Date: Tue, 1 Aug 2006 13:11:02 +1000 (EST) From: Iain Dooley <iain@iaindooley.com> To: freebsd-questions@freebsd.org Subject: openssl and apache Message-ID: <20060801130538.A68813@piper.iaindooley.com>
next in thread | raw e-mail | index | archive | help
hi there, uname -a: FreeBSD cirrus.dfi.net.au 6.0-RELEASE FreeBSD 6.0-RELEASE #0: Sun Jul 9 12:08:32 EST 2006 amac@cirrus.dfi.net.au:/usr/src/sys/i386/compile/NEWKERNEL i3861~ i recently got ssl running with apache. i'm not quite sure how it happened, but at some point after this i could not longer ssh into the box. i went into the data centre and found that when i tried to ssh out of the machine, the error: OpenSSL Version Mismatch appeared on the screen. It was quite important to get this working, and some googling turned up the possibility that this was because there were two versions of openssl installed on the machine. i did: cd /usr/ports/security/openssl make deinstall and i could then ssh in and out of the box. however, now when i request a page using https from this machine the error: [Tue Aug 01 13:55:22 2006] [error] [client 125.62.65.184] Invalid method in request \x80g\x01\x03 shows up in my apache logs. if i try: openssl s_client -connect my.host:443 i get: 85161:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:/usr/src/secure/lib/libssl/../../../crypto/openssl/ssl/s23_clnt.c:478: i can telnet into the host on port 443 successfully. obviously i need to upgrade openssl somehow, but i'm afraid if i try and do it using the ports then i'll break ssh login on the machine again. does anyone have any clues? cheers iain dooley
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060801130538.A68813>