RE: Startup Script
your problem might be the ldconfig settings, for your system, they might not be locating the libs prperly for the server to find them and function. try updating ldso with a call to ldconfig, if thats the proper solaris way of doing things, with the lib paths required, something like a ldconfig -R -v (paths) which is the bsdish way. It's been awhile since I admined a sun system and my sun box is bsd'ed, so I can't check at present for the proper syntax and params for you, but this should give you a clue... Thanks, Ron DuFresne On Wed, 30 Oct 2002, Lawrence Cole wrote: > Boyle, > > Thank you for your suggestions. > > Adding "LD_LIBRARY_PATH=/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib" > to the startup script does not help. > > Sourcing root's .profile before running the "apachectl startssl" command > does not help. The LD_LIBRARY_PATH is set in the .profile. > > So the last thing to try are the -R and -L compile-time option pairs for > each library. I have a rookie question to ask. Where do I use these? > I can't use them with the .configure or make commands. Do I need to > edit the Makefile? Can you give me an example? > > Regards, > > Lawrence > > > -Original Message- > From: [EMAIL PROTECTED] > [mailto:owner-modssl-users@;modssl.org] On Behalf Of Boyle Owen > Sent: Wednesday, October 30, 2002 2:21 AM > To: [EMAIL PROTECTED] > Subject: RE: Startup Script > > > Quick fix is to put in the startup script: > > LD_LIBRARY_PATH=/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib > > before it tries to start apache.. > > Better fix is to recompile apache with the additional compile-time > options: "-L/usr/openwin/lib -R/usr/openwin/lib" etc. (one pair for each > lib). This should build the paths to the libs into the binary and then > you don't need LD_LIBRARY_PATH at all. > > -Original Message- > From: Lawrence Cole [mailto:lmcole@;cisco.com] > Sent: Mittwoch, 30. Oktober 2002 04:52 > To: [EMAIL PROTECTED] > Subject: Startup Script > > > Greetings everyone, > > I realize this situation has come up before, but none of the suggestions > I have seen have worked for me. > > I have created an Apache 1.3.26 / mod_ssl 2.8.10 server. No problems > creating it, and no problems starting from the command line. I am > however, unable to start automatically at boot using a script in the > rc3.d directory. When I try to start it automatically using: > > #!/bin/sh > # > # Start SSL-Aware Apache http daemon > # > echo "Start SSL-Aware Apache httpd" > /opt/apache/bin/apachectl startssl > > > I get the following error: > > ld.so.1: /opt/apache/bin/httpd: fatal: libexpat.so.0: open failed: No > such file or directory Killed /opt/apache/bin/apachectl startssl: httpd > could not be started > > Once the system is booted up the LD_LIBRARY_PATH is > "/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib", and I can run > "/opt/apache/bin/apachectl startssl" just fine. For automation reasons, > I need to boot at startup. Any suggestions? > > Regards, > > Lawrence > > This message is for the named person's use only. It may contain > confidential, proprietary or legally privileged information. No > confidentiality or privilege is waived or lost by any mistransmission. > If you receive this message in error, please notify the sender urgently > and then immediately delete the message and any copies of it from your > system. Please also immediately destroy any hardcopies of the message. > You must not, directly or indirectly, use, disclose, distribute, print, > or copy any part of this message if you are not the intended recipient. > The sender's company reserves the right to monitor all e-mail > communications through their networks. Any views expressed in this > message are those of the individual sender, except where the message > states otherwise and the sender is authorised to state them to be the > views of the sender's company. > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] > > __ > Apache Interface to OpenSSL (mod_ssl) www.modssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager[EMAIL PROTECTED] > -- ~~ admin & senior security consultant: sysinfo.com http://sysinfo.com "Cutting the space budget really restores my faith in humanity. It eliminates dreams, goals, and ideals and lets us get straight to the business of hate, debauchery, and self-annihilation." -- Johnny Hart testing, only testing, and damn good at it too! __ Apache Interface to OpenSSL
