[Info-vax] Compaq Secure Web Server (Apache) problem

Jairo Alves jairo.ptbr at gmail.com
Fri Oct 16 07:36:54 EDT 2020 

> The HPE mod_ssl wasn't tied to the installed SSL kit, per what I was 
> told by then-HP an aeon or two ago. 

Yes, that seems to be spot on. Here's verbatim what the VSI engineer told me:
CSWS V2.2 UPDATE 2 kit did not utilize SSL1.  It was linked against SSL V1.4-467 / OpenSSL V0.9.8w.  
The module that shipped with CSWS V2.2 UPDATE 2, is the MOD_SSL.EXE V2.2.   

> 
> It's possible that some of the SSL logical names are getting tangled. 
> 
Most probably spot on again, see below.

.

Now, the problem was solved. Here's all the things I'd like to leave 
here to assist anyone having this issue in the future (mostly compiled VSI support suggestions):

1) Check APACHE$WWW user, premissions, privileges, etc.
2) Check APACHE$COMMON:[MODULES]  for ownership and file protection anomalies.
3) In case any module is being rejected, check its .EXE checksum, for example, in my case it was the MOD_SSL.EXE
  $ checksum/algo=md5 mod_ssl.exe
  $ show sym checksum$checksum
  CHECKSUM$CHECKSUM = "C5ABD27B597AE9C5A0DF5E884467D6FB"

Also (optionally) check the link date and other characteristics of the file:
 $ show image APACHE$COMMON:[MODULES]mod_ssl.exe

4) Check that no duplicated modules exist on APACHE$SPECIFIC:[modules] that also exist on APACHE:COMMON:[modules]

5) If you changed anything, like copying a new module image, as I did copy a fresh MOD_SSL.EXE
adjust the protection of on APACHE$COMMON:[MODULES] with /prot=(S:RWED,O:RWED,G:RE,W:RE).

Also change ownership to APACHE$WWW if needed.

6) In my case, it was recommended to run

  $ @SYS$MANAGER:APACHE$LOGICALS "" "" UNINSTALL
and then 
  $ @SYS$MANAGER:APACHE$LOGICALS "" "" INSTALL

7) If all went well, by now Apache may be ok again.
  $ @SYS$STARTUP:APACHE$STARTUP.COM

In my case, I suppose some Apache logicals got confused, 
also, disk quotas were over, but as the server do not need to create a log file except at startup
maybe it just stopped writing log, may some other behaviour, it's not clear.

Thanks everyone that helped over here too.

More information about the Info-vax mailing list