OpenSSL 1.0.0 issue

Similar Messages

• Repeated ASA 5510 failed vulnerability scan (OpenSSL error)

  We are getting vulnerability scanned by a PCI company and keep getting failures that state "OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG".  I've opened two TAC cases and TAC said that this vulnerability was addressed several versions back (we're currently running version 8.2.2 on our 5510 ASA).  TAC made several small changes to attempt to address this issue but we keep failing with the same message.  Has anyone ever failed their scan with this error and if so, what did you do to address this error?
  Here is the detailed error:
  OpenSSL SSL_OP_NETSCAPE_REUSE_CIPHER_CHANGE_BUG
  Ciphersuite Change Issue
  Synopsis :
  The remote host allows resuming SSL sessions.
  Description :
  The version of OpenSSL on the remote host has been shown to allow
  resuming session with a different cipher than was used when the
  session was initiated. This means that an attacker that sees (e.g.
  by sniffing) the start of an SSL connection can manipulate the OpenSSL
  session cache to cause subsequent resumes of that session to use a
  cipher chosen by the attacker.
  See also :
  http://openssl.org/news/secadv_20101202.txt
  Solution :
  Upgrade to OpenSSL 0.9.8q / 1.0.0.c or later.
  Risk factor :
  Medium / CVSS Base Score : 4.3
  (CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N)
  Plugin output :
  Session ID :
  4e4c1b0b13d5e48b5421479419da1c95f8ca01da3f83eed7494f2d254389c9ec
  Initial Cipher : TLS1_CK_RSA_WITH_AES_256_CBC_SHA (0x0035)
  Resumed Cipher : TLS1_CK_RSA_WITH_3DES_EDE_CBC_SHA (0x000a)
  CVE : CVE-2010-4180
  BID : 45164
  Other references : OSVDB:69565
  Thanks,
  John

  Hi John,
  The Cisco bug ID filed to track this vulnerability is CSCtk61443. You can read the details here:
  http://tools.cisco.com/Support/BugToolKit/search/getBugDetails.do?method=fetchBugDetails&bugId=CSCtk61443
  The vulnerability will be fixed in an upcoming release of 8.2.4.8. Please open up a TAC case to request this image for your ASA.
  Hope that helps.
  -Mike

• How do we proceed re: Heartbleed?

  I don't want to steal MadMacs0 thunder. So I'd like to open a new thread - albeit with all due respect to him.  His post , IMHO is just too important to slip through the cracks or to be potentially construed as being off-topic. Check it out > https://discussions.apple.com/message/25488206#25488206
  For the sake of everyone's convienience, I will post my reply to him.
  Kudos to you MadMacs0!
  Your hard work is very much appreciated. Which begs the question: How does one, using proper due diligence, arrive at intelligent and confident conclusions and by extension - viable solutions - amidst a plethora of hysteria and misinformation - albeit in juxtaposition with allegedly valid information?
  How do we go about separating the wheat from the chaff when discussing said extensive associations between Apple devices, Apple servers, Apple mission critical services, Akamai servers, Akamai's "key Web-based services", etc...?
  All things considered, I believe that Apple (today) released a new Apple Support Communities Use Agreement (revised 24 April 2014) in good faith, with the best of intentions and with the aim of keeping topics such as (some of) the aforementioned (e.g. Heartbleed) in context, however nebulous or convoluted they may seem.
  Best Regards and Thank You,
  mm~

  Yes, Heartbleed does have a nice logo, and it's a nasty bug. 
  This stuff dates back to the late 1980s with the WANK worm and the Morris worm, if not earlier.   There've been many other problems since then too.  There'll be more. 
  Since you mention Y2K, there'll be more — 2038 is probably the next "fun" date for most folks, and I've already seen a few 2038-related bugs.
  As to your question, OS X is not vulnerable to Heartbleed, it uses Secure Transport for most SSL/TLS traffic and includes an outdated version of OpenSSL (that's not vulnerable to Heartbleed) for use by legacy apps. 
  Client and server applications that include their own versions of OpenSSL within the vulnerable range will have to be updated.  Even on OS X.
  Secure Transport has been vulnerable to attacks — the recent "goto fail" being one such example — and the older version of OpenSSL has its own issues.   OS X and iOS are also vulnerable to the (newer than Heartbleed) 3Shake SSL attack; patches for that are now available. 
  Older SSL is vulnerable to attacks, and newer TLS can be vulnerable.  This means that higher-security sites can need to adjust the algorithms presented, or migrate to an environment that provides the required TLS.  (For most folks, simply avoiding the worst of the available algorithms is sufficient.)
  As for the realization of how many attackers and how many bugs and the rest exist, well, welcome to the Internet.   It's only going to get more nasty, too.
  If you self-maintain, keep your backups current, keep some of your backups entirely isolated from your server, get yourself onto security notification lists (and Twitter can be useful for following some of the security-focused folks), keep your patches current, use multiple layers (such as firewalls, network scanners and vulnerability scanners, intrusion detection, network partitioning and other such tools, investing commensurate with your value as a target), learn current password practices (given brute-forcing password tools are getting better) and all the usual advice.   Test your recovery, too.
  In short, pay (time, effort, mental focus, budget) to stay current, or pay folks to keep your servers current for you, or outsource the whole area to folks that specialize; to cloud or hosted services providers.  Expect to get pwned, too — this is part of why backups are important.   None of this is new or different or changed advice, of course.

• OpenSSH 4.3p1 Compile Issues (Bad OpenSSL Headers)

  I was upgrading the version of OpenSSH on my other systems and thought I would also upgrade it on my Mac. The distributed version was OpenSSH 3.8p1 IIRC. First I find that the version of Zlib is out of date. Not surprising and very excusable. So I fix that and find that the installed OpenSSL library is 0.9.7i current and secure but, the OpenSSL header files don't match the library. The installed headers are for OpenSSL 0.9.7b. This means that I can't correctly compile anything that uses OpenSSL. The fix was easy and I just built OpenSSL 0.9.7i and copied the headers to /usr/include. Now how do I report this to Apple support so they will distribute the right headers, and possible an updated OpenSSH, at the next update?
  Mac mini   Mac OS X (10.4.4)  

  Lone_Wolf, I don't think there's a need for that bright-yellow highlighter. I'm using the default forum theme and it stands out a bit too much.
  It's used for [ ins ] i.e. insertion. It's useful to show where somebody made a typo or to highlight my own edit.
  I think the issue has been solved anyway.
  If so, please mark the thread as solved https://bbs.archlinux.org/viewtopic.php?id=130309 , andy_0.
  Last edited by karol (2014-03-24 12:59:39)

• Will there be a patch for the OpenSSL Issue?

  as we all know there is a great Issue with OpenSSL in the air.
  Our testing utility shows that filr is also affected by this.
  Does anyone know if there are plans to publish a patch that fixes this?
  kind regards
  Gerd Zobel
  The NetWorker GmbH
  www.the-networker.de

  just see:
  http://possible.lv/tools/hb/
  or
  https://ssltools.geotrust.com/checke.../certCheck.jsp
  and there are others..
  just checked the filer of some of our customers and found that all tests show that they ARE vulnerable.
  I feel it´s up to Novell to post a fix or at least a howto, after all it´s their filr appliance they provide.
  kind regards
  Gerd Zobel
  The NetWorker GmbH
  www.the-networker.de
  ab<[email protected]> schrieb am 11.04.2014 um 21:07 in Nachricht <N3X1v.732$[email protected]> :
  I believe Filr uses the openssl libraries present on SLES vs. shipping its
  own. I have not verified that personally, though.
  How did your testing tool (what is it called, btw?) find that Filr was
  vulnerable? Worded another way, how does it do that test? If Filr is
  using SLES's openssl libraries then it is not vulnerable because SLES
  never was. If it has its own, then it'd need to have 1.0.1a-f with TLS
  Heartbeat enabled and unpatched. The only real way to know for sure is to
  try the exploit and that's an easy test, but I've seen a lot of reports of
  things being vulnerable which determined that by merely checking to see if
  TLS Heartbeat was an option, or by looking at the version of openssl,
  neither of which is reliable and can create false positives.
  Good luck.
  If you find this post helpful and are logged into the web interface,
  show your appreciation and click on the star below...

