[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [cobalt-developers] SSLSessionCache problem

Subject: RE: [cobalt-developers] SSLSessionCache problem
From: "Malcolm Wild" <cobaltsec@xxxxxxxxxxx>
Date: Wed Sep 12 17:40:23 2001
List-id: Discussion Forum for developers on Sun Cobalt Networks products <cobalt-developers.list.cobalt.com>

If you've done any manual upgrades from rpm/source rather than official PKGs
I'd check the permissions and ownerships are still the same for the ss_cache
folder/files  as the error reported is couldn't open it for writing.
Check that the path shown in the httpd.conf as on one of our RaQ3s the link
isn't
dbm:/var/log/httpd/ssl_cache
its .dir!
dbm:/var/log/httpd/ssl_scache.dir

this may be the issue

you should be able to test this by restarting the httpd and seeing what the
log file returns. I thing the httpd also runs httpsd under the same process
(not 100% sure!)
#/etc/rc.d/init.d/httpd restart

hope that helps

-----Original Message-----
From: cobalt-developers-admin@xxxxxxxxxxxxxxx
[mailto:cobalt-developers-admin@xxxxxxxxxxxxxxx]On Behalf Of Clive
Holloway
Sent: 10 September 2001 17:24
To: cobalt-developers@xxxxxxxxxxxxxxx
Subject: [cobalt-developers] SSLSessionCache problem


Hi all,

I have a very disturbing and rather perplexing problem and wondered if
anyone
could supply any insight....

Our server freezes around twice a day, always an httpd process - not a cgi
related one (it's owned by httpd). This process is taking up 98% of cpu.

in apache error logs, I see lots of these:

[Mon Sep 10 17:15:28 2001] [error] mod_ssl: Cannot open SSLSessionCache DBM
file `/var/log/httpd/ssl_scache' for writing (store) (System error follows)
[Mon Sep 10 17:15:29 2001] [error] mod_ssl: SSL handshake timed out (client
213.122.121.211, server ########.co.uk:443)

In httpd.conf we have:

SSLSessionCache        dbm:/var/log/httpd/ssl_cache
SSLSessionCacheTimeout 300
SSLMutex               file:/var/log/httpd/ssl_mutex
SSLRandomSeed startup  file:/dev/urandom 512
SSLRandomSeed connect  builtin

I have very little understanding of what this SSL related problem is. It
just
happened one day, and has stayed with us ever since.

As an attempted fix, I upgraded mod_ssl and ssl and it doesn't seem to have
changed anything.

Our secure server doesn't get massively hit compared to the rest of the
system.

If anybody has any thoughts, I'd definitely appreciate them.

thanks

cLive ;-)

--
Clive Holloway
JPi
http://www.get-trolleyed.co.uk

This e-mail is confidential and for the addressee only. .

If you received this by mistake, please let me know.

$_='Iuh seusht_ufiactnguaorpor seubill_hts';y/ u_stacki/a
stick.u/;print"$_\n";

_______________________________________________
cobalt-developers mailing list
cobalt-developers@xxxxxxxxxxxxxxx
http://list.cobalt.com/mailman/listinfo/cobalt-developers

References:
- [cobalt-developers] SSLSessionCache problem
  - From: Clive Holloway

Prev by Date: Re: [cobalt-developers] Rack mounted Qube3
Next by Date: RE: [cobalt-developers] Just cannot get to web pages
Previous by thread: [cobalt-developers] SSLSessionCache problem
Next by thread: [cobalt-developers] POP-Authenticated SMTP Relaying Release 1.2 Patch Problems

Sun Cobalt Developers Message Index

Sun Cobalt Developers Thread Index