The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Apache2 Openssl and Centos 4

Discussion in 'EasyApache' started by kernow, Oct 15, 2007.

  1. kernow

    kernow Well-Known Member

    Joined:
    Jul 23, 2004
    Messages:
    865
    Likes Received:
    9
    Trophy Points:
    18
    cPanel Access Level:
    Root Administrator
    Just been told by Cpanel techs that if your OS is Centos 4 or older and you try to upgrade to Apache 2 and want OpenSSL running, it won't work if you have a large number of virtual hosts., the build will give you a segmentation fault /core dump. Cpanel techs said to
    Has anyone tried that method yet? Would I be right to try something like:
    Code:
    wget http://www.openssl.org/source/openssl-0.9.8f.tar.gz
    gunzip openssl xxxxxx
     ./config --prefix=/opt/openssl --openssldir=/opt/openssl
    make
    make install
    And then run easyapache ??
     
  2. jpetersen

    jpetersen Well-Known Member

    Joined:
    Dec 31, 2006
    Messages:
    113
    Likes Received:
    4
    Trophy Points:
    18
    I can't answer your question as I haven't tested it, but I am wondering how many virtualhosts "a large number of virtual hosts" refers to. I'm sure it's not an exact number, but having an estimate would be great. Does this affect both Apache 2.0.x as well as 2.2.x on CentOS 4? Is this is a cPanel limitation? I'm having trouble locating any information on this issue anywhere.
     
  3. cPanelKenneth

    cPanelKenneth cPanel Development
    Staff Member

    Joined:
    Apr 7, 2006
    Messages:
    4,458
    Likes Received:
    22
    Trophy Points:
    38
    cPanel Access Level:
    Root Administrator
    This is the problem:

    https://bugzilla.redhat.com/show_bug.cgi?id=236164

    There is no hard number: we've seen it with 800 VirtualHosts, whereas others didn't hit it until 1100+

    Code:
    ./configure --prefix=/opt/openssl shared
    
    That is the command to use to configure properly.

    This only impacts CentOS/RHEL 4 and older, along with Fedora < 6. FreeBSD will already have a newer OpenSSL install that doesn't have this problem.
     
  4. WebHostDog

    WebHostDog Well-Known Member

    Joined:
    Sep 3, 2006
    Messages:
    144
    Likes Received:
    0
    Trophy Points:
    16
    cPanel Access Level:
    Website Owner
    Hello,
    Please describe the whole process of correct upgrading openssl on a CentOS 4.5 box in steps.


    Thanks,
     
  5. panayot

    panayot Well-Known Member

    Joined:
    Nov 18, 2004
    Messages:
    125
    Likes Received:
    0
    Trophy Points:
    16
    We have the same problem on two 64-bit Centos 4/RHEL 4 servers with apache 2.2 (both have more than 900 virtual hosts)
    Sometimes after adding a new account, apache cannot restart and gives segmentation fault. It does not fix even after rebooting the server. The only fix is to remove all virtual hosts from httpd.conf, restart apache, then add back all virtual hosts and restart apache again.

    One of the servers has only 2 SSL virtual hosts, and the other server does not have any ssl virtual hosts (but it has 2000 normal virtual hosts)

    how to build a custom OpenSSL? How to tell easyapache to use the new OpenSSL?
     
    #5 panayot, Oct 29, 2007
    Last edited: Oct 29, 2007
  6. asiams

    asiams Well-Known Member

    Joined:
    May 28, 2003
    Messages:
    89
    Likes Received:
    0
    Trophy Points:
    6
    Location:
    Hokkaido, JAPAN
    SSL problem

    Hello,

    I have the following setup:

    WHM 11.11.0 cPanel 11.15.0-C17853
    CENTOS Enterprise 4.5 i686 on standard - WHM X v3.1.0

    Since upgrade to Apache 2, I also began to have SSL probelm.

    If I designate the port after the domain, it works, but if I do not, it won't work.

    I am using MB4.4 and from my customer's site, it has a link to the Cpanel login as follow:

    https://inugoyahp.com/cpanel/login.php (This is for a domain for inugoyahp.com)

    Above gives me 500 internal server error, but when I use regular http site for this domain, it works.

    Somehow, SSL is not working.

    I have reinstalled the certificate and reset it for all services.

    But it did not help.

    I have found this forum and I updated OpenSSL since I am using Centos 4.5 Enterprise.

    Still it did not seem to work.

    Any solution for this?

    Thank you.

    asiams
     
  7. cPanelDavidG

    cPanelDavidG Technical Product Specialist

    Joined:
    Nov 29, 2006
    Messages:
    11,279
    Likes Received:
    8
    Trophy Points:
    38
    Location:
    Houston, TX
    cPanel Access Level:
    Root Administrator
    This documentation may be able to help:

    http://www.cpanel.net/support/docs/ea/ea3/ea3_open_ssl_bug.html
     
Loading...

Share This Page