[users@httpd] FIPS disabled by httpd 2.4.3

Wed, 22 Aug 2012 11:47:34 -0700 

Hi, 

My OpenSSL v1.0.1c was compiled as FIPS enabled.

# /usr/local/ssl/bin/openssl
OpenSSL> version
OpenSSL 1.0.1c-fips 10 May 2012
OpenSSL>

I did compilation httpd v2.4.2 and v2.4.3 to use the above version of openssl. 
After I started httpd v2.4.3, I noticed in the error_log that FIPS is being 
disabled. Why or is there something that I did wrong for the mod_ssl option in 
the "configure" period? Thanks.

# cat  error_log
[Wed Aug 22 14:37:24.561183 2012] [ssl:notice] [pid 23557:tid 140125173548800] 
AH01886: SSL FIPS mode disabled
[Wed Aug 22 14:37:28.603319 2012] [:notice] [pid 23557:tid 140125173548800] 
ModSecurity for Apache/2.6.7 (http://www.modsecurity.org/) configured.
[Wed Aug 22 14:37:28.603331 2012] [:notice] [pid 23557:tid 140125173548800] 
ModSecurity: APR compiled version="1.4.6"; loaded version="1.4.6"
[Wed Aug 22 14:37:28.603336 2012] [:notice] [pid 23557:tid 140125173548800] 
ModSecurity: PCRE compiled version="7.8 "; loaded version="7.8 2008-09-05"
[Wed Aug 22 14:37:28.603340 2012] [:notice] [pid 23557:tid 140125173548800] 
ModSecurity: LIBXML compiled version="2.7.6"
[Wed Aug 22 14:37:28.603343 2012] [:notice] [pid 23557:tid 140125173548800] 
Original server signature: Apache/2.4.3 (Unix) OpenSSL/1.0.1c-fips
[Wed Aug 22 14:37:28.686133 2012] [ssl:notice] [pid 23568:tid 140125173548800] 
AH01886: SSL FIPS mode disabled
[Wed Aug 22 14:37:28.724620 2012] [lbmethod_heartbeat:notice] [pid 23568:tid 
140125173548800] AH02282: No slotmem from mod_heartmonitor
[Wed Aug 22 14:37:29.011086 2012] [mpm_worker:notice] [pid 23568:tid 
140125173548800] AH00292: Apache/2.4.3 (Unix) OpenSSL/1.0.1c-fips 
rproxynj.fifthandpacific.com configured -- resuming normal operations
[Wed Aug 22 14:37:29.011208 2012] [core:notice] [pid 23568:tid 140125173548800] 
AH00094: Command line: '/opt/apache2.4.3/bin/httpd'


Ryan Jiang



This message (including any attachments) is intended
solely for the specific individual(s) or entity(ies) named
above, and may contain legally privileged and
confidential information. If you are not the intended 
recipient, please notify the sender immediately by 
replying to this message and then delete it.
Any disclosure, copying, or distribution of this message,
or the taking of any action based on it, by other than the
intended recipient, is strictly prohibited.


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

Reply via email to