• I have a of ios compile openssl environmental issues

  hi:
       Compile openSSL, I encountered a troublesome problem when compile-arch i386 compiler-arch armv7 when wrong.
  I encountered this problem has been for several days, and I suspect that is not different simulator sdk and iphone sdk or my sdk missing file.
  os x 10.8.2  xcode 4.6.1 iphone sdk 6.1.
  openssl the makefile:
  VERSION=1.0.0e
  MAJOR=1
  MINOR=0.0
  SHLIB_VERSION_NUMBER=1.0.0
  SHLIB_VERSION_HISTORY=
  SHLIB_MAJOR=1
  SHLIB_MINOR=0.0
  SHLIB_EXT=.$(SHLIB_MAJOR).$(SHLIB_MINOR).dylib
  PLATFORM=darwin-armv7-cc
  OPTIONS= no-gmp no-jpake no-krb5 no-md2 no-rc5 no-rfc3779 no-shared no-store no-zlib no-zlib-dynamic static-engine
  CONFIGURE_ARGS=darwin-armv7-cc
  SHLIB_TARGET=darwin-shared
  HERE=.
  INSTALL_PREFIX=
  INSTALLTOP=/usr/local/ssl
  OPENSSLDIR=/usr/local/ssl
  CC= /Applications/Xcode.app/Contents/Developer/Platforms/iPhoneOS.platform/Develope r/usr/bin/gcc
  CFLAG= -DOPENSSL_THREADS -D_REENTRANT -DDSO_DLFCN -DHAVE_DLFCN_H -arch armv7 -isysroot /Applications/Xcode.app/Contents/Developer/Platforms/iPhoneOS.platform/Develope r/SDKs/iPhoneOS6.1.sdk -O3 -fomit-frame-pointer -DL_ENDIAN
  DEPFLAG= -DOPENSSL_NO_GMP -DOPENSSL_NO_JPAKE -DOPENSSL_NO_MD2 -DOPENSSL_NO_RC5 -DOPENSSL_NO_RFC3779 -DOPENSSL_NO_STORE
  PEX_LIBS= -Wl,-search_paths_first
  EX_LIBS=
  EXE_EXT=
  ARFLAGS=
  AR= ar $(ARFLAGS) r
  RANLIB= /opt/local/bin/ranlib
  NM= nm
  PERL= /opt/local/bin/perl5
  TAR= tar
  TARFLAGS= --no-recursion
  MAKEDEPPROG=makedepend
  LIBDIR=lib
  The Log:
  Undefined symbols for architecture armv7:
    "_accept$UNIX2003", referenced from:
        _do_server in s_socket.o
        _BIO_accept in libcrypto.a(b_sock.o)
    "_bind$UNIX2003", referenced from:
        _do_server in s_socket.o
        _BIO_get_accept_socket in libcrypto.a(b_sock.o)
    "_chmod$UNIX2003", referenced from:
        _RAND_write_file in libcrypto.a(randfile.o)
    "_close$UNIX2003", referenced from:
        _sv_body in s_server.o
        _s_client_main in s_client.o
        _speed_main in speed.o
        _s_time_main in s_time.o
        _init_client in s_socket.o
        _do_server in s_socket.o
        _acpt_ctrl in libcrypto.a(bss_acpt.o)
    "_closedir$UNIX2003", referenced from:
        _OPENSSL_DIR_end in libcrypto.a(o_dir.o)
    "_connect$UNIX2003", referenced from:
        _init_client in s_socket.o
        _conn_state in libcrypto.a(bss_conn.o)
        _BIO_get_accept_socket in libcrypto.a(b_sock.o)
        _RAND_query_egd_bytes in libcrypto.a(rand_egd.o)
    "_fdopen$UNIX2003", referenced from:
        _speed_main in speed.o
    "_fopen$UNIX2003", referenced from:
        _enc_main in enc.o
        _BIO_new_file in libcrypto.a(bss_file.o)
        _file_ctrl in libcrypto.a(bss_file.o)
        _RAND_load_file in libcrypto.a(randfile.o)
        _RAND_write_file in libcrypto.a(randfile.o)
        _open_console in libcrypto.a(ui_openssl.o)
    "_fputs$UNIX2003", referenced from:
        _main in openssl.o
        _BIO_debug_callback in libcrypto.a(bio_cb.o)
        _write_string in libcrypto.a(ui_openssl.o)
        _read_string in libcrypto.a(ui_openssl.o)
    "_fstat$INODE64", referenced from:
        _RAND_poll in libcrypto.a(rand_unix.o)
    "_fwrite$UNIX2003", referenced from:
        _check in verify.o
        _req_main in req.o
        _dsa_main in dsa.o
        _speed_main in speed.o
        _s_time_main in s_time.o
        _load_index in apps.o
        _write_fp in libcrypto.a(b_dump.o)
  Can you help me solve it, thank you very much~！
  Online waiting~~~

  You're looking for assistance with porting OpenSSL to iOS?  While it would be more typical to use iOS core frameworks such as CFNetwork or other higher-level frameworks such as AFNetwork, there are other OpenSSL-based alternatives and ports for iOS, if you really want or need your own copy.
  I just ended up writing a "framework" for OpenSSL for another platform.  That was "fun".  But I digress.
  Quoting from the Apple documentation: "Although OpenSSL is commonly used in the open source community, OpenSSL does not provide a stable API from version to version. For this reason, although OS X provides OpenSSL libraries, the OpenSSL libraries in OS X are deprecated, and OpenSSL has never been provided as part of iOS. Use of the OS X OpenSSL libraries by apps is strongly discouraged."
  Accordingly, I'd generally recommend against having your own embedded SSL/TLS security code as that means full ownership of security updates and security fixes and API changes and the rest, but if you do really need to have OpenSSL around, then you're going to get to build your own dynamic library containing OpenSSL, as was described in the links above.
  For more information on what's happening with OpenSSL, SSL/TLS, CDSA and other such within iOS and OS X, there are some WWDC sessions that will definitely be of interest.  Given the (programming) choice here, I'd probably go with AFNetwork or CFNetwork, or with Common Crypto or such.  Not with OpenSSL.
  For the best and fastest answers to these sorts of questions, I'd also suggest posting to the Apple developer forums, rather than here in the consumer forums.  For instance, see this thread...

• Ruby on Rails and openssl issue

  after a systemupdate ruby on rails isnt working anymore. it seems that the problem is openssl..
  at@at-book ~ $ ruby -ropenssl -rzlib -rreadline -e "puts :Hello"
  /opt/ruby1.8/lib/ruby/1.8/i686-linux/openssl.so: /opt/ruby1.8/lib/ruby/1.8/i686-linux/openssl.so: undefined symbol: each_conf_value_doall_arg - /opt/ruby1.8/lib/ruby/1.8/i686-linux/openssl.so (LoadError)
  from /opt/ruby1.8/lib/ruby/1.8/openssl.rb:17
  building the patched version from abs and downgrading openssl(just kills my system ) didn't work.
  any ideas or hins?
  thx

  ruby -ropenssl -rzlib -rreadline -e "puts :Hello"
  /usr/lib/ruby/1.9.1/openssl.rb:17:in `require': /usr/lib/ruby/1.9.1/i686-linux/openssl.so: undefined symbol: each_conf_value_doall_arg - /usr/lib/ruby/1.9.1/i686-linux/openssl.so (LoadError)
  from /usr/lib/ruby/1.9.1/openssl.rb:17:in `<top (required)>'
  from ruby:0:in `require'
  i also tried but changed nothing

• WLSE Express - OpenSSL certificate translating issue

  Does anyone have suggestions for converting a .PFX file to .PEM? I can't unzip / am getting an error when trying to install the latest version off of www.openssl.com. I need to perform this conversion for WLSE to accept the certificates. (This is needed for WLSE Express to become a AAA Radius server.) Thanks. Russ

  When you install an SSL certificate on a BBSM server, it enables visitors to verify the site's authenticity and communicate with it securely through SSL encryption, which protects confidential information, such as credit card numbers, online forms, and financial data from interception and hacking.
  This protection is accomplished by using "HTTPS" when coding the page sets. SSL comes in two strengths, 40 bit and 128 bit, which refer to the length of the "session key" that every encrypted transaction generates. The longer the key, the more difficult it is to break the encryption code.
  If you are using RADIUS or credit card page sets, you must install an SSL certificate for end users to gain access to the Internet.

