECTED]
is 0.9.6a
-Arthur
-Original Message-
From: Russell Ruby [mailto:[EMAIL PROTECTED]]
Sent: Sunday, March 17, 2002 1:49 PM
To: [EMAIL PROTECTED]
Subject: Re: SSLSessionCache in Version 2.8.7
Do the image URLs reference insecure pages, e.g.
http://somewhere.comm/ ?
Some browsers
I am not in the office for the week 18-22 March 2002
If it's an Online Learning Support Unit / Web/ MUBSWEB/ MUBS Online matter
that requires urgent attention then please contact either Kirsteen1 or Sanjay1
who should be able to help.
Otherwise I will contact you as soon as possible on my
Hi,
I'm trying to compile the following
apache_1.3.23 mm-1.1.3 openssl-0.9.6c mod_ssl-2.8.6-1.3.23
and get SSLMutex lock 'sem' and SSLSessionCache storage 'shm:' available
on Solaris8/SPARC (sparc-sun-solaris2.8) - without any success:-(
The apache build reports always (I now've tried
Full_Name: Bert Courtin
Version: mod_ssl-2.8.6-1.3.23
OS: sparc-sun-solaris2.8
Submission from: (NULL) (195.243.113.252)
Hi,
I'm trying to compile the following
apache_1.3.23 mm-1.1.3 openssl-0.9.6c mod_ssl-2.8.6-1.3.23
and get SSLMutex lock 'sem' and SSLSessionCache storage 'shm
Hi,
I'd like the httpd-configuration options SSLMutex 'sem' and SSLSessionCache
'shm:/...' getting to work on my Solaris 8/SPARC.
Currently they are not supported/available by my apache build: httpd -L:
-
SSLMutex (mod_ssl.c)
SSL lock for handling
On Thu, Feb 07, 2002 at 04:29:45PM +0100, Bert Courtin wrote:
Questions:
--
- Are these Options for SSLMutex (sem) / SSLSessionCache (shm) available on
Solaris 8/SPARC?
yes. I never build mod_ssl on Solaris without it.
- How do I have to build mod_ssl / apache to get it work as I
On Sun, 6 Jan 2002, Rajidhar Etta wrote:
I am getting the following errors in the last few days (they never used
to come before, and configuration /Directory permissions is not
changed).
[httpdserror] [error] mod_ssl Cannot open SSLSessionCache DBM file
[httpdserror] [error] System
I can't get my SSLSessionCache working!
I am running SuSE 7.2 Pro; Apache/1.3.20 mod_ssl/2.8.4 OpenSSL/0.9.6b mod_jk
PHP/4.0.6 configured
shm is not supported so I am using dbm:
SSLSessionCache dbm:/var/log/httpd/MAIN/ssl/ssl_cache
SSLSessionCacheTimeout 300
but no cache-files get created
-response-1.0
SSLCipherSuite ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP
#and as suggested in the FAQ I used the SSLSessionCache Directive
SSLSessionCache dbm:/var/log/httpd/MAIN/ssl_cache
IE on windows platforms is satisfied now but on Macintosh it's still telling
me
Yup. There has been a report of this on HPUX 11 (or maybe 10.20, can't recall)
but I was unable to get anyone to reproduce it with debugging turned on. Could
you please recompile your server with debugging and get a back-trace on one of
these? (Contact me if you need any help doing this). It
McCaffity, Ray writes:
It runs fine on my Solaris 8 servers. With Solaris 8, you don't need mm.
I've been using it since Sol 7.
In fact I'd recommend not using it. Did you edit the /etc/system file to
match your shmem and shsem settings? I would also recommend removing these
if you did.
OS: SunOS 5.8 Generic_108528-07
Compiler: gcc 2.95.3
Software: mm-1.1.3, openssl-0.9.6a,
apache_1.3.19 and mod_ssl-2.8.3-1.3.19,
apache_1.3.20 and mod_ssl-2.8.4-1.3.20
The new shmcb option in SSLSessionCache is broken, at least on my platform.
More or less all httpd's
are
64-bit.
