Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 2 Jan 2004 17:20:12 +0000
From:      Matthew Seaman <m.seaman@infracaninophile.co.uk>
To:        Marius Kirschner <marius@agoron.com>
Cc:        'FreeBSD Questions' <freebsd-questions@freebsd.org>
Subject:   Re: Changing Apache
Message-ID:  <20040102172012.GA31343@happy-idiot-talk.infracaninophile.co.uk>
In-Reply-To: <200401021620.i02GK2PK006733@tao.agoron.com>
References:  <200401021620.i02GK2PK006733@tao.agoron.com>

next in thread | previous in thread | raw e-mail | index | archive | help

--C7zPtVaVf+AK4Oqc
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Fri, Jan 02, 2004 at 11:10:56AM -0500, Marius Kirschner wrote:
> I currently have Apache 1.3.29 running and want to switch to the Apache
> mod-ssl version. My question is, do I need to deinstall the standard apac=
he
> before building the mod-ssl one from the ports?  And what would be the be=
st
> procedure to minimize the downtime?  Thank you,

Yes, you should de-install apache13 before installing apache13-modssl.
Although it's called mod_ssl, it is actually rather more than just a
dynamically loadable module -- the main apache httpd binary gets
patched to provide the 'EAPI' programming interface.

Best way to minimize downtime is to

    a) build apache13-modssl on a scratch box and test your
       configuration there.  Practice installing everything.  Once
       you're pretty certain it's going to work smoothly, and you
       understand how to install certificates and so forth, then:

    b) build apache13-modssl -- if you do this on the server it will
       cause the port dependencies to be installed automatically
       (basically that's just the devel/mm port) =20

    c) Stop the apache13 server and pkg_deinstall it. =20

    d) Install the pre-built apache13-modssl port

    e) Apply your local customizations to your httpd.conf, install web
       content etc.

    d) Start the apache13-modssl server: remember it's "apachectl
       startssl" to have SSL enabled.

If you don't want to build the httpd on the server machine, then build
what packages you need off-line.  Installation procedure will be much
the same as above.  If you have any other 3rd party apache loadable
modules (mod_php4, mod_perl etc.) these will need to be recompiled
against the new apache13-modssl server at stage (d) above.  At some
point running through a round or two of 'pkgdb -Fvu' to sort out
package dependencies is a good idea.  You can also put:

    APACHE_PORT=3D    www/apache13-modssl

into /etc/make.conf to make sure that all apache-related ports you
install subsequently will have the correct dependencies.

	Cheers,

	Matthew

--=20
Dr Matthew J Seaman MA, D.Phil.                       26 The Paddocks
                                                      Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey         Marlow
Tel: +44 1628 476614                                  Bucks., SL7 1TH UK

--C7zPtVaVf+AK4Oqc
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQE/9ahMdtESqEQa7a0RAlv1AKCOizqNtsaosMrdfbd4lW0hyDKRmwCeM4Fr
0zAbokltR0Acbni3wrRpnFU=
=p8Si
-----END PGP SIGNATURE-----

--C7zPtVaVf+AK4Oqc--



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20040102172012.GA31343>