If the tarball still exisits upon the server, the one would gain a clue
via ls;
openssl-engine-0.9.6b.tar.gz
If the tarball was rm'ed but the sources exist, again a search would tell;
/usr/local/src/installed/web/openssl-engine-0.9.6b/apps
/usr/local/src/installed/web/openssl-engine-0.9.6b/apps/apps.c
/usr/local/src/installed/web/openssl-engine-0.9.6b/apps/apps.h
/usr/local/src/installed/web/openssl-engine-0.9.6b/apps/apps.o
/usr/local/src/installed/web/openssl-engine-0.9.6b/apps/app_rand.c
/usr/local/src/installed/web/openssl-engine-0.9.6b/apps/app_rand.o
etc...
else one might get a clue via the ssl install location perhaps looking at
the include files I'm guessing here;
/usr/local/ssl/include/openssl/engine.h
I'm thinking if the engine version was not installed this header file
might be lacking, folks without the engine version will have to confirm.
of course, much of this stuff might well and should be missing from a
running exposed system. but, I'm also guessing there are differences in
the sizes of the binaries that are generated, suspecting the engine
version to be somewhat larger. I'm not going to take the time here to
build a non-engine version to verify, I'll leave that to someone else.
Additionally this might well give a clue, the maintainers of the openssl
code would beable to verify;
strings openssl|grep engine
Thanks,
Ron DuFresne
On Fri, 8 Mar 2002, Amir Abiri wrote:
>
> From: "lgazis" <[EMAIL PROTECTED]>
>
>
> > I'm not sure how you tell, from the Apache end, whether Apache was built
> > with the engine version of OpenSSL or not.
>
> httpd -V ?
>
>
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
admin & senior security consultant: sysinfo.com
http://sysinfo.com
"Cutting the space budget really restores my faith in humanity. It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation."
-- Johnny Hart
testing, only testing, and damn good at it too!
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