-Original Message-
From: Lars Hecking [mailto:[EMAIL PROTECTED]]
Sent: Thursday, May 24, 2001 11:20 AM
To: [EMAIL PROTECTED]
Subject: SSLSessionCache broken on Solaris
OS: SunOS 5.8 Generic_108528-07
Compiler: gcc 2.95.3
Software: mm-1.1.3, openssl-0.9.6a
On Thu, 24 May 2001, Lars Hecking wrote:
OS: SunOS 5.8 Generic_108528-07
Compiler: gcc 2.95.3
Software: mm-1.1.3, openssl-0.9.6a,
apache_1.3.19 and mod_ssl-2.8.3-1.3.19,
apache_1.3.20 and mod_ssl-2.8.4-1.3.20
The new shmcb option in SSLSessionCache is broken
On Fri, Mar 30, 2001, Geoff Thorpe wrote:
Hmmm.. yes, I think we can try this for 2.8.2. Let's move it out
of SSL_EXPERIMENTAL, but still do not use it by default in the
configuration. I've arranged this for us for 2.8.2. Hopefully it will
not blow away our legs ;)
Cool.
On Thu, Mar 22, 2001, David Rees wrote:
[...]
lots of good info snipped
Thanks for the lowdown on both session caches, Geoff.
It really seems to me that at this point, the shmcb cache should no longer
be part of the SSL_EXPERIMENTAL code, and even be made the default shm
cache.
Has
SSLSessionCache to use for best performance?
On Thu, Mar 22, 2001, David Rees wrote:
[...]
lots of good info snipped
Thanks for the lowdown on both session caches, Geoff.
It really seems to me that at this point, the shmcb cache
should no longer
be part of the SSL_EXPERIMENTAL
On Fri, Mar 30, 2001 at 12:06:38PM +0200, Ralf S. Engelschall wrote:
On Thu, Mar 22, 2001, David Rees wrote:
[...]
lots of good info snipped
Thanks for the lowdown on both session caches, Geoff.
It really seems to me that at this point, the shmcb cache should no longer
be part
On Fri, 30 Mar 2001, Mads Toftum wrote:
On Fri, Mar 30, 2001 at 12:06:38PM +0200, Ralf S. Engelschall wrote:
Hmmm.. yes, I think we can try this for 2.8.2. Let's move it out
of SSL_EXPERIMENTAL, but still do not use it by default in the
configuration. I've arranged this for us for 2.8.2.
/httpd.conf:
SSLSessionCache: shared memory cache not useable on this platform
I am running RedHat Linux, apache 1.3.19, modssl 2.8.1, openssl 0.9.6, mm
1.1.3, and mod_perl 1.25.
My compile options are attached, can anyone see what I am missing? Is this
platform supported with this option?
Thanks,
max
Apache/mod_ssl first, then build mod_perl as a module using
apxs?
-Dave
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Max Clark
Sent: Friday, March 23, 2001 11:09 AM
To: '[EMAIL PROTECTED]'
Subject: RE: Which SSLSessionCache to use for best
Question,
I know that if you do a bin/httpd -l it will show you the compilied modules.
Should the mm show up there?
-Max
-Original Message-
From: David Rees [mailto:[EMAIL PROTECTED]]
Sent: Friday, March 23, 2001 11:28 AM
To: [EMAIL PROTECTED]
Subject: RE: Which SSLSessionCache to use
On Fri, 23 Mar 2001, Max Clark wrote:
I know that if you do a bin/httpd -l it will show you the compilied modules.
Should the mm show up there?
No, the -l shows you Apache-specific modules, not external libraries used
to build the apache binary.
If you have your source tree still around, you
Of Max Clark
Sent: Friday, March 23, 2001 12:08 PM
To: '[EMAIL PROTECTED]'
Subject: RE: Which SSLSessionCache to use for best performance?
Thanks Dave,
I don't really understand why, but compiling and installing perl
seperately
did the trick.
-Max
# mod perl
perl Makefile.PL
: Friday, March 23, 2001 3:25 PM
To: [EMAIL PROTECTED]
Subject: RE: Which SSLSessionCache to use for best performance?
Yeah, for some reason, the mod_perl config/install wasn't passing the
EAPI_MM environment variable to Apache for configuration, so Apache didn't
know it was available for configuration
Hi all.
I have been tuning my web farm (for the past 6 months now), and have had the
typical MSIE SSL issues along the way. I stumbled across a post today
regarding the SSLSessionCache (my config is below), and my question is which
session cache will give the best performance for my system?
I
the SSLSessionCache (my config is below), and my
question is which
session cache will give the best performance for my system?
I need to support every browser possible, and my servers each
recieve about
300K page views a day. I'm running Apache 1.3.17, mod_ssl 2.8.0, openssl
0.9.6 on Linux.
I saw
Hey thanks David,
Quick follow up:
(I've attached my build instructions with the modifications for
SSL_EXPERIMENTAL below, can you check?)
Should I assume that the "shmcb" cache would look something like this?
