LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Software (https://www.linuxquestions.org/questions/linux-software-2/)
-   -   SSL not working after upgrade (https://www.linuxquestions.org/questions/linux-software-2/ssl-not-working-after-upgrade-114283/)

Manuel-H 11-09-2003 10:52 PM
SSL not working after upgrade
 
I have upgrade the following packages (Slackware 9.0)
- apache-1.3.29-i386-1.tgz (from 1.3.27)
- mod_ssl-2.8.16_1.3.29-i386-1.tgz (from 2.8.14)
- php-4.3.3-i386-1.tgz (from 4.3.2)

Initially my SSL works but it gave me "Cannot find server or DNS Error" on my IE.

I redo the cert and key using /var/adm/setup/apache/mod_ssl. Restart apache with SSL and started with "/usr/sbin/httpd -DSSL", also double check netstat, listening on port 443.

Is there anything different for the upgrade that I missed out?
Search apache website and the Linux forums that I know without success.

my ssl_engine_log
***************
[10/Nov/2003 11:45:21 25265] [info] Connection to child 0 established (server webmail.mydomain.com:443, client x.x.x.x)
[10/Nov/2003 11:45:21 25265] [info] Seeding PRNG with 1160 bytes of entropy
[10/Nov/2003 11:45:21 25265] [info] Connection: Client IP: x.x.x.x, Protocol: SSLv3, Cipher: RC4-MD5 (128/128 bits)
[10/Nov/2003 11:45:21 25265] [info] Connection to child 0 closed with standard shutdown (server webmail.mydomain.com:443, client x.x.x.x)

I have change the actual domain and the IP address for the above log.

My apache error_log
****************
[Mon Nov 10 12:48:13 2003] [notice] Apache/1.3.29 (Unix) mod_ssl/2.8.16 OpenSSL/0.9.7b PHP/4.3.3 configured -- resuming normal operations
[Mon Nov 10 12:48:13 2003] [notice] Accept mutex: sysvsem (Default: sysvsem)

Any suggestions and information will be greatly appreciated.

DavidPhillips 11-10-2003 04:31 PM
is IE the only thing with a problem?

maybe it's your security settings.

Manuel-H 11-11-2003 07:44 AM
Quote:
Originally posted by DavidPhillips
is IE the only thing with a problem?

maybe it's your security settings.
I have another server using the same setting but it works.
I have compared the settings (httpd.conf and mod_ssl.conf) almost line by line but still was not working.

DavidPhillips 11-11-2003 08:33 PM
What I mean is that if certain security settings were configured to not allow an invalid certificate on a site where the old certificate was cached maybe it would not prompt for acceptance of the certificate.


The other thing I would suggest if that's not it or doesn't make much sense, is to create a new site certificate. Also look in the log files in /var/log/httpd.

Manuel-H 11-14-2003 01:13 AM
OpenSSL version problem??
 
I have checked my /var/log/packages and found that OpenSSL/0.9.7c was installed. Somehow the apache reported "OpenSSL/0.9.7b".

I have tried to re-install the OpenSSL/0.9.7c but it said "skipping already installed".

Could this be a problem and how can I rectify it?

From my apache log file
*******************
apache/1.3.29 (Unix) mod_ssl/2.8.16 OpenSSL/0.9.7b PHP/4.3.3

DavidPhillips 11-14-2003 05:37 AM
maybe you could search for openssl...b and see where it's at. YOu should be able to remove it and restart apache.


All times are GMT -5. The time now is 01:53 PM.