Bug#267430: apache-ssl fails to start with erronous symlink in directory specified as SSLCACertificatePath

To: Fabio Massimo Di Nitto <fabbione@fabbione.net>
Cc: Mario Lipinski <law@taz.gymszbad.de>, 267430@bugs.debian.org, Debian Apache Maintainers <debian-apache@lists.debian.org>
Subject: Bug#267430: apache-ssl fails to start with erronous symlink in directory specified as SSLCACertificatePath
From: dean gaudet <dean-debian@arctic.org>
Date: Mon, 6 Sep 2004 12:39:33 -0700 (PDT)
Message-id: <[🔎] Pine.LNX.4.58.0409061234340.3780@twinlark.arctic.org>
Reply-to: dean gaudet <dean-debian@arctic.org>, 267430@bugs.debian.org
In-reply-to: <Pine.LNX.4.58.0408241550210.14283@trider-g7.ext.fabbione.net>
References: <20040822152728.036547A2A@taz.gymszbad.de> <Pine.LNX.4.58.0408240732590.14283@trider-g7.ext.fabbione.net> <1093341891.2314.4.camel@law-mobile.l4w> <Pine.LNX.4.58.0408241550210.14283@trider-g7.ext.fabbione.net>

On Tue, 24 Aug 2004, Fabio Massimo Di Nitto wrote:

> It sounds to me that upstream doesn't like dead symlink in a directory
> that is scanning.

note that the default /etc/apache-ssl/httpd.conf contains this line:

SSLCACertificatePath /etc/apache-ssl

which means that any broken symlink in /etc/apache-ssl causes the server
to fail to start... on top of that it means that all the files in
/etc/apache-ssl are parsed as if they're certs.

i think you should probably comment out that SSLCACertificatePath -- it's
not required in default setups... and the "SSLCertificateFile
/etc/apache-ssl/apache.pem" line does the job for single-cert servers.

i just had to use strace to debug this one myself :)

-dean

Reply to:

Prev by Date: support for running multiple apache instances?
Next by Date: Bug#270418: apache: Apache initscript ignores system locale
Previous by thread: support for running multiple apache instances?
Next by thread: Bug#270418: apache: Apache initscript ignores system locale
Index(es):
- Date
- Thread