SSLSessionCache shmcb:/u1/httpd/logs/ssl_scac
to check.
-Dave
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Max Clark
Sent: Thursday, March 22, 2001 1:58 PM
To: '[EMAIL PROTECTED]'
Subject: RE: Which SSLSessionCache to use for best performance?
Hey thanks David,
Quick follow up:
(I've
Hey there,
Warning: long mail ahead. I've been meaning to explain some details of shmcb for
a while and here it is. I can now recede further into my woodwork knowing that
I've brain dumped a little :-) If you're at all interested in this stuff please
take a squint through this. It may also help
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Geoff Thorpe
lots of good info snipped
Thanks for the lowdown on both session caches, Geoff.
It really seems to me that at this point, the shmcb cache should no longer
be part of the SSL_EXPERIMENTAL
Hi, I can't get modssl to run properly on a redhat linux (6.2 Zoot)
installation.
The problem seems to be in the SSLSessionCache configuration
directive. With it set to none, I get the following:
[Wed Mar 14 12:09:57 2001] [notice] Apache/1.3.19 (Unix) PHP/4.0.4pl1
mod_ssl/2.8.1 OpenSSL
On Fri, Jan 12, 2001, Doremus, Matthew wrote:
I have been looking through the mod_ssl v7.2.1 SHMHT code and it
appears
that each server creates it's own hash table in the allocated
shared memory.
Does this imply that when using SHMHT servers only
Hi there,
On Tue, 16 Jan 2001, Doremus, Matthew wrote:
Is this to say that an underlying memory allocator would return an address
from the malloc function of memory which had previously been allocated by
another process ? This seems to be somewhat chaotic for any memory
allocation, shared
On Sat, 13 Jan 2001, Ralf S. Engelschall wrote:
On Fri, Jan 12, 2001, Doremus, Matthew wrote:
I have been looking through the mod_ssl v7.2.1 SHMHT code and it appears
that each server creates it's own hash table in the allocated shared memory.
Does this imply that when using SHMHT
On Fri, Jan 12, 2001, Doremus, Matthew wrote:
I have been looking through the mod_ssl v7.2.1 SHMHT code and it appears
that each server creates it's own hash table in the allocated shared memory.
Does this imply that when using SHMHT servers only retrieve sessions that
they themselves have
I have been looking through the mod_ssl v7.2.1 SHMHT code and it appears
that each server creates it's own hash table in the allocated shared memory.
Does this imply that when using SHMHT servers only retrieve sessions that
they themselves have stored ?
2000
+ SSL library type: installed package (stand-alone)
Turning off SSLSessionCache results in the following behaviour with M$IE
clients connecting to it:
snip
[trace] OpenSSL: Loop: SSLv3 write key exchange A
[trace] OpenSSL: Loop: SSLv3 write server done A
[debug] OpenSSL: write 40/40 bytes
need SSL2 you could try using client IP based sticky sessions.
This may cause load imbalances though.
-Original Message-
From: Balázs Nagy
To: [EMAIL PROTECTED]
Sent: 11/5/00 8:48 PM
Subject: Re: Sharing SSLSessionCache in load balanced environment
Wohlgemuth, Michael J. wrote:
So
Haddon
x3174
Balázs Nagy [EMAIL PROTECTED]
Sent by: [EMAIL PROTECTED]
03/11/2000 04:03 PM
Please respond to modssl-users
To:[EMAIL PROTECTED]
cc:
Subject:Re: Sharing SSLSessionCache in load balanced environment
Jeffrey Burgoyne wrote:
On Thu, 2 Nov 2000, Owen
Wohlgemuth, Michael J. wrote:
So it looks like the only option for us is to route each given client to the
same webserver for all the requests. We have some Cisco LocalDirectors in
house for this purpose. Does anyone have any experience in the real world
on doing this? I'm a bit concerned
Well some form of Level 3 balancing would meet this requirement...
Of course, it's not going to be very smart...
-Original Message-
From: Owen Boyle [mailto:[EMAIL PROTECTED]]
Sent: Thursday, November 02, 2000 9:42 AM
To: [EMAIL PROTECTED]
Subject: Re: Sharing SSLSessionCache in load
I'm having a hard
time finding documentation on the following:
What SSLSessionCache
actually does
How SSLSessionCache
is configured (what port gcache is run on etc.)
