On Mon Sep 24, 2001 at 10:04:17PM +0200, Oden Eriksson wrote:

> > > > > WARNING: do not upgrade to apache-1.3.20 on Mandrake 7.1 if you are
> > > > > running mod_ssl.
> > > > >
> > > > > After the upgrade, apache refuses to load mod_ssl due to unresolved
> > > > > symbols. I tried to rebuild a mod_ssl from source but it fails with
> > > > > somethig like: "apache lacks EAPI (Extended API)".
> > > > >
> > > > > Any hints to get SSL back online?
> > > >
> > > > We're looking into this. The EAPI problem that you mention is also
> > > > preventing us from building mod_ssl, which is making it a little
> > > > difficult.
> > >
> > > Could you simply rebuild the rpm packages on the named machine?
> >
> > Not yet. =) The lacking EAPI error causes builds to fail here as
> > well.
>
> Is it possible to upgrade OpenSSL to a newer version?

Preferrably not. If we do this, we need to update everything that
depends on openssl... openssh, etc. I'm not ready to do this (and I
don't think it should be necessary).

> > > I don't know the history behind this, maybe OpenSSL is upgraded and
> > > that's why?
> >
> > The openssl for 7.1 is 0.9.5a-3.1mdk. If this newer mod_ssl doesn't
> > work with this version of openssl, I haven't heard about it.
>
> What I do know is that the mod_ssl version has to match the apache version,
> these two packages has to be compiled against the 0.9.5a-3.1mdk devel package
> when apache has been patched with the right EAPI patch. It is also somewhat a
> good idea that the latest mm is installed too. (guess this is no news to you
> but...)

Well, apache 1.3.20 was built on a system with openssl 0.9.5a. This
should not matter (I don't think there are any deps on openssl within
apache itself). What matters is mod_ssl's correlation to apache and
openssl. It should work witn 0.9.5a (I haven't heard that it is
required to use 0.9.6+). The problem seems to be with mod_ssl
relating to apache, but the strange thing is the version of mod_ssl
I'm trying to build (2.8.4) is what is used in the 7.2/8.0 updates
which works fine. So there is something else that is causing the
problem.

> I usally make this manually as suggested in the mod_ssl docs.

-- 
vdanenmandrakesoft.com, OpenPGP key available on www.keyserver.net
1024D/FE6F2AFD   88D8 0D23 8D4B 3407 5BD7  66F9 2043 D0E5 FE6F 2AFD
 - Danen Consulting Services    www.danen.net, www.freezer-burn.org
 - MandrakeSoft, Inc. Security  www.linux-mandrake.com
Current Linux kernel 2.4.8-26mdk uptime: 15 hours 42 minutes.

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (GNU/Linux) Comment: For info see http://www.gnupg.org

iD8DBQE7r7ajIEPQ5f5vKv0RApjxAKC3Igz+YZJeMVgj800jBQglNjb4xQCeO5Fm 7VLqH9mL69VuMtmpBLKgzhE= =Ji3b -----END PGP SIGNATURE-----

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]