Re: OpenSSL 1.0.1g Upgarade Issue
On Thu, 10 Apr 2014 11:35:40 +0200 Jakob Bohm wrote: > On 4/10/2014 6:23 AM, Dedhia, Pratik wrote: > > Hi Team, > > > > I’m trying to upgrade OpenSSL to 1.0.1g version from 1.0.1f version > > to resolve security issue but getting error while restarting Apache > > server. > > > > Below are the steps of OpenSSL upgradation: > > > > 1.Extracted the tarball downloaded from OpenSSL site using command > > “tar xzvf openssl-1.0.1g.tar.gz” > > > > 2.Changed directory to openssl-1.0.1g > > > > 3.Executed “./config --prefix=/usr/local/application/openssl/ > > enable-shared –fPIC” command to compile openssl > > > > 4.Executed make clean command after successful execution of step 3 > > > > 5.Executed make command > > > > 6.Executed make install command > > > > 7.Changed directory to extracted httpd-2.4.7 > > > > 8.Executed “./configure --prefix=/usr/local/application/apache > > --enable-rewrite --enable-proxy --enable-so > > --with-ssl=/usr/local/application/openssl --enable-ssl > > --with-pcre=/usr/local/application/pcre” to compile apache with > > upgraded OpenSSL. > > > > 9.Executed make clean command after successful execution of step 8 > > > > 10.Executed make command > > > > 11.Executed make install command > > > > 12.After successful execution of above step tried to stop the apache > > with “sudo /usr/local/application/apache/bin/apachectl stop” command > > > > On execution of step 12 getting below error: > > > > httpd: Syntax error on line 125 of > > /usr/local/application/apache/conf/httpd.conf: Cannot load > > modules/mod_ssl.so into server: libssl.so.1.0.0: cannot open shared > > object file: No such file or directory > > > > "make install" (step 11) should have created that file > (libssl.so.1.0.0) in /usr/local/lib otherwise you don't have the fixed > code. > > Please check that your user account has write access > to /usr/local/lib, or that make install was run as root (either > should do it). > > > Enjoy > > Jakob IF you install openssl into prefix=/usr/local/application/openssl, the lib should not end up in /usr/local/lib, it will be in /usr/local/application/openssl/lib However. This error is complaining about missing module in Apache. You should also switch the order of 11, 12... Do 12 first, then 11. (actually maybe good to do 12 before 1). At this point you might need to a) reboot or b) kill the httpd processes.Installing on top of running server process can cause weird and potentially risky stuff to happen, especially for people visiting the web site. IT's just a good idea to shut it off before install. Waitman Gobble __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
Re: OpenSSL 1.0.1g Upgarade Issue
On 4/10/2014 6:23 AM, Dedhia, Pratik wrote: Hi Team, I’m trying to upgrade OpenSSL to 1.0.1g version from 1.0.1f version to resolve security issue but getting error while restarting Apache server. Below are the steps of OpenSSL upgradation: 1.Extracted the tarball downloaded from OpenSSL site using command “tar xzvf openssl-1.0.1g.tar.gz” 2.Changed directory to openssl-1.0.1g 3.Executed “./config --prefix=/usr/local/application/openssl/ enable-shared –fPIC” command to compile openssl 4.Executed make clean command after successful execution of step 3 5.Executed make command 6.Executed make install command 7.Changed directory to extracted httpd-2.4.7 8.Executed “./configure --prefix=/usr/local/application/apache --enable-rewrite --enable-proxy --enable-so --with-ssl=/usr/local/application/openssl --enable-ssl --with-pcre=/usr/local/application/pcre” to compile apache with upgraded OpenSSL. 9.Executed make clean command after successful execution of step 8 10.Executed make command 11.Executed make install command 12.After successful execution of above step tried to stop the apache with “sudo /usr/local/application/apache/bin/apachectl stop” command On execution of step 12 getting below error: httpd: Syntax error on line 125 of /usr/local/application/apache/conf/httpd.conf: Cannot load modules/mod_ssl.so into server: libssl.so.1.0.0: cannot open shared object file: No such file or directory "make install" (step 11) should have created that file (libssl.so.1.0.0) in /usr/local/lib otherwise you don't have the fixed code. Please check that your user account has write access to /usr/local/lib, or that make install was run as root (either should do it). Enjoy Jakob -- Jakob Bohm, CIO, Partner, WiseMo A/S. http://www.wisemo.com Transformervej 29, 2730 Herlev, Denmark. Direct +45 31 13 16 10 This public discussion message is non-binding and may contain errors. WiseMo - Remote Service Management for PCs, Phones and Embedded __ OpenSSL Project http://www.openssl.org User Support Mailing Listopenssl-users@openssl.org Automated List Manager majord...@openssl.org
OpenSSL 1.0.1g Upgarade Issue
Hi Team, I'm trying to upgrade OpenSSL to 1.0.1g version from 1.0.1f version to resolve security issue but getting error while restarting Apache server. Below are the steps of OpenSSL upgradation: 1. Extracted the tarball downloaded from OpenSSL site using command "tar xzvf openssl-1.0.1g.tar.gz" 2. Changed directory to openssl-1.0.1g 3. Executed "./config --prefix=/usr/local/application/openssl/ enable-shared -fPIC" command to compile openssl 4. Executed make clean command after successful execution of step 3 5. Executed make command 6. Executed make install command 7. Changed directory to extracted httpd-2.4.7 8. Executed "./configure --prefix=/usr/local/application/apache --enable-rewrite --enable-proxy --enable-so --with-ssl=/usr/local/application/openssl --enable-ssl --with-pcre=/usr/local/application/pcre" to compile apache with upgraded OpenSSL. 9. Executed make clean command after successful execution of step 8 10. Executed make command 11. Executed make install command 12. After successful execution of above step tried to stop the apache with "sudo /usr/local/application/apache/bin/apachectl stop" command On execution of step 12 getting below error: httpd: Syntax error on line 125 of /usr/local/application/apache/conf/httpd.conf: Cannot load modules/mod_ssl.so into server: libssl.so.1.0.0: cannot open shared object file: No such file or directory Please help for above issue. Thanks, Pratik Dedhia O (91) 22-41634197 M (91)9870919056 FIRST DATA - CONFIDENTIAL COMMUNICATION === “All rights reserved. No part of this email or any documents attached may be reproduced or transmitted, by any form or by any means, without the prior written consent of First Data.” This e-mail and any files transmitted with it are confidential and are intended solely for the use of the individual or entity to whom it is addressed. If you are not the intended recipient be advised that you have received this e-mail in error and that any use, dissemination, forwarding, printing, or copying of this e-mail and any file attachments is strictly prohibited. If you have received this e-mail in error, please destroy the original transmission (including any attachments) and immediately notify the sender by telephone at +612 9959 7333 or by reply e-mail. First Data takes all care to ensure that data transmitted is free from viruses or other faults/defects but does not represent or warrant that this communication or any attached file(s) is free from such computer viruses or other faults or defects. First Data will not be liable to the recipient or any other person for any loss or damage (including direct, consequential or economic loss or damage) however caused which may result directly or indirectly from the receipt or use of this communication or any files attached to it. It is the responsibility of any person using this communication or opening any files attached to this communication to implement appropriate measure to ensure the integrity of their environment is maintained.