RE: Startup Script
Boyle, Thank you for your suggestions. Adding "LD_LIBRARY_PATH=/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib" to the startup script does not help. Sourcing root's .profile before running the "apachectl startssl" command does not help. The LD_LIBRARY_PATH is set in the .profile. So the last thing to try are the -R and -L compile-time option pairs for each library. I have a rookie question to ask. Where do I use these? I can't use them with the .configure or make commands. Do I need to edit the Makefile? Can you give me an example? Regards, Lawrence -Original Message- From: [EMAIL PROTECTED] [mailto:owner-modssl-users@;modssl.org] On Behalf Of Boyle Owen Sent: Wednesday, October 30, 2002 2:21 AM To: [EMAIL PROTECTED] Subject: RE: Startup Script Quick fix is to put in the startup script: LD_LIBRARY_PATH=/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib before it tries to start apache.. Better fix is to recompile apache with the additional compile-time options: "-L/usr/openwin/lib -R/usr/openwin/lib" etc. (one pair for each lib). This should build the paths to the libs into the binary and then you don't need LD_LIBRARY_PATH at all. -Original Message- From: Lawrence Cole [mailto:lmcole@;cisco.com] Sent: Mittwoch, 30. Oktober 2002 04:52 To: [EMAIL PROTECTED] Subject: Startup Script Greetings everyone, I realize this situation has come up before, but none of the suggestions I have seen have worked for me. I have created an Apache 1.3.26 / mod_ssl 2.8.10 server. No problems creating it, and no problems starting from the command line. I am however, unable to start automatically at boot using a script in the rc3.d directory. When I try to start it automatically using: #!/bin/sh # # Start SSL-Aware Apache http daemon # echo "Start SSL-Aware Apache httpd" /opt/apache/bin/apachectl startssl I get the following error: ld.so.1: /opt/apache/bin/httpd: fatal: libexpat.so.0: open failed: No such file or directory Killed /opt/apache/bin/apachectl startssl: httpd could not be started Once the system is booted up the LD_LIBRARY_PATH is "/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib", and I can run "/opt/apache/bin/apachectl startssl" just fine. For automation reasons, I need to boot at startup. Any suggestions? Regards, Lawrence This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
RE: Startup Script
It's the last script to run in the directory. It's an S99 file. I'm running Solaris 8 with the latest "patch cluster" from Sun. -Original Message- From: [EMAIL PROTECTED] [mailto:owner-modssl-users@;modssl.org] On Behalf Of Rick Widmer Sent: Tuesday, October 29, 2002 9:16 PM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: Re: Startup Script At 08:52 PM 10/29/02 -0700, Lawrence Cole wrote: > >ld.so.1: /opt/apache/bin/httpd: fatal: libexpat.so.0: open failed: No >such >file or directory >Killed >/opt/apache/bin/apachectl startssl: httpd could not be started >Once the system is booted up the LD_LIBRARY_PATH is >"/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib", and I can run >"/opt/apache/bin/apachectl startssl" just fine. For automation reasons, I >need to boot at startup. Any suggestions? > When in the startup sequence are you starting Apache? It needs to be very late in the process. The only thing I do AFTER starting apache in myh startup scripts is run a process that assigns the ailias IP addresses to the server. Without knowing what OS you are using I can't make any suggestions on exactly how to fix it, but I'm sure it is a matter of starting Apache late in the process. Rick __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED] __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
apachectl startssl - error
Hi, i am a newbie to apache with ssl. Under Solaris 8 I installed openssl 0.9.6g in /usr/local/openssl In Apache 2.0.43 i did: configure --enable-ssl --with-ssl=/usr/local/openssl --> No errors. make --> No errors. make install --> No errors. I generated a .cert and .key file and copied them to /usr/local/openssl/certs and /usr/local/openssl/private. Then I tried to start it with: apachectl startssl and I get the following message: [Wed Oct 30 19:31:59 2002] [crit] [Wed Oct 30 19:31:59 2002] \ file vhost.c, line 232, assertion "rv == APR_SUCCESS" failed Abort - core dumped No error logs were created. Any ideas?? Please help. Thank you. Bye, Olli. __ Angst vor Viren? Nicht bei WEB.DE FreeMail. Hier konnen Sie jeden Dateianhang auf Viren prufen. http://freemail.web.de/?mc=021157 __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Re: Invalid method in request \x80\x80\x01\x03\x01