• Svn with Apache Timeout issue

  Hello Archers,
  I've set up an svn Server with Apache folloing your wiki on my raspberry pi.
  https://wiki.archlinux.org/index.php/LAMP
  https://wiki.archlinux.org/index.php/Subversion_Setup
  Unfortunately I get errors when I try to commit several files (15 or so). I think it is a timeout issue, however I don't know where to specify the timeout in the httpd.conf (or httpd-ssl.conf)
  This is a client error message:
  Commit failed (details follow):
  Unexpected end of svndiff Input
  And this the corresponding server side log:
  [date] [dav:error] [pid 448:tid 2854220848] (70007)The timeout specified has expired: [client 192.168.178.55:63819] Timeout reading the body (URI: /Dokumente/!svn/txr/9-q/Music/myfile.mp3) [408, #0]
  [date] [dav:error] [pid 448:tid 2854220848] [client 192.168.178.55:63819] mod_dav_svn close_stream: error closing write stream [500, #185004]
  [date] [dav:error] [pid 448:tid 2854220848] [client 192.168.178.55:63819] Unexpected end of svndiff input [500, #185004]
  I assume it is some error like this: http://subversion.apache.org/faq.html#s … -truncated
  I think I don't have specified the timeouts correctly, since I haven't found the default option.
  tl:dr
  Do you know how to set the timeouts in the apache configuration file?
  I very much appreciate your help.
  arch on pi
  Here are my configuration Files with my position for the timeout order:
  httpd-ssl.conf:
  # This is the Apache server configuration file providing SSL support.
  # It contains the configuration directives to instruct the server how to
  # serve pages over an https connection. For detailed information about these
  # directives see <URL:http://httpd.apache.org/docs/2.4/mod/mod_ssl.html>
  # Do NOT simply read the instructions in here without understanding
  # what they do. They're here only as hints or reminders. If you are unsure
  # consult the online docs. You have been warned.
  # Required modules: mod_log_config, mod_setenvif, mod_ssl,
  # socache_shmcb_module (for default value of SSLSessionCache)
  # Pseudo Random Number Generator (PRNG):
  # Configure one or more sources to seed the PRNG of the SSL library.
  # The seed data should be of good random quality.
  # WARNING! On some platforms /dev/random blocks if not enough entropy
  # is available. This means you then cannot use the /dev/random device
  # because it would lead to very long connection times (as long as
  # it requires to make more entropy available). But usually those
  # platforms additionally provide a /dev/urandom device which doesn't
  # block. So, if available, use this one instead. Read the mod_ssl User
  # Manual for more details.
  #SSLRandomSeed startup file:/dev/random 512
  SSLRandomSeed startup file:/dev/urandom 512
  #SSLRandomSeed connect file:/dev/random 512
  SSLRandomSeed connect file:/dev/urandom 512
  # When we also provide SSL we have to listen to the
  # standard HTTP port (see above) and to the HTTPS port
  Listen 443
  ## SSL Global Context
  ## All SSL configuration in this context applies both to
  ## the main server and all SSL-enabled virtual hosts.
  # SSL Cipher Suite:
  # List the ciphers that the client is permitted to negotiate.
  # See the mod_ssl documentation for a complete list.
  SSLCipherSuite HIGH:MEDIUM:!aNULL:!MD5
  # Speed-optimized SSL Cipher configuration:
  # If speed is your main concern (on busy HTTPS servers e.g.),
  # you might want to force clients to specific, performance
  # optimized ciphers. In this case, prepend those ciphers
  # to the SSLCipherSuite list, and enable SSLHonorCipherOrder.
  # Caveat: by giving precedence to RC4-SHA and AES128-SHA
  # (as in the example below), most connections will no longer
  # have perfect forward secrecy - if the server's key is
  # compromised, captures of past or future traffic must be
  # considered compromised, too.
  #SSLCipherSuite RC4-SHA:AES128-SHA:HIGH:MEDIUM:!aNULL:!MD5
  #SSLHonorCipherOrder on
  # Pass Phrase Dialog:
  # Configure the pass phrase gathering process.
  # The filtering dialog program (`builtin' is an internal
  # terminal dialog) has to provide the pass phrase on stdout.
  SSLPassPhraseDialog builtin
  # Inter-Process Session Cache:
  # Configure the SSL Session Cache: First the mechanism
  # to use and second the expiring timeout (in seconds).
  #SSLSessionCache "dbm:/run/httpd/ssl_scache"
  SSLSessionCache "shmcb:/run/httpd/ssl_scache(512000)"
  SSLSessionCacheTimeout 6000
  ## SSL Virtual Host Context
  <VirtualHost _default_:443>
  # General setup for the virtual host
  DocumentRoot "/mnt/sda1/svn"
  ServerName 192.168.178.48:443
  ServerAdmin [email protected]
  ErrorLog "/var/log/httpd/error_log"
  TransferLog "/var/log/httpd/access_log"
  # SSL Engine Switch:
  # Enable/Disable SSL for this virtual host.
  SSLEngine on
  # Server Certificate:
  # Point SSLCertificateFile at a PEM encoded certificate. If
  # the certificate is encrypted, then you will be prompted for a
  # pass phrase. Note that a kill -HUP will prompt again. Keep
  # in mind that if you have both an RSA and a DSA certificate you
  # can configure both in parallel (to also allow the use of DSA
  # ciphers, etc.)
  # Some ECC cipher suites (http://www.ietf.org/rfc/rfc4492.txt)
  # require an ECC certificate which can also be configured in
  # parallel.
  SSLCertificateFile "/etc/httpd/conf/server.crt"
  #SSLCertificateFile "/etc/httpd/conf/server-dsa.crt"
  #SSLCertificateFile "/etc/httpd/conf/server-ecc.crt"
  # Server Private Key:
  # If the key is not combined with the certificate, use this
  # directive to point at the key file. Keep in mind that if
  # you've both a RSA and a DSA private key you can configure
  # both in parallel (to also allow the use of DSA ciphers, etc.)
  # ECC keys, when in use, can also be configured in parallel
  SSLCertificateKeyFile "/etc/httpd/conf/server.key"
  #SSLCertificateKeyFile "/etc/httpd/conf/server-dsa.key"
  #SSLCertificateKeyFile "/etc/httpd/conf/server-ecc.key"
  # Server Certificate Chain:
  # Point SSLCertificateChainFile at a file containing the
  # concatenation of PEM encoded CA certificates which form the
  # certificate chain for the server certificate. Alternatively
  # the referenced file can be the same as SSLCertificateFile
  # when the CA certificates are directly appended to the server
  # certificate for convenience.
  #SSLCertificateChainFile "/etc/httpd/conf/server-ca.crt"
  # Certificate Authority (CA):
  # Set the CA certificate verification path where to find CA
  # certificates for client authentication or alternatively one
  # huge file containing all of them (file must be PEM encoded)
  # Note: Inside SSLCACertificatePath you need hash symlinks
  # to point to the certificate files. Use the provided
  # Makefile to update the hash symlinks after changes.
  #SSLCACertificatePath "/etc/httpd/conf/ssl.crt"
  #SSLCACertificateFile "/etc/httpd/conf/ssl.crt/ca-bundle.crt"
  # Certificate Revocation Lists (CRL):
  # Set the CA revocation path where to find CA CRLs for client
  # authentication or alternatively one huge file containing all
  # of them (file must be PEM encoded).
  # The CRL checking mode needs to be configured explicitly
  # through SSLCARevocationCheck (defaults to "none" otherwise).
  # Note: Inside SSLCARevocationPath you need hash symlinks
  # to point to the certificate files. Use the provided
  # Makefile to update the hash symlinks after changes.
  #SSLCARevocationPath "/etc/httpd/conf/ssl.crl"
  #SSLCARevocationFile "/etc/httpd/conf/ssl.crl/ca-bundle.crl"
  #SSLCARevocationCheck chain
  # Client Authentication (Type):
  # Client certificate verification type and depth. Types are
  # none, optional, require and optional_no_ca. Depth is a
  # number which specifies how deeply to verify the certificate
  # issuer chain before deciding the certificate is not valid.
  #SSLVerifyClient require
  #SSLVerifyDepth 10
  # TLS-SRP mutual authentication:
  # Enable TLS-SRP and set the path to the OpenSSL SRP verifier
  # file (containing login information for SRP user accounts).
  # Requires OpenSSL 1.0.1 or newer. See the mod_ssl FAQ for
  # detailed instructions on creating this file. Example:
  # "openssl srp -srpvfile /etc/httpd/conf/passwd.srpv -add username"
  #SSLSRPVerifierFile "/etc/httpd/conf/passwd.srpv"
  # Access Control:
  # With SSLRequire you can do per-directory access control based
  # on arbitrary complex boolean expressions containing server
  # variable checks and other lookup directives. The syntax is a
  # mixture between C and Perl. See the mod_ssl documentation
  # for more details.
  #<Location />
  #SSLRequire ( %{SSL_CIPHER} !~ m/^(EXP|NULL)/ \
  # and %{SSL_CLIENT_S_DN_O} eq "Snake Oil, Ltd." \
  # and %{SSL_CLIENT_S_DN_OU} in {"Staff", "CA", "Dev"} \
  # and %{TIME_WDAY} >= 1 and %{TIME_WDAY} <= 5 \
  # and %{TIME_HOUR} >= 8 and %{TIME_HOUR} <= 20 ) \
  # or %{REMOTE_ADDR} =~ m/^192\.76\.162\.[0-9]+$/
  #</Location>
  # SSL Engine Options:
  # Set various options for the SSL engine.
  # o FakeBasicAuth:
  # Translate the client X.509 into a Basic Authorisation. This means that
  # the standard Auth/DBMAuth methods can be used for access control. The
  # user name is the `one line' version of the client's X.509 certificate.
  # Note that no password is obtained from the user. Every entry in the user
  # file needs this password: `xxj31ZMTZzkVA'.
  # o ExportCertData:
  # This exports two additional environment variables: SSL_CLIENT_CERT and
  # SSL_SERVER_CERT. These contain the PEM-encoded certificates of the
  # server (always existing) and the client (only existing when client
  # authentication is used). This can be used to import the certificates
  # into CGI scripts.
  # o StdEnvVars:
  # This exports the standard SSL/TLS related `SSL_*' environment variables.
  # Per default this exportation is switched off for performance reasons,
  # because the extraction step is an expensive operation and is usually
  # useless for serving static content. So one usually enables the
  # exportation for CGI and SSI requests only.
  # o StrictRequire:
  # This denies access when "SSLRequireSSL" or "SSLRequire" applied even
  # under a "Satisfy any" situation, i.e. when it applies access is denied
  # and no other module can change it.
  # o OptRenegotiate:
  # This enables optimized SSL connection renegotiation handling when SSL
  # directives are used in per-directory context.
  #SSLOptions +FakeBasicAuth +ExportCertData +StrictRequire
  <FilesMatch "\.(cgi|shtml|phtml|php)$">
  SSLOptions +StdEnvVars
  </FilesMatch>
  <Directory "/srv/http/cgi-bin">
  SSLOptions +StdEnvVars
  </Directory>
