install of sunfreeware apache with openssl

From: Chris Hoogendyk (choogend@library.umass.edu)
Date: Mon Dec 29 2003 - 10:49:06 EST

• Next message: Joe Hege: "Configuring and starting SMC"
• Previous message: Michael Keplinger: "Sendmail issue - can't find info on error"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I had a server hardware failure Christmas night. No service contracts
due to severe budget cuts in recent years. So much for holiday time off.

Anyway, I figured the fastest way to get the service back up was to
install on another server and recover data from a backup tape. This is
an ezproxy server that provides off-campus access to library resources.
The ezproxy connects to an external cgi-script running on Apache with
ssl for authentication. I already had ssh and openssl running on this
server, but Apache was not compiled with mod-ssl. So, off to SunFreeware
as a first attempt. Luck. I found Apache-1.3.27-sol8-sparc-local
compiled with mod-ssl. It wanted Openssl-0.9.6i, and I had
Openssl-0.9.6g. So I downloaded that too. It also wanted expat-1.95.5
and I had an older version.

So, after recovering all I could from tape backups onto this other
server, I did

pkgadd -d apache-1.3.27-sol8-sparc-local
pkgadd -d expat-1.95.5-sol8-sparc-local
pkgrm SMCossl <-- to remove 0.9.6g
pkgadd -d openssl-0.9.6i-sol8-sparc-local

then I moved over all my configuration information from httpd.conf
(vi'ing the new one and cutting and pasting from both the existing on
this server and the recovered from the failed server)

I also copied mod_coldfusion.so and libperl.so from my old apache
location to the new one:

cp -p /usr/apache/libexec/mod_coldfusion.so /usr/local/apache/libexec
cp -p /usr/apache/libexec/libperl.so /usr/local/apache/libexec

(these were also listed in the LoadModule and AddModule sections of
httpd.conf in order after libssl.so)

so, at this point I tried

/usr/local/apache/bin# ./apachectl configtest
Syntax error on line 241 of /usr/local/apache/conf/httpd.conf:
Cannot load /usr/local/apache/libexec/libssl.so into server: ld.so.1:
/usr/local/apache/bin/httpd: fatal: libssl.so.0.9.6: open failed: No
such file or directory

I found libssl.so.0.9.6 in /usr/local/ssl/libexec and copied it to
/usr/local/apache/libexec

then I got

/usr/local/apache/bin/apachectl configtest
Syntax error on line 241 of /usr/local/apache/conf/httpd.conf:
Cannot load /usr/local/apache/libexec/libssl.so into server: ld.so.1:
/usr/local/apache/bin/httpd: fatal: libcrypto.so.0.9.6: open failed: No
such file or directory

I've tried several times to resolve this and cannot.

At present, I have:

/usr/local/apache/libexec# ls -l lib*
-rw-r--r-- 1 bin bin 1479308 Apr 5 2003 libcrypto.a
lrwxrwxrwx 1 root other 14 Dec 29 10:21 libcrypto.so ->
libcrypto.so.0
lrwxrwxrwx 1 root other 18 Dec 29 10:21 libcrypto.so.0 ->
libcrypto.so.0.9.6
-r-xr-xr-x 1 bin bin 1680952 Apr 5 2003 libcrypto.so.0.9.6
-r-xr-xr-x 1 bin bin 226996 Sep 18 2002 libperl.so
-rwxr-xr-x 1 bin bin 107416 Nov 8 2002 libproxy.so
-rw-r--r-- 1 bin bin 291852 Apr 5 2003 libssl.a
lrwxrwxrwx 1 root other 11 Dec 29 10:22 libssl.so ->
libssl.so.0
lrwxrwxrwx 1 root other 15 Dec 29 10:21 libssl.so.0 ->
libssl.so.0.9.6
-r-xr-xr-x 1 bin bin 916148 Apr 5 2003 libssl.so.0.9.6

            (which mirrors /usr/local/ssl/lib exactly)

/usr/local/apache/libexec# cd ../bin

/usr/local/apache/bin# ./apachectl configtest
Syntax error on line 241 of /usr/local/apache/conf/httpd.conf:
Cannot load /usr/local/apache/libexec/libssl.so into server: ld.so.1:
/usr/local/apache/bin/httpd: fatal: libcrypto.so.0.9.6: open failed: No
such file or directory

I have not stopped the version of Apache running from
/etc/apache/httpd.conf and /usr/apache. It should be independent, it is
not running mod_ssl, and I planned on stopping it when I got the
configtest successfull on the version of Apache installed in
/usr/local/apache.

EZProxy is running fine. It redirects on-campus users to their resources
and redirects off-campus users to authenticate on the external script.
That process fails because it depends on Apache and ssl.

I also have not restarted sshd since I uninstalled and reinstalled
open-ssl. So my connections to this new server setup are running off
memory at present. I thought I would deal with that when I got the
Apache thing straightened out. It also helps that I'm at work today, so
I don't have to worry about losing my remote connection due to my
messing around.

Sorry this is so long. I just wanted to provide enough information to
see what was happening.

TIA

---------------

Chris Hoogendyk

-
   O__ ---- Network Specialist & Unix Systems Administrator
  c/ /'_ --- Library Information Systems & Technology Services
 (*) \(*) -- W.E.B. Du Bois Library
~~~~~~~~~~ - University of Massachusetts, Amherst

<choogend@library.umass.edu>

---------------
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers

• Next message: Joe Hege: "Configuring and starting SMC"
• Previous message: Michael Keplinger: "Sendmail issue - can't find info on error"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:27:44 EDT