On Wednesday 30 Oct 2002 1:14 pm, Roger Rosenblum wrote: > Greetings, > > I'm having problems getting SSL to work with Apache at the moment. "SSLEngine on" Your (virtual) host is expecting to talk clear HTTP to the client, and you need to tell it to talk HTTPS instead. Ie. on the server, you're seeing it try to interpret the SSL/TLS handshake data from the client as though it was a clear-text HTTP request, ie; > The message showing up the the error_log is: > Invalid method in request \x80\x80\x01\x03\x01 and your SSL/TLS client is getting a clear-text ("bad request") response from the server and trying to interpret it as SSL/TLS handshake data. > and openssl reports "unknown protocol:s23_clnt.c:460:" [snip] > SSL_connect:SSLv2/v3 write client hello A > read from 0015E368 [00165A68] (7 bytes => 7 (0x7)) > - 3c 21 44 4f 43 54 59 http://www.geoffthorpe.net/ __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]
Invalid method in request \x80\x80\x01\x03\x01
Greetings, I'm having problems getting SSL to work with Apache at the moment. The message showing up the the error_log is: Invalid method in request \x80\x80\x01\x03\x01 and openssl reports "unknown protocol:s23_clnt.c:460:" Situation: = Sparc Solaris 9, Apache 1.3.27 mod_ssl-2.18.12 for apache 1.3.27 openssl-0.9.6.g mm-1.1.3 perl 5.8.0 openldap-2.0.25 mod_fastcgi-2.2.12 mod_perl-1.27 All statically compiled with no visible errors from the install. I created an SSL key and signed a test certificate and installed them in the /usr/lcoal/apache/conf/ssl.crt/server.crt /usr/local/apache/conf/ssl.key/server.key But I get errors trying to connect to it either as https:// and also with the openssl command itself: * ../bin/openssl s_client -connect localhost:443 -state -debug CONNECTED(0003) SSL_connect:before/connect initialization write to 0015E368 [00160508] (130 bytes => 130 (0x82)) - 80 80 01 03 01 00 57 00-00 00 20 00 00 16 00 00 ..W... . 0010 - 13 00 00 0a 07 00 c0 00-00 66 00 00 07 00 00 05 .f.. 0020 - 00 00 04 05 00 80 03 00-80 01 00 80 08 00 80 00 0030 - 00 65 00 00 64 00 00 63-00 00 62 00 00 61 00 00 .e..d..c..b..a.. 0040 - 60 00 00 15 00 00 12 00-00 09 06 00 40 00 00 14 `...@... 0050 - 00 00 11 00 00 08 00 00-06 00 00 03 04 00 80 02 0060 - 00 80 92 22 27 d6 22 a7-d0 f7 1b 6f 47 89 7e 64 ..."'."oG.~d 0070 - 2a be ef ca 6d 31 8c 83-7c 91 84 a4 29 17 24 f1 *...m1..|...).$. 0080 - 9b 51 .Q SSL_connect:SSLv2/v3 write client hello A read from 0015E368 [00165A68] (7 bytes => 7 (0x7)) - 3c 21 44 4f 43 54 59
RE: Startup Script
Quick fix is to put in the startup script: LD_LIBRARY_PATH=/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib before it tries to start apache.. Better fix is to recompile apache with the additional compile-time options: "-L/usr/openwin/lib -R/usr/openwin/lib" etc. (one pair for each lib). This should build the paths to the libs into the binary and then you don't need LD_LIBRARY_PATH at all. -Original Message- From: Lawrence Cole [mailto:lmcole@;cisco.com] Sent: Mittwoch, 30. Oktober 2002 04:52 To: [EMAIL PROTECTED] Subject: Startup Script Greetings everyone, I realize this situation has come up before, but none of the suggestions I have seen have worked for me. I have created an Apache 1.3.26 / mod_ssl 2.8.10 server. No problems creating it, and no problems starting from the command line. I am however, unable to start automatically at boot using a script in the rc3.d directory. When I try to start it automatically using: #!/bin/sh # # Start SSL-Aware Apache http daemon # echo "Start SSL-Aware Apache httpd" /opt/apache/bin/apachectl startssl I get the following error: ld.so.1: /opt/apache/bin/httpd: fatal: libexpat.so.0: open failed: No such file or directory Killed /opt/apache/bin/apachectl startssl: httpd could not be started Once the system is booted up the LD_LIBRARY_PATH is "/lib:/usr/lib:/usr/local/lib:/usr/openwin/lib", and I can run "/opt/apache/bin/apachectl startssl" just fine. For automation reasons, I need to boot at startup. Any suggestions? Regards, Lawrence This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. __ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager[EMAIL PROTECTED]