  # SSL Protocol Adjustments:
  # The safe and default but still SSL/TLS standard compliant shutdown
  # approach is that mod_ssl sends the close notify alert but doesn't wait for
  # the close notify alert from client. When you need a different shutdown
  # approach you can use one of the following variables:
  # o ssl-unclean-shutdown:
  # This forces an unclean shutdown when the connection is closed, i.e. no
  # SSL close notify alert is sent or allowed to be received. This violates
  # the SSL/TLS standard but is needed for some brain-dead browsers. Use
  # this when you receive I/O errors because of the standard approach where
  # mod_ssl sends the close notify alert.
  # o ssl-accurate-shutdown:
  # This forces an accurate shutdown when the connection is closed, i.e. a
  # SSL close notify alert is send and mod_ssl waits for the close notify
  # alert of the client. This is 100% SSL/TLS standard compliant, but in
  # practice often causes hanging connections with brain-dead browsers. Use
  # this only for browsers where you know that their SSL implementation
  # works correctly.
  # Notice: Most problems of broken clients are also related to the HTTP
  # keep-alive facility, so you usually additionally want to disable
  # keep-alive for those clients, too. Use variable "nokeepalive" for this.
  # Similarly, one has to force some clients to use HTTP/1.0 to workaround
  # their broken HTTP/1.1 implementation. Use variables "downgrade-1.0" and
  # "force-response-1.0" for this.
  BrowserMatch "MSIE [2-5]" \
  nokeepalive ssl-unclean-shutdown \
  downgrade-1.0 force-response-1.0
  # Per-Server Logging:
  # The home of a custom SSL log file. Use this when you want a
  # compact non-error SSL logfile on a virtual host basis.
  CustomLog "/var/log/httpd/ssl_request_log" \
  "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
  #SSLSessionTimeout 5m
  Timeout 600000
  <Location />
  DAV svn
  SVNParentPath /mnt/sda1/svn/repos
  AuthzSVNAccessFile /home/svn/.svn-policy-file
  AuthName "SVN Repositories"
  AuthType Basic
  AuthUserFile /home/svn/.svn-auth-file
  # Satisfy Any
  Require valid-user
  </Location>
  </VirtualHost>
  httpd.conf
  # This is the main Apache HTTP server configuration file. It contains the
  # configuration directives that give the server its instructions.
  # See <URL:http://httpd.apache.org/docs/2.4/> for detailed information.
  # In particular, see
  # <URL:http://httpd.apache.org/docs/2.4/mod/directives.html>
  # for a discussion of each configuration directive.
  # Do NOT simply read the instructions in here without understanding
  # what they do. They're here only as hints or reminders. If you are unsure
  # consult the online docs. You have been warned.
  # Configuration and logfile names: If the filenames you specify for many
  # of the server's control files begin with "/" (or "drive:/" for Win32), the
  # server will use that explicit path. If the filenames do *not* begin
  # with "/", the value of ServerRoot is prepended -- so "logs/access_log"
  # with ServerRoot set to "/usr/local/apache2" will be interpreted by the
  # server as "/usr/local/apache2/logs/access_log", whereas "/logs/access_log"
  # will be interpreted as '/logs/access_log'.
  # ServerRoot: The top of the directory tree under which the server's
  # configuration, error, and log files are kept.
  # Do not add a slash at the end of the directory path. If you point
  # ServerRoot at a non-local disk, be sure to specify a local disk on the
  # Mutex directive, if file-based mutexes are used. If you wish to share the
  # same ServerRoot for multiple httpd daemons, you will need to change at
  # least PidFile.
  ServerRoot "/etc/httpd"
  Timeout 60000
  # Mutex: Allows you to set the mutex mechanism and mutex file directory
  # for individual mutexes, or change the global defaults
  # Uncomment and change the directory if mutexes are file-based and the default
  # mutex file directory is not on a local disk or is not appropriate for some
  # other reason.
  # Mutex default:/run/httpd
  # Listen: Allows you to bind Apache to specific IP addresses and/or
  # ports, instead of the default. See also the <VirtualHost>
  # directive.
  # Change this to Listen on specific IP addresses as shown below to
  # prevent Apache from glomming onto all bound IP addresses.
  #Listen 12.34.56.78:80
  Listen 80
  # Dynamic Shared Object (DSO) Support
  # To be able to use the functionality of a module which was built as a DSO you
  # have to place corresponding `LoadModule' lines at this location so the
  # directives contained in it are actually available _before_ they are used.
  # Statically compiled modules (those listed by `httpd -l') do not need
  # to be loaded here.
  # Example:
  # LoadModule foo_module modules/mod_foo.so
  LoadModule authn_file_module modules/mod_authn_file.so
  #LoadModule authn_dbm_module modules/mod_authn_dbm.so
  #LoadModule authn_anon_module modules/mod_authn_anon.so
  #LoadModule authn_dbd_module modules/mod_authn_dbd.so
  #nach fehlermeldung
  LoadModule authn_socache_module modules/mod_authn_socache.so
  LoadModule authn_core_module modules/mod_authn_core.so
  LoadModule authz_host_module modules/mod_authz_host.so
  LoadModule authz_groupfile_module modules/mod_authz_groupfile.so
  LoadModule authz_user_module modules/mod_authz_user.so
  #LoadModule authz_dbm_module modules/mod_authz_dbm.so
  #LoadModule authz_owner_module modules/mod_authz_owner.so
  #LoadModule authz_dbd_module modules/mod_authz_dbd.so
  LoadModule authz_core_module modules/mod_authz_core.so
  #LoadModule authnz_ldap_module modules/mod_authnz_ldap.so
  LoadModule access_compat_module modules/mod_access_compat.so
  LoadModule auth_basic_module modules/mod_auth_basic.so
  #LoadModule auth_form_module modules/mod_auth_form.so
  #LoadModule auth_digest_module modules/mod_auth_digest.so
  #LoadModule allowmethods_module modules/mod_allowmethods.so
  #LoadModule file_cache_module modules/mod_file_cache.so
  #Felhermeldung undefined symbols
  LoadModule cache_module modules/mod_cache.so
  #LoadModule cache_disk_module modules/mod_cache_disk.so
  #nach Fehlermeldung
  LoadModule cache_socache_module modules/mod_cache_socache.so
  #nochne Fehlermeldung
  LoadModule socache_shmcb_module modules/mod_socache_shmcb.so
  #LoadModule socache_dbm_module modules/mod_socache_dbm.so
  #LoadModule socache_memcache_module modules/mod_socache_memcache.so
  #LoadModule watchdog_module modules/mod_watchdog.so
  #LoadModule macro_module modules/mod_macro.so
  #LoadModule dbd_module modules/mod_dbd.so
  #LoadModule dumpio_module modules/mod_dumpio.so
  #LoadModule echo_module modules/mod_echo.so
  #LoadModule buffer_module modules/mod_buffer.so
  #LoadModule data_module modules/mod_data.so
  #LoadModule ratelimit_module modules/mod_ratelimit.so
  LoadModule reqtimeout_module modules/mod_reqtimeout.so
  #LoadModule ext_filter_module modules/mod_ext_filter.so
  #LoadModule request_module modules/mod_request.so
  LoadModule include_module modules/mod_include.so
  LoadModule filter_module modules/mod_filter.so
  #LoadModule reflector_module modules/mod_reflector.so
  #LoadModule substitute_module modules/mod_substitute.so
  #LoadModule sed_module modules/mod_sed.so
  #LoadModule charset_lite_module modules/mod_charset_lite.so
  #LoadModule deflate_module modules/mod_deflate.so
  #LoadModule xml2enc_module modules/mod_xml2enc.so
  #LoadModule proxy_html_module modules/mod_proxy_html.so
  LoadModule mime_module modules/mod_mime.so
  #LoadModule ldap_module modules/mod_ldap.so
  LoadModule log_config_module modules/mod_log_config.so
  #LoadModule log_debug_module modules/mod_log_debug.so
  #LoadModule log_forensic_module modules/mod_log_forensic.so
  #LoadModule logio_module modules/mod_logio.so
  #LoadModule lua_module modules/mod_lua.so
  LoadModule env_module modules/mod_env.so
  #LoadModule mime_magic_module modules/mod_mime_magic.so
  #LoadModule cern_meta_module modules/mod_cern_meta.so
  #LoadModule expires_module modules/mod_expires.so
  LoadModule headers_module modules/mod_headers.so
  #LoadModule ident_module modules/mod_ident.so
  #LoadModule usertrack_module modules/mod_usertrack.so
  #LoadModule unique_id_module modules/mod_unique_id.so
  LoadModule setenvif_module modules/mod_setenvif.so
  LoadModule version_module modules/mod_version.so
  #LoadModule remoteip_module modules/mod_remoteip.so
  LoadModule proxy_module modules/mod_proxy.so
  LoadModule proxy_connect_module modules/mod_proxy_connect.so
  LoadModule proxy_ftp_module modules/mod_proxy_ftp.so
  LoadModule proxy_http_module modules/mod_proxy_http.so
  LoadModule proxy_fcgi_module modules/mod_proxy_fcgi.so
  LoadModule proxy_scgi_module modules/mod_proxy_scgi.so
  #LoadModule proxy_fdpass_module modules/mod_proxy_fdpass.so
  LoadModule proxy_wstunnel_module modules/mod_proxy_wstunnel.so
  LoadModule proxy_ajp_module modules/mod_proxy_ajp.so
  LoadModule proxy_balancer_module modules/mod_proxy_balancer.so
  LoadModule proxy_express_module modules/mod_proxy_express.so
  #LoadModule session_module modules/mod_session.so
  #LoadModule session_cookie_module modules/mod_session_cookie.so
  #LoadModule session_crypto_module modules/mod_session_crypto.so
  #LoadModule session_dbd_module modules/mod_session_dbd.so
  LoadModule slotmem_shm_module modules/mod_slotmem_shm.so
  #LoadModule slotmem_plain_module modules/mod_slotmem_plain.so
  #Fuer die cipher suite
  LoadModule ssl_module modules/mod_ssl.so
  #LoadModule dialup_module modules/mod_dialup.so
  LoadModule lbmethod_byrequests_module modules/mod_lbmethod_byrequests.so
  LoadModule lbmethod_bytraffic_module modules/mod_lbmethod_bytraffic.so
  LoadModule lbmethod_bybusyness_module modules/mod_lbmethod_bybusyness.so
  LoadModule lbmethod_heartbeat_module modules/mod_lbmethod_heartbeat.so
  LoadModule mpm_event_module modules/mod_mpm_event.so
  LoadModule unixd_module modules/mod_unixd.so
  #LoadModule heartbeat_module modules/mod_heartbeat.so
  #LoadModule heartmonitor_module modules/mod_heartmonitor.so
  #1 for svn
  LoadModule dav_module modules/mod_dav.so
  LoadModule status_module modules/mod_status.so
  LoadModule autoindex_module modules/mod_autoindex.so
  #LoadModule asis_module modules/mod_asis.so
  #LoadModule info_module modules/mod_info.so
  #LoadModule suexec_module modules/mod_suexec.so
  #LoadModule cgid_module modules/mod_cgid.so
  #LoadModule cgi_module modules/mod_cgi.so
  #2 for svn
  LoadModule dav_fs_module modules/mod_dav_fs.so
  #LoadModule dav_lock_module modules/mod_dav_lock.so
  #LoadModule vhost_alias_module modules/mod_vhost_alias.so
  LoadModule negotiation_module modules/mod_negotiation.so
  LoadModule dir_module modules/mod_dir.so
  #LoadModule imagemap_module modules/mod_imagemap.so
  #LoadModule actions_module modules/mod_actions.so
  #LoadModule speling_module modules/mod_speling.so
  LoadModule userdir_module modules/mod_userdir.so
  LoadModule alias_module modules/mod_alias.so
  #LoadModule rewrite_module modules/mod_rewrite.so
  #3 for svn
  LoadModule dav_svn_module modules/mod_dav_svn.so
  LoadModule authz_svn_module modules/mod_authz_svn.so
