On Nov 18, 2004, at 1:27 PM, Dr. Stephen Henson wrote:

On Thu, Nov 18, 2004, Dan O'Brien wrote:



It's old, but it's the latest in "Debian Stable:"

[EMAIL PROTECTED]:~# openssl version -a
OpenSSL 0.9.6c 21 dec 2001
built on: Wed Mar  3 19:09:47 UTC 2004
platform: debian-i386
options:  bn(64,32) md2(int) rc4(idx,int) des(ptr,risc1,16,long)
blowfish(idx)
compiler: gcc -fPIC -DTHREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H
-DNO_IDEA -DNO_MDC2 -DNO_RC5 -DL_ENDIAN -DTERMIO -O3
-fomit-frame-pointer -Wall


I'd advise you to use a newer version that's ancient and has a number of
problems.


Failing that look for a file called 'openssl.cnf' on your system. It could be
in /usr/local/ssl/openssl.cnf but if they've used different compilation
options it may be elswhere. If its not on your system at all that's the
problem. If it isn't present then download OpenSSL and extract openssl.cnf
from there.


Steve.


Searched for openssl.cnf and it is on the system:

[EMAIL PROTECTED]:/etc/ssl# locate openssl.cnf
/usr/lib/ssl/openssl.cnf

Is this a clue to the problem?

We're running openssl as part of the Debian apache-ssl package. Successfully removed openssl 0.9.6 using the standard apt-get remove Debian tool, but unexpectedly uninstalled apache as well. Will an installation of openssl 0.9.7e overwrite the existing version? How do we install the new version of openssl without disrupting apache?

Optionally, should we skip the apt-get, uninstall everything, and re-install manually?

______________________________________________________________________
OpenSSL Project                                 http://www.openssl.org
User Support Mailing List                    [EMAIL PROTECTED]
Automated List Manager                           [EMAIL PROTECTED]

Reply via email to