[Pkg-openssl-devel] libssl1.0.0 - apache2
Thorsten Dworak
thorsten.dworak at unicepta.de
Fri Mar 1 12:25:27 UTC 2013
Hi,
System:
# cat /etc/debian_version
7.0
# cat /etc/apt/sources.list
deb ftp://mirror.netcologne.de/debian/ wheezy main non-free contrib
deb ftp://mirror.netcologne.de/debian/ wheezy-proposed-updates main non-free contrib
deb ftp://mirror.netcologne.de/debian-security/ wheezy/updates main non-free contrib
# apache2ctl -V
Server version: Apache/2.2.22 (Debian)
Server built: Oct 30 2012 23:29:53
Server's Module Magic Number: 20051115:30
Server loaded: APR 1.4.6, APR-Util 1.4.1
Compiled using: APR 1.4.6, APR-Util 1.4.1
Architecture: 64-bit
Server MPM: Worker
threaded: yes (fixed thread count)
forked: yes (variable process count)
Server compiled with....
-D APACHE_MPM_DIR="server/mpm/worker"
-D APR_HAS_SENDFILE
-D APR_HAS_MMAP
-D APR_HAVE_IPV6 (IPv4-mapped addresses enabled)
-D APR_USE_SYSVSEM_SERIALIZE
-D APR_USE_PTHREAD_SERIALIZE
-D APR_HAS_OTHER_CHILD
-D AP_HAVE_RELIABLE_PIPED_LOGS
-D DYNAMIC_MODULE_LIMIT=128
-D HTTPD_ROOT="/etc/apache2"
-D SUEXEC_BIN="/usr/lib/apache2/suexec"
-D DEFAULT_PIDLOG="/var/run/apache2.pid"
-D DEFAULT_SCOREBOARD="logs/apache_runtime_status"
-D DEFAULT_ERRORLOG="logs/error_log"
-D AP_TYPES_CONFIG_FILE="mime.types"
-D SERVER_CONFIG_FILE="apache2.conf"
Problem: Authentification via LDAP over SSL
otrs:
like http://forums.otterhub.org/viewtopic.php?f=62&t=18941
Search failed! I/O Error
# svn up file
Authentication realm: <https://svserver:443> SVN Login
Password for 'USER':
svn: REPORT of '/repos/epress3/!svn/vcc/default': Could not read status line: SSL alert received: Bad record MAC (https://esx-svn.ncrz.cologne.ger.unicepta.com)
# lsof | grep www-data | grep libss
apache2 7468 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7486 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7487 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7488 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7489 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7490 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7491 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7492 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7493 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7494 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7495 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7496 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7497 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7499 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7500 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7501 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7502 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7504 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7506 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7508 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
apache2 7483 7510 www-data mem REG 254,1 383600 25654124 /usr/lib/x86_64-linux-gnu/libssl.so.1.0.0
[...]
Fix in both method:
# dpkg -i libssl1.0.0_1.0.1c-3_amd64.deb
# /etc/init.d/apache2 restart
TIA Thorsten
More information about the Pkg-openssl-devel
mailing list