  <IfModule unixd_module>
  # If you wish httpd to run as a different user or group, you must run
  # httpd as root initially and it will switch.
  # User/Group: The name (or #number) of the user/group to run httpd as.
  # It is usually good practice to create a dedicated user and group for
  # running httpd, as with most system services.
  User http
  Group http
  </IfModule>
  # 'Main' server configuration
  # The directives in this section set up the values used by the 'main'
  # server, which responds to any requests that aren't handled by a
  # <VirtualHost> definition. These values also provide defaults for
  # any <VirtualHost> containers you may define later in the file.
  # All of these directives may appear inside <VirtualHost> containers,
  # in which case these default settings will be overridden for the
  # virtual host being defined.
  # ServerAdmin: Your address, where problems with the server should be
  # e-mailed. This address appears on some server-generated pages, such
  # as error documents. e.g. [email protected]
  ServerAdmin [email protected]
  # ServerName gives the name and port that the server uses to identify itself.
  # This can often be determined automatically, but we recommend you specify
  # it explicitly to prevent problems during startup.
  # If your host doesn't have a registered DNS name, enter its IP address here.
  #ServerName www.example.com:80
  # Deny access to the entirety of your server's filesystem. You must
  # explicitly permit access to web content directories in other
  # <Directory> blocks below.
  <Directory />
  AllowOverride none
  Require all denied
  </Directory>
  # Note that from this point forward you must specifically allow
  # particular features to be enabled - so if something's not working as
  # you might expect, make sure that you have specifically enabled it
  # below.
  # DocumentRoot: The directory out of which you will serve your
  # documents. By default, all requests are taken from this directory, but
  # symbolic links and aliases may be used to point to other locations.
  DocumentRoot "/mnt/sda1"
  #<Directory "/mnt/sda1/svn/repos">
  # # Possible values for the Options directive are "None", "All",
  # # or any combination of:
  # # Indexes Includes FollowSymLinks SymLinksifOwnerMatch ExecCGI MultiViews
  # # Note that "MultiViews" must be named *explicitly* --- "Options All"#
  # # doesn't give it to you.
  # # The Options directive is both complicated and important. Please see
  # # http://httpd.apache.org/docs/2.4/mod/core.html#options
  # # for more information.#
  # Options Indexes FollowSymLinks
  # # AllowOverride controls what directives may be placed in .htaccess files.
  # # It can be "All", "None", or any combination of the keywords:
  # # AllowOverride FileInfo AuthConfig Limit
  # AllowOverride None
  # # Controls who can get stuff from this server.
  # Require all granted
  #</Directory>
  # DirectoryIndex: sets the file that Apache will serve if a directory
  # is requested.
  <IfModule dir_module>
  DirectoryIndex index.html
  </IfModule>
  # The following lines prevent .htaccess and .htpasswd files from being
  # viewed by Web clients.
  <Files ".ht*">
  Require all denied
  </Files>
  # ErrorLog: The location of the error log file.
  # If you do not specify an ErrorLog directive within a <VirtualHost>
  # container, error messages relating to that virtual host will be
  # logged here. If you *do* define an error logfile for a <VirtualHost>
  # container, that host's errors will be logged there and not here.
  ErrorLog "/var/log/httpd/error_log"
  # LogLevel: Control the number of messages logged to the error_log.
  # Possible values include: debug, info, notice, warn, error, crit,
  # alert, emerg.
  LogLevel warn
  <IfModule log_config_module>
  # The following directives define some format nicknames for use with
  # a CustomLog directive (see below).
  LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\"" combined
  LogFormat "%h %l %u %t \"%r\" %>s %b" common
  <IfModule logio_module>
  # You need to enable mod_logio.c to use %I and %O
  LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I %O" combinedio
  </IfModule>
  # The location and format of the access logfile (Common Logfile Format).
  # If you do not define any access logfiles within a <VirtualHost>
  # container, they will be logged here. Contrariwise, if you *do*
  # define per-<VirtualHost> access logfiles, transactions will be
  # logged therein and *not* in this file.
  CustomLog "/var/log/httpd/access_log" common
  # If you prefer a logfile with access, agent, and referer information
  # (Combined Logfile Format) you can use the following directive.
  #CustomLog "/var/log/httpd/access_log" combined
  </IfModule>
  <IfModule alias_module>
  # Redirect: Allows you to tell clients about documents that used to
  # exist in your server's namespace, but do not anymore. The client
  # will make a new request for the document at its new location.
  # Example:
  # Redirect permanent /foo http://www.example.com/bar
  # Alias: Maps web paths into filesystem paths and is used to
  # access content that does not live under the DocumentRoot.
  # Example:
  # Alias /webpath /full/filesystem/path
  # If you include a trailing / on /webpath then the server will
  # require it to be present in the URL. You will also likely
  # need to provide a <Directory> section to allow access to
  # the filesystem path.
  # ScriptAlias: This controls which directories contain server scripts.
  # ScriptAliases are essentially the same as Aliases, except that
  # documents in the target directory are treated as applications and
  # run by the server when requested rather than as documents sent to the
  # client. The same rules about trailing "/" apply to ScriptAlias
  # directives as to Alias.
  ScriptAlias /cgi-bin/ "/srv/http/cgi-bin/"
  </IfModule>
  <IfModule cgid_module>
  # ScriptSock: On threaded servers, designate the path to the UNIX
  # socket used to communicate with the CGI daemon of mod_cgid.
  #Scriptsock cgisock
  </IfModule>
  # "/srv/http/cgi-bin" should be changed to whatever your ScriptAliased
  # CGI directory exists, if you have that configured.
  <Directory "/srv/http/cgi-bin">
  AllowOverride None
  Options None
  Require all granted
  </Directory>
  <IfModule mime_module>
  # TypesConfig points to the file containing the list of mappings from
  # filename extension to MIME-type.
  TypesConfig conf/mime.types
  # AddType allows you to add to or override the MIME configuration
  # file specified in TypesConfig for specific file types.
  #AddType application/x-gzip .tgz
  # AddEncoding allows you to have certain browsers uncompress
  # information on the fly. Note: Not all browsers support this.
  #AddEncoding x-compress .Z
  #AddEncoding x-gzip .gz .tgz
  # If the AddEncoding directives above are commented-out, then you
  # probably should define those extensions to indicate media types:
  AddType application/x-compress .Z
  AddType application/x-gzip .gz .tgz
  # AddHandler allows you to map certain file extensions to "handlers":
  # actions unrelated to filetype. These can be either built into the server
  # or added with the Action directive (see below)
  # To use CGI scripts outside of ScriptAliased directories:
  # (You will also need to add "ExecCGI" to the "Options" directive.)
  #AddHandler cgi-script .cgi
  # For type maps (negotiated resources):
  #AddHandler type-map var
  # Filters allow you to process content before it is sent to the client.
  # To parse .shtml files for server-side includes (SSI):
  # (You will also need to add "Includes" to the "Options" directive.)
  #AddType text/html .shtml
  #AddOutputFilter INCLUDES .shtml
  </IfModule>
  # The mod_mime_magic module allows the server to use various hints from the
  # contents of the file itself to determine its type. The MIMEMagicFile
  # directive tells the module where the hint definitions are located.
  #MIMEMagicFile conf/magic
  # Customizable error responses come in three flavors:
  # 1) plain text 2) local redirects 3) external redirects
  # Some examples:
  #ErrorDocument 500 "The server made a boo boo."
  #ErrorDocument 404 /missing.html
  #ErrorDocument 404 "/cgi-bin/missing_handler.pl"
  #ErrorDocument 402 http://www.example.com/subscription_info.html
  # MaxRanges: Maximum number of Ranges in a request before
  # returning the entire resource, or one of the special
  # values 'default', 'none' or 'unlimited'.
  # Default setting is to accept 200 Ranges.
  #MaxRanges unlimited
  # EnableMMAP and EnableSendfile: On systems that support it,
  # memory-mapping or the sendfile syscall may be used to deliver
  # files. This usually improves server performance, but must
  # be turned off when serving from networked-mounted
  # filesystems or if support for these functions is otherwise
  # broken on your system.
  # Defaults: EnableMMAP On, EnableSendfile Off
  #EnableMMAP off
  #EnableSendfile on
  # Supplemental configuration
  # The configuration files in the conf/extra/ directory can be
  # included to add extra features or to modify the default configuration of
  # the server, or you may simply copy their contents here and change as
  # necessary.
  # Server-pool management (MPM specific)
  Include conf/extra/httpd-mpm.conf
  # Multi-language error messages
  Include conf/extra/httpd-multilang-errordoc.conf
  # Fancy directory listings
  Include conf/extra/httpd-autoindex.conf
  # Language settings
  Include conf/extra/httpd-languages.conf
  # User home directories
  Include conf/extra/httpd-userdir.conf
  # Real-time info on requests and configuration
  #Include conf/extra/httpd-info.conf
  # Virtual hosts
  #Include conf/extra/httpd-vhosts.conf
  # Local access to the Apache HTTP Server Manual
  #Include conf/extra/httpd-manual.conf
  # Distributed authoring and versioning (WebDAV)
  #Include conf/extra/httpd-dav.conf
  # Various default settings
  Include conf/extra/httpd-default.conf
  # Configure mod_proxy_html to understand HTML4/XHTML1
  <IfModule proxy_html_module>
  Include conf/extra/proxy-html.conf
  </IfModule>
  # Secure (SSL/TLS) connections
  Include /etc/httpd/conf/extra/httpd-ssl.conf
  # Note: The following must must be present to support
  # starting without SSL on platforms with no /dev/random equivalent
  # but a statically compiled-in mod_ssl.
  <IfModule ssl_module>
  SSLRandomSeed startup builtin
  SSLRandomSeed connect builtin
  </IfModule>
  # uncomment out the below to deal with user agents that deliberately
  # violate open standards by misusing DNT (DNT *must* be a specific
  # end-user choice)
  #<IfModule setenvif_module>
  #BrowserMatch "MSIE 10.0;" bad_DNT
  #</IfModule>
  #<IfModule headers_module>
  #RequestHeader unset DNT env=bad_DNT
  #</IfModule>
  Edit: inserted tl;dr
  Last edited by arch_on_pi (2014-05-18 21:33:24)