Where to find
binaries for gcache
I have searched the
mailing list archives and visited a number of different websites
We have a server running mod_ssl that requires client certificates. I would
like implement some sort of load balancing for this site. I've done this
before for sites without client certificates, but it occurs to me that I
will run into problems since the SSLSessionCache will need to be shared
"Wohlgemuth, Michael J." wrote:
I would like to implement some sort of load balancing for this site.
...the SSLSessionCache will need to be shared
somehow across separate physical hosts.
This is an interesting question which we have been considering since we
are planning t
this site.
...the SSLSessionCache will need to be shared
somehow across separate physical hosts.
This is an interesting question which we have been considering since we
are planning to use load-balancing in the future.
We have a different approach and what we plan to do is to configure the
load-b
Jeffrey Burgoyne wrote:
On Thu, 2 Nov 2000, Owen Boyle wrote:
"Wohlgemuth, Michael J." wrote:
I would like to implement some sort of load balancing for this site.
...the SSLSessionCache will need to be shared
somehow across separate physical hosts.
the current prove
Full_Name: Steve Gailey
Version: mod_ssl-2.7.1-1.3.14
OS: Solaris 5.7
Submission from: (NULL) (158.152.223.68)
I have a problem with shared memory -(MM) I am compiling with
Mod Perl and MM. What I get is...
SSLSessionCache: shared memory cache not useable on this platform
I have checked
On Fri, Oct 13, 2000, Charles-Edouard Ruault wrote:
I just dowloaded and installed mod_ssl 2.7.0 and found a problem in the
handling of the SSLSessionCache configuration directive :
- first ( not a bug, just a change ) the file name expected for a
SSLSessionCache shm:file /shmht:file
I just dowloaded and installed mod_ssl 2.7.0 and found a problem in the
handling of the SSLSessionCache configuration directive :
- first (not a bug, just a change ) the file name expected for
a SSLSessionCache shm:file /shmht:file directive is now relative to apache's
document root.
- second
Full_Name: Robert Monical
Version: 2.6.2-1.3.12
OS: Solaris Intel 2.7
Submission from: (NULL) (63.225.93.238)
Documentation (perhaps configuration) only report.
Recommended fix.
Add a comment in the reference guide for SSLSessionCache that enabling the cache
may address some browser client
Full_Name: Michael F. Gremo
Version:
OS: Redhat Linux 6.0
Submission from: decatur44.midwest.net (208.235.43.54)
When I try to use https to access SSL I get the following error
in the error_log-ssl file
mod_ssl: Cannot open SSLSessionCache DBM file '/var/cache/ssl_scache' for
reading
silly when you specifiy SSLSessionCache
does it have to be an absolute path or can it be relative
to the ServerRoot??
__
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List
On Mon, Jul 26, 1999, [EMAIL PROTECTED] wrote:
silly when you specifiy SSLSessionCache
does it have to be an absolute path or can it be relative
to the ServerRoot??
Sure, the path can be also relative to ServerRoot, as it's the case for mostly
all paths in Apache (except for some Auth
are there any reasons I am not aware of not to point SSLSessionCache and
SSLMutex into /tmp, which on my machine (Solaris 2.5.1) is served from
the swap area, so it is quite a bit faster than is a real hard disk?
Concerns about attacks from local users are irrelevant in my case.
These files
On Wed, Feb 17, 1999, Roman Maeder wrote:
are there any reasons I am not aware of not to point SSLSessionCache and
SSLMutex into /tmp, which on my machine (Solaris 2.5.1) is served from
the swap area, so it is quite a bit faster than is a real hard disk?
Concerns about attacks from local
On Wed, Dec 16, 1998, Enrico Badella wrote:
Has anybody incurred into a SIGSEGV when using
SSLSessionCache dbm:/usr/local/apache/logs/ssl_gcache_data
My server crashes in SSL_accept()
Solaris-x86 2.5.1 with all significant patches applied
Apache 1.3.3 + mod_ssl-2.1.3
SSLeay 0.9.0b
) function well but the error_log file says:
[Sat Dec 5 14:04:20 1998] [error] System: Permission denied (errno: 13)
[Sat Dec 5 14:04:20 1998] [error] mod_ssl: Cannot open SSLSessionCache
DBM file `/usr/local/apache/var/run/ssl_scache' for writing (store)
(System error follows)
Waht is the problem
not exist;-) The server
(http,https) function well but the error_log file says:
[Sat Dec 5 14:04:20 1998] [error] System: Permission denied (errno: 13)
[Sat Dec 5 14:04:20 1998] [error] mod_ssl: Cannot open SSLSessionCache
DBM file `/usr/local/apache/var/run/ssl_scache' for writing (store
71 matches
Mail list logo