Hi everyone,

I have been using Apache for a while but this is the first time I installed Apache 1.3.33 and OpenSSL 0.9.7d and I have got into this file location problem resulting in compilation errors when running "make" in Apache.

Can anyone please give me a hint of what I have done wrong?

Thanks in advance.

*** OPENSSL

#cd /usr/src
#gunzip < /home/openssl-0.9.7d.tar.gz | tar xvf -
#cd /usr/src/openssl-0.9.7d
#./config --prefix=/usr/local
#make
#make test
#make install

*** APACHE + SSL

#cd /usr/src
#gunzip < /home/apache_1.3.33.tar.gz | tar xvf -
#cd /usr/src/apache_1.3.33
#gunzip < /home/u91067/apache_1.3.33+ssl_1.55.tar.gz | tar xvf -
#patch -p1 < SSLpatch

SSL related variables in a file called Configuration located in /usr/src/apache_1.3.33/src

SSL_BASE=/usr/src/openssl-0.9.7d <== Anything wrong here???
SSL_INCLUDE= -I$(SSL_BASE)/include
SSL_CFLAGS= -DAPACHE_SSL
SSL_LIB_DIR=/usr/local/ssl/lib <== Anything wrong here???
SSL_LIBS= -L$(SSL_LIB_DIR) -lssl -lcrypto
SSL_APP_DIR=/usr/local/ssl/bin
SSL_APP=/usr/local/ssl/bin/openssl

*** APACHE

#cd /usr/src/apache_1.3.33
#./configure
#make
...
gcc -DLINUX=22 -DTARGET=\"httpsd\" -DHAVE_SET_DUMPABLE -DUSE_HSREGEX -DNO_DL_NEEDED -DAPACHE_SSL './apaci' -o httpsd buildmark.o modules.o modules/standard/libstandard.a modules/ssl/libssl.a main/libmain.a ./os/unix/libos.a ap/libap.a regex/libregex.a -lm -lcrypt -lexpat -L/usr/local/ssl/lib -lssl -lcrypto
modules/ssl/libssl.a(apache_ssl.o): In function 'InitCRL':
apache_ssl.o(.text+0x206d): undefined reference to 'X509_STORE_set_flags'
collect2: Id returned 1 exit status
make[2]: *** [target_static] Error 1
make[2]: Leaving directory '/usr/src/apache_1.3.33/src'
make[1]: *** [target_static] Error 2
make[1]: Leaving directory '/usr/src/apache_1.3.33'
make: *** [build] Error 2

Here is what I do whenever I want to compile my apache+ssl and never had a problem with that:
First of all I extract all the tarballs under the same directory (i.e. /tmp)
Configure, install openssl in /usr/local/ssl (Btw use the latest version 0.9.7e for security reasons):
Configure mod-ssl (http://www.modssl.org). Also pick the latest version.
Finally compile, install apache:As you see, for the apache configure you need the sources of openssl and you must also provide a prefix for apache to be installed.

Thanks for your suggestion.

I am actually not installing mod_ssl but OPENSSL, Apache and Apache+SSL.
I was under the impression that this is different from mod_ssl?!

Anyway, I got around the install by not putting the prefix in the OPENSSL installation just ./config

Now, my problem is once I finished running "make install" in the Apache installation,
when I entered "/usr/local/apache/bin/httpsdctl start",
it can back and say "cannot start".

I looked at /usr/local/apache/logs/httpsd_error_log and it says:
mmddyy [crit] Required SSLCacheServerPort missing

When I looked at /usr/local/apache/conf/httpsd.conf, the file does not even contain any SSL directive.
It appears to me that the httpsd.conf file contains just normal Apache config without the SSL configuration.

Should I replace the existing httpsd.conf file with something from SSLconf?

I am not a newbie to Apache but this SSL configuration is surely not straightforward to me!

Can any security guru please shed some light on my problem?