  Remember that Arch Arm is a different distribution, but we try to bend the rules and provide limited support for them.  This may or may not be unique to Arch Arm, so you might try asking on their forums as well.

• WLC, ISE certificate authentication issue

  Hi Folks,
  This is the setup:
  Redundant pair of WLC 5508 (version 7.5.102.0)
  Redundant Pair of ISE (Version 1.2.0.899)
       The ISE servers are connected to the corporate Active Directory (the AD servers are configured as external identity sources)
       There is a rule based authentication profile which queries the AD identity source when it receives wireless 802.1x authentication requests.
  A corporate WLAN is configured on the WLC:
  L2 security WPA+WPA2 (AES Encryption), ISE server 1 and 2 configured as the AAA Authentication servers.
  This is all working correctly - I associate to the Corp WLAN (Authentication WPA2 enterprise, encryption AES CCMP, 802.1x auth MS-CHAPv2 using AD credentials) ... I can see the authentication request being processed correctly by the ISE, and I get access to the network.
  The client I am working for wants to restrict access to the WLAN to users who have been allocated a certificate from the corporate CA, and this is where I am having issues.
  I took a test laptop, and requested a new certificate (mmc, add snapin, certificates, current user, personal, request new cert).   
  The cert that was issued was signed only by a Corporate AD server with CA services (there is nothing in the certification path above the cert I was issued, apart from the issuing server itself).   I changed the security settings of my connection to the corp wlan (using TLS instead of mschapv2, and pointing to the certificate I requested)
  Initally authentication failed because the ISE did not trust the CA that provided my certificate (the ISE radius authentication troubleshooting tool had this entry: '12514 EAP-TLS failed SSL/TLS handshake because of an unknown CA in the client certificates chain').
  I exported the issuing CA's root certificate (followed this process http://support.microsoft.com/kb/555252), and imported the cert into ISE (administration, system, certificates, certificate store, import) - status of the cert is enabled, and it is trusted for client auth.
  After I did this, I could no longer associate to the Corp WLAN.  
  My laptop's wireless management software logs were filled with messages saying that the authentication server did not respond.   
  The ISE troubleshooting tool reported no new failed or successful authentication attempts.   
  Strangely though, the WLC log had a lot of entries like this: 'AAA Authentication Failure for UserName:host/laptop_asset_tag.corp.com User Type: WLAN USER'.
  It looks like the WLC is trying to locally authenticate my session when I use TLS, rather than hand off the authentication request to the ISE.    Other users who authenticate using their AD credentials only (as I described above) can still authenticate ok.
  Anyone able to shed some light on where I have gone wrong or what additional troubleshooting I can do?
  Thanks in advance,
  Darragh

  Hi,
  I had the same issue with microsoft CA and running ISE 1.1.4. The CA file was "corrupted", but you didn't see it at first glance. You can verify if the client CA matches the root CA via openssl.
  Try to export the root CA and the issuing CA in a different format (Base64), import both root and issuing into ise and check if that works. Also check if "Trust for client authentication or Secure Syslog services" in the Certificate Store -> CA -> Edit, is set.
  If this does not work, try to import the CA into another system and export it, then import into ISE.
  Regards,

• [SOLVED] Problem building php 5.3 with openssl

  Hi,
  I stuck with this issue and don't really know what's wrong and what to do:
  $ pacman -Qs openssl
  local/lib32-openssl 1.0.1.i-1
  The Open Source toolkit for Secure Sockets Layer and Transport Layer Security (32-bit)
  local/openssl 1.0.1.i-1
  The Open Source toolkit for Secure Sockets Layer and Transport Layer Security
  $ ./configure --with-openssl && make
  loading cache ./config.cache
  checking for Cygwin environment... (cached) no
  checking for mingw32 environment... (cached) no
  checking for egrep... (cached) grep -E
  checking for a sed that does not truncate output... (cached) /usr/bin/sed
  checking host system type... x86_64-unknown-linux-gnu
  checking target system type... x86_64-unknown-linux-gnu
  checking for gcc... (cached) gcc
  checking whether the C compiler (gcc ) works... yes
  checking whether the C compiler (gcc ) is a cross-compiler... no
  checking whether we are using GNU C... (cached) yes
  checking whether gcc accepts -g... (cached) yes
  checking how to run the C preprocessor... (cached) gcc -E
  checking for icc... no
  checking for suncc... no
  checking whether gcc and cc understand -c and -o together... (cached) yes
  checking how to run the C preprocessor... gcc -E
  checking for AIX... no
  checking whether ln -s works... (cached) yes
  checking for system library directory... lib
  checking whether to enable runpaths... yes
  checking if compiler supports -R... (cached) no
  checking if compiler supports -Wl,-rpath,... (cached) yes
  checking for gawk... (cached) gawk
  checking for bison... (cached) bison -y
  checking for bison version... (cached) 2.6.4 (ok)
  checking for re2c... (cached) re2c
  checking for re2c version... (cached) 0.13.7.5 (ok)
  checking whether to enable computed goto gcc extension with re2c... no
  checking whether to force non-PIC code in shared modules... no
  checking whether /dev/urandom exists... yes
  checking for pthreads_cflags... (cached) -pthread
  checking for pthreads_lib... (cached)
  [1mConfiguring SAPI modules[m
  checking for AOLserver support... no
  checking for Apache 1.x module support via DSO through APXS... no
  checking for Apache 1.x module support... no
  checking whether to enable Apache charset compatibility option... no
  checking for Apache 2.0 filter-module support via DSO through APXS... no
  checking for Apache 2.0 handler-module support via DSO through APXS... no
  checking for Apache 1.x (hooks) module support via DSO through APXS... no
  checking for Apache 1.x (hooks) module support... no
  checking whether to enable Apache charset compatibility option... no
  checking for Caudium support... no
  checking for CLI build... yes
  checking for Continuity support... no
  checking for embedded SAPI library support... no
  checking for FPM build... no
  checking for Zeus ISAPI support... no
  checking for LiteSpeed support... no
  checking for Milter support... no
  checking for NSAPI support... no
  checking for PHTTPD support... no
  checking for Pi3Web support... no
  checking whether Roxen module is build using ZTS... no
  checking for Roxen/Pike support...
  checking for thttpd... no
  checking for TUX... no
  checking for webjames... no
  checking whether to build CGI binary... yes
  checking for socklen_t in sys/socket.h... yes
  checking for sun_len in sys/un.h... no
  checking whether cross-process locking is required by accept()... no
  checking for chosen SAPI module... cgi
  [1mRunning system checks[m
  checking for sendmail... no
  checking whether system uses EBCDIC... (cached) no
  checking whether byte ordering is bigendian... (cached) no
  checking whether writing to stdout works... (cached) yes
  checking for socket... yes
  checking for socketpair... yes
  checking for htonl... yes
  checking for gethostname... yes
  checking for gethostbyaddr... yes
  checking for yp_get_default_domain... no
  checking for __yp_get_default_domain... no
  checking for yp_get_default_domain in -lnsl... yes
  checking for dlopen... no
  checking for __dlopen... no
  checking for dlopen in -ldl... yes
  checking for sin in -lm... (cached) yes
  checking for inet_aton... yes
  checking for ANSI C header files... (cached) yes
  checking for dirent.h that defines DIR... (cached) yes
  checking for opendir in -ldir... (cached) no
  checking for inttypes.h... (cached) yes
  checking for stdint.h... (cached) yes
  checking for dirent.h... (cached) yes
  checking for ApplicationServices/ApplicationServices.h... (cached) no
  checking for sys/param.h... (cached) yes
  checking for sys/types.h... (cached) yes
  checking for sys/time.h... (cached) yes
  checking for netinet/in.h... (cached) yes
  checking for alloca.h... (cached) yes
  checking for arpa/inet.h... (cached) yes
  checking for arpa/nameser.h... (cached) yes
  checking for assert.h... (cached) yes
  checking for crypt.h... (cached) yes
  checking for dns.h... (cached) no
  checking for fcntl.h... (cached) yes
  checking for grp.h... (cached) yes
  checking for ieeefp.h... (cached) no
  checking for langinfo.h... (cached) yes
  checking for limits.h... (cached) yes
  checking for locale.h... (cached) yes
  checking for monetary.h... (cached) yes
  checking for netdb.h... (cached) yes
  checking for pwd.h... (cached) yes
  checking for resolv.h... (cached) yes
  checking for signal.h... (cached) yes
  checking for stdarg.h... (cached) yes
  checking for stdlib.h... (cached) yes
  checking for string.h... (cached) yes
  checking for syslog.h... (cached) yes
  checking for sysexits.h... (cached) yes
  checking for sys/ioctl.h... (cached) yes
  checking for sys/file.h... (cached) yes
  checking for sys/mman.h... (cached) yes
  checking for sys/mount.h... (cached) yes
  checking for sys/poll.h... (cached) yes
  checking for sys/resource.h... (cached) yes
  checking for sys/select.h... (cached) yes
  checking for sys/socket.h... (cached) yes
  checking for sys/stat.h... (cached) yes
  checking for sys/statfs.h... (cached) yes
  checking for sys/statvfs.h... (cached) yes
  checking for sys/vfs.h... (cached) yes
  checking for sys/sysexits.h... (cached) no
  checking for sys/varargs.h... (cached) no
  checking for sys/wait.h... (cached) yes
  checking for sys/loadavg.h... (cached) no
  checking for termios.h... (cached) yes
  checking for unistd.h... (cached) yes
  checking for unix.h... (cached) no
  checking for utime.h... (cached) yes
  checking for sys/utsname.h... (cached) yes
  checking for sys/ipc.h... (cached) yes
  checking for dlfcn.h... (cached) yes
  checking for assert.h... (cached) yes
  checking for fopencookie... (cached) yes
  checking for broken getcwd... no
  checking for broken libc stdio... (cached) yes
  checking whether struct tm is in sys/time.h or time.h... (cached) time.h
  checking for tm_zone in struct tm... (cached) yes
  checking for missing declarations of reentrant functions... done
  checking for fclose declaration... ok
  checking for tm_gmtoff in struct tm... (cached) yes
  checking for struct flock... (cached) yes
  checking for socklen_t... (cached) yes
  checking size of size_t... (cached) 8
  checking size of long long... (cached) 8
  checking size of long long int... (cached) 8
  checking size of long... (cached) 8
  checking size of int... (cached) 4
  checking size of intmax_t... (cached) 8
  checking size of ssize_t... (cached) 8
  checking size of ptrdiff_t... (cached) 8
  checking for st_blksize in struct stat... (cached) yes
  checking for st_blocks in struct stat... (cached) yes
  checking for st_rdev in struct stat... (cached) yes
  checking for size_t... (cached) yes
  checking for uid_t in sys/types.h... (cached) yes
  checking for struct sockaddr_storage... (cached) yes
  checking for field sa_len in struct sockaddr... (cached) no
  checking for IPv6 support... (cached) yes
  checking for vprintf... (cached) yes
  checking for alphasort... (cached) yes
  checking for asctime_r... (cached) yes
  checking for chroot... (cached) yes
  checking for ctime_r... (cached) yes
  checking for cuserid... (cached) yes
  checking for crypt... (cached) no
  checking for flock... (cached) yes
  checking for ftok... (cached) yes
  checking for funopen... (cached) no
  checking for gai_strerror... (cached) yes
  checking for gcvt... (cached) yes
  checking for getloadavg... (cached) yes
  checking for getlogin... (cached) yes
  checking for getprotobyname... (cached) yes
  checking for getprotobynumber... (cached) yes
  checking for getservbyname... (cached) yes
  checking for getservbyport... (cached) yes
  checking for gethostname... (cached) yes
  checking for getrusage... (cached) yes
  checking for gettimeofday... (cached) yes
  checking for gmtime_r... (cached) yes
  checking for getpwnam_r... (cached) yes
  checking for getgrnam_r... (cached) yes
  checking for getpwuid_r... (cached) yes
  checking for grantpt... (cached) yes
  checking for inet_ntoa... (cached) yes
  checking for inet_ntop... (cached) yes
  checking for inet_pton... (cached) yes
  checking for isascii... (cached) yes
  checking for link... (cached) yes
  checking for localtime_r... (cached) yes
  checking for lockf... (cached) yes
  checking for lchown... (cached) yes
  checking for lrand48... (cached) yes
  checking for memcpy... (cached) yes
  checking for memmove... (cached) yes
  checking for mkstemp... (cached) yes
  checking for mmap... (cached) yes
  checking for nl_langinfo... (cached) yes
  checking for perror... (cached) yes
  checking for poll... (cached) yes
  checking for ptsname... (cached) yes
  checking for putenv... (cached) yes
  checking for realpath... (cached) yes
  checking for random... (cached) yes
  checking for rand_r... (cached) yes
  checking for scandir... (cached) yes
  checking for setitimer... (cached) yes
  checking for setlocale... (cached) yes
  checking for localeconv... (cached) yes
  checking for setenv... (cached) yes
  checking for setpgid... (cached) yes
  checking for setsockopt... (cached) yes
  checking for setvbuf... (cached) yes
  checking for shutdown... (cached) yes
  checking for sin... (cached) yes
  checking for snprintf... (cached) yes
  checking for srand48... (cached) yes
  checking for srandom... (cached) yes
  checking for statfs... (cached) yes
  checking for statvfs... (cached) yes
  checking for std_syslog... (cached) no
  checking for strcasecmp... (cached) yes
  checking for strcoll... (cached) yes
  checking for strdup... (cached) yes
  checking for strerror... (cached) yes
  checking for strftime... (cached) yes
  checking for strnlen... (cached) yes
  checking for strptime... (cached) yes
  checking for strstr... (cached) yes
  checking for strtok_r... (cached) yes
  checking for symlink... (cached) yes
  checking for tempnam... (cached) yes
  checking for tzset... (cached) yes
  checking for unlockpt... (cached) yes
  checking for unsetenv... (cached) yes
  checking for usleep... (cached) yes
  checking for utime... (cached) yes
  checking for vsnprintf... (cached) yes
  checking for vasprintf... (cached) yes
  checking for asprintf... (cached) yes
  checking for nanosleep... (cached) yes
  checking for nanosleep in -lrt... yes
  checking for getaddrinfo... (cached) yes
  checking for __sync_fetch_and_add... (cached) yes
  checking for strlcat... (cached) no
  checking for strlcpy... (cached) no
  checking for getopt... (cached) yes
  checking whether utime accepts a null argument... (cached) yes
  checking for working alloca.h... (cached) yes
  checking for alloca... (cached) yes
  checking for declared timezone... (cached) yes
  checking for type of reentrant time-related functions... (cached) POSIX
  checking for readdir_r... (cached) yes
  checking for type of readdir_r... (cached) POSIX
  checking for in_addr_t... (cached) yes
  checking for crypt_r... (cached) no
  [1mGeneral settings[m
  checking whether to include gcov symbols... no
  checking whether to include debugging symbols... no
  checking layout of installed files... PHP
  checking path to configuration file... DEFAULT
  checking where to scan for configuration files...
  checking whether to enable safe mode by default... no
  checking for safe mode exec dir... /usr/local/php/bin
  checking whether to enable PHP's own SIGCHLD handler... no
  checking whether to enable magic quotes by default... no
  checking whether to explicitly link against libgcc... no
  checking whether to enable short tags by default... yes
  checking whether to enable dmalloc... no
  checking whether to enable IPv6 support... yes
  checking how big to make fd sets... using system default
  [1mConfiguring extensions[m
  checking size of long... (cached) 8
  checking size of int... (cached) 4
  checking for int32_t... (cached) yes
  checking for uint32_t... (cached) yes
  checking for sys/types.h... (cached) yes
  checking for inttypes.h... (cached) yes
  checking for stdint.h... (cached) yes
  checking for string.h... (cached) yes
  checking for stdlib.h... (cached) yes
  checking for strtoll... (cached) yes
  checking for atoll... (cached) yes
  checking for strftime... (cached) yes
  checking which regex library to use... php
  checking whether to enable LIBXML support... yes
  checking libxml2 install dir... no
  checking for xml2-config path... (cached) /usr/bin/xml2-config
  checking whether libxml build works... (cached) yes
  checking for OpenSSL support... yes
  checking for Kerberos support... no
  checking for DSA_get_default_method in -lssl... (cached) no
  checking for X509_free in -lcrypto... (cached) yes
  checking for pkg-config... (cached) /usr/bin/pkg-config
  checking for PCRE library to use... bundled
  checking whether to enable the SQLite3 extension... yes
  checking bundled sqlite3 library... yes
  checking for ZLIB support... no
  checking if the location of ZLIB install directory is defined... no
  checking whether to enable bc style precision math functions... no
  checking for BZip2 support... no
  checking whether to enable calendar conversion support... no
  checking whether to enable ctype functions... yes
  checking for cURL support... no
  checking if we should use cURL for url streams... no
  checking for QDBM support... no
  checking for GDBM support... no
  checking for NDBM support... no
  checking for Berkeley DB4 support... no
  checking for Berkeley DB3 support... no
  checking for Berkeley DB2 support... no
  checking for DB1 support... no
  checking for DBM support... no
  checking for CDB support... no
  checking for INI File support... no
  checking for FlatFile support... no
  checking whether to enable DBA interface... no
  checking whether to enable DOM support... yes
  checking for xml2-config path... (cached) /usr/bin/xml2-config
  checking whether libxml build works... (cached) yes
  checking for ENCHANT support... no
  checking whether to enable EXIF (metadata from images) support... no
  checking for fileinfo support... yes
  checking for utimes... (cached) yes
  checking for strndup... (cached) yes
  checking whether to enable input filter support... yes
  checking pcre install prefix... no
  checking whether to enable FTP support... no
  checking OpenSSL dir for FTP... no
  checking for GD support... no
  checking for the location of libjpeg... no
  checking for the location of libpng... no
  checking for the location of libXpm... no
  checking for FreeType 2... no
  checking for T1lib support... no
  checking whether to enable truetype string function in GD... no
  checking whether to enable JIS-mapped Japanese font support in GD... no
  checking for GNU gettext support... no
  checking for GNU MP support... no
  checking for mhash support... no
  checking whether to enable hash support... yes
  checking whether byte ordering is bigendian... (cached) no
  checking size of short... (cached) 2
  checking size of int... (cached) 4
  checking size of long... (cached) 8
  checking size of long long... (cached) 8
  checking for iconv support... yes
  checking for iconv... (cached) yes
  checking if iconv is glibc's... yes
  checking if iconv supports errno... yes
  checking if your cpp allows macro usage in include lines... yes
  checking for IMAP support... no
  checking for IMAP Kerberos support... no
  checking for IMAP SSL support... no
  checking for InterBase support... no
  checking whether to enable internationalization support... no
  checking whether to enable JavaScript Object Serialization support... yes
  checking for ANSI C header files... (cached) yes
  checking for LDAP support... no
  checking for LDAP Cyrus SASL support... no
  checking whether to enable multibyte string support... no
  checking whether to enable multibyte regex support... yes
  checking whether to check multibyte regex backtrack... yes
  checking for external libmbfl... no
  checking for external oniguruma... no
  checking for mcrypt support... no
  checking for MSSQL support via FreeTDS... no
  checking for MySQL support... no
  checking for specified location of the MySQL UNIX socket... no
  checking for MySQLi support... no
  checking whether to enable embedded MySQLi support... no
  checking for Oracle Database OCI8 support... no
  checking whether to enable pcntl support... no
  checking whether to enable PDO support... yes
  checking for PDO_DBLIB support via FreeTDS... no
  checking for Firebird support for PDO... no
  checking for MySQL support for PDO... no
  checking Oracle OCI support for PDO... no
  checking for ODBC v3 support for PDO... no
  checking for PostgreSQL support for PDO... no
  checking for sqlite 3 support for PDO... yes
  checking for PDO includes... checking for PDO includes... /home/yuri/_/php-5.3.29/ext
  checking for usleep... (cached) yes
  checking for nanosleep... (cached) yes
  checking for time.h... (cached) yes
  checking for fdatasync in -lrt... (cached) yes
  checking for PostgreSQL support... no
  checking for phar archive support... yes
  checking for phar openssl support... yes
  checking whether to enable POSIX-like functions... yes
  checking for sys/mkdev.h... (cached) no
  checking for seteuid... (cached) yes
  checking for setegid... (cached) yes
  checking for setsid... (cached) yes
  checking for getsid... (cached) yes
  checking for setpgid... (cached) yes
  checking for getpgid... (cached) yes
  checking for ctermid... (cached) yes
  checking for mkfifo... (cached) yes
  checking for mknod... (cached) yes
  checking for getrlimit... (cached) yes
  checking for getlogin... (cached) yes
  checking for getgroups... (cached) yes
  checking for makedev... (cached) no
  checking for initgroups... (cached) yes
  checking for getpwuid_r... (cached) yes
  checking for getgrgid_r... (cached) yes
  checking for working ttyname_r() implementation... yes
  checking for utsname.domainname... (cached) yes
  checking for PSPELL support... no
  checking for libedit readline replacement... no
  checking for readline support... no
  checking for recode support... no
  checking whether to enable PHP sessions... yes
  checking for mm support... no
  checking whether pwrite works... (cached) yes
  checking whether pread works... (cached) yes
  checking whether to enable shmop support... no
  checking whether to enable SimpleXML support... yes
  checking for xml2-config path... (cached) /usr/bin/xml2-config
  checking whether libxml build works... (cached) yes
  checking for SNMP support... no
  checking OpenSSL dir for SNMP... no
  checking whether to enable UCD SNMP hack... no
  checking whether to enable SOAP support... no
  checking whether to enable sockets support... no
  checking whether zend_object_value is packed... no
  checking for sqlite support... yes
  checking whether to enable UTF-8 support in sqlite (default: ISO-8859-1)... no
  checking for PDO includes... (cached) /home/yuri/_/php-5.3.29/ext
  checking for lemon... (cached) lemon
  checking for lemon version... (cached) 1.0 (ok)
  checking size of char *... (cached) 8
  checking for usleep... (cached) yes
  checking for nanosleep... (cached) yes
  checking for time.h... (cached) yes
  checking whether flush should be called explicitly after a buffered io... (cached) no
  checking for crypt in -lcrypt... (cached) yes
  checking for standard DES crypt... (cached) yes
  checking for extended DES crypt... (cached) no
  checking for MD5 crypt... (cached) yes
  checking for Blowfish crypt... (cached) no
  checking for SHA512 crypt... (cached) no
  checking for SHA256 crypt... (cached) no
  checking whether the compiler supports __alignof__... (cached) yes
  checking whether the compiler supports aligned attribute... (cached) yes
  checking for getcwd... (cached) yes
  checking for getwd... (cached) yes
  checking for asinh... (cached) yes
  checking for acosh... (cached) yes
  checking for atanh... (cached) yes
  checking for log1p... (cached) yes
  checking for hypot... (cached) yes
  checking for glob... (cached) yes
  checking for strfmon... (cached) yes
  checking for nice... (cached) yes
  checking for fpclass... (cached) no
  checking for isinf... (cached) yes
  checking for isnan... (cached) yes
  checking for mempcpy... (cached) yes
  checking for strpncpy... (cached) no
  checking for working fnmatch... (cached) yes
  checking for fork... (cached) yes
  checking if your OS can spawn processes with inherited handles... yes
  checking for res_nsearch... no
  checking for __res_nsearch... no
  checking for res_nsearch in -lresolv... no
  checking for __res_nsearch in -lresolv... yes
  checking for dns_search... no
  checking for __dns_search... no
  checking for dns_search in -lresolv... no
  checking for __dns_search in -lresolv... no
  checking for dns_search in -lbind... no
  checking for __dns_search in -lbind... no
  checking for dns_search in -lsocket... no
  checking for __dns_search in -lsocket... no
  checking for dn_expand... no
  checking for __dn_expand... yes
  checking for dn_skipname... no
  checking for __dn_skipname... yes
  checking for res_search... no
  checking for __res_search... yes
  checking whether atof() accepts NAN... (cached) yes
  checking whether atof() accepts INF... (cached) yes
  checking whether HUGE_VAL == INF... (cached) yes
  checking whether HUGE_VAL + -HUGEVAL == NAN... (cached) yes
  checking whether strptime() declaration fails... (cached) no
  checking for wchar.h... (cached) yes
  checking for mblen... (cached) yes
  checking for mbrlen... (cached) yes
  checking for mbsinit... (cached) yes
  checking for mbstate_t... (cached) yes
  checking for atomic.h... (cached) no
  checking for Sybase-CT support... no
  checking whether to enable System V IPC support... no
  checking whether to enable System V semaphore support... no
  checking whether to enable System V shared memory support... no
  checking for TIDY support... no
  checking whether to enable tokenizer support... yes
  checking whether to enable WDDX support... no
  checking libexpat dir for WDDX... no
  checking whether to enable XML support... yes
  checking libexpat install dir... no
  checking for xml2-config path... (cached) /usr/bin/xml2-config
  checking whether libxml build works... (cached) yes
  checking whether to enable XMLReader support... yes
  checking for xml2-config path... (cached) /usr/bin/xml2-config
  checking whether libxml build works... (cached) yes
  checking for XMLRPC-EPI support... no
  checking libexpat dir for XMLRPC-EPI... no
  checking iconv dir for XMLRPC-EPI... no
  checking whether to enable XMLWriter support... yes
  checking for xml2-config path... (cached) /usr/bin/xml2-config
  checking whether libxml build works... (cached) yes
  checking for XSL support... no
  checking for zip archive read/writesupport... no
  checking pcre install prefix... no
  checking whether to enable mysqlnd... no
  checking whether to disable compressed protocol support in mysqlnd... yes
  [1mConfiguring PEAR[m
  checking whether to install PEAR... yes
  [1mConfiguring Zend[m
  checking for bison version... (cached) 2.6.4 (ok)
  checking for inttypes.h... (cached) yes
  checking for stdint.h... (cached) yes
  checking for limits.h... (cached) yes
  checking for malloc.h... (cached) yes
  checking for string.h... (cached) yes
  checking for unistd.h... (cached) yes
  checking for stdarg.h... (cached) yes
  checking for sys/types.h... (cached) yes
  checking for sys/time.h... (cached) yes
  checking for signal.h... (cached) yes
  checking for unix.h... (cached) no
  checking for stdlib.h... (cached) yes
  checking for dlfcn.h... (cached) yes
  checking for size_t... (cached) yes
  checking return type of signal handlers... (cached) void
  checking for uint... (cached) yes
  checking for ulong... (cached) yes
  checking for int32_t... yes
  checking for uint32_t... yes
  checking for vprintf... (cached) yes
  checking for 8-bit clean memcmp... (cached) yes
  checking for working alloca.h... (cached) yes
  checking for alloca... (cached) yes
  checking for memcpy... (cached) yes
  checking for strdup... (cached) yes
  checking for getpid... (cached) yes
  checking for kill... (cached) yes
  checking for strtod... (cached) yes
  checking for strtol... (cached) yes
  checking for finite... (cached) yes
  checking for fpclass... (cached) no
  checking for sigsetjmp... (cached) no
  checking whether sprintf is broken... (cached) no
  checking for finite... (cached) yes
  checking for isfinite... (cached) no
  checking for isinf... (cached) yes
  checking for isnan... (cached) yes
  checking whether fp_except is defined... (cached) no
  checking for usable _FPU_SETCW... yes
  checking for usable fpsetprec... no
  checking for usable _controlfp... no
  checking for usable _controlfp_s... no
  checking whether FPU control word can be manipulated by inline assembler... yes
  checking whether double cast to long preserves least significant bits... no
  checking for dlfcn.h... (cached) yes
  checking whether dlsym() requires a leading underscore in symbol names... no
  checking virtual machine dispatch method... CALL
  checking whether to enable thread-safety... no
  checking whether to enable inline optimization for GCC... yes
  checking whether to enable Zend debugging... no
  checking whether to enable Zend multibyte... no
  checking for inline... (cached) inline
  checking target system is Darwin... no
  checking for MM alignment and log values... done
  checking for memory allocation using mmap(MAP_ANON)... yes
  checking for memory allocation using mmap(/dev/zero)... yes
  checking for mremap... (cached) yes
  [1mConfiguring TSRM[m
  checking for stdarg.h... (cached) yes
  [1mConfiguring libtool[m
  checking build system type... x86_64-unknown-linux-gnu
  checking for ld used by gcc... (cached) /usr/bin/ld
  checking if the linker (/usr/bin/ld) is GNU ld... (cached) yes
  checking for /usr/bin/ld option to reload object files... (cached) -r
  checking for BSD-compatible nm... (cached) /usr/bin/nm -B
  checking how to recognize dependent libraries... (cached) pass_all
  checking for object suffix... (cached) o
  checking for executable suffix... (cached) no
  checking the maximum length of command line arguments... (cached) 1572864
  checking command to parse /usr/bin/nm -B output from gcc object... (cached) ok
  checking for objdir... (cached) .libs
  checking for ar... (cached) ar
  checking for ranlib... (cached) ranlib
  checking for strip... (cached) strip
  checking if gcc supports -fno-rtti -fno-exceptions... (cached) no
  checking for gcc option to produce PIC... -fPIC
  checking if gcc PIC flag -fPIC works... (cached) yes
  checking if gcc static flag -static works... (cached) yes
  checking if gcc supports -c -o file.o... (cached) yes
  checking whether the gcc linker (/usr/bin/ld -m elf_x86_64) supports shared libraries... yes
  checking dynamic linker characteristics... GNU/Linux ld.so
  (cached) (cached) checking how to hardcode library paths into programs... immediate
  checking whether stripping libraries is possible... yes
  checking if libtool supports shared libraries... yes
  checking whether to build shared libraries... no
  checking whether to build static libraries... yes
  creating libtool
  appending configuration tag "CXX" to libtool
  [1mGenerating files[m
  creating ./config.status
  creating php5.spec
  creating main/build-defs.h
  creating scripts/phpize
  creating scripts/man1/phpize.1
  creating scripts/php-config
  creating scripts/man1/php-config.1
  creating sapi/cli/php.1
  creating main/php_config.h
  main/php_config.h is unchanged
  creating main/internal_functions.c
  creating main/internal_functions_cli.c
  +--------------------------------------------------------------------+
  | License: |
  | This software is subject to the PHP License, available in this |
  | distribution in the file LICENSE. By continuing this installation |
  | process, you are bound by the terms of this license agreement. |
  | If you do not agree with the terms of this license, you must abort |
  | the installation process at this point. |
  +--------------------------------------------------------------------+
  Thank you for using PHP.
  /bin/sh /home/yuri/_/php-5.3.29/libtool --silent --preserve-dup-deps --mode=compile gcc -Iext/standard/ -I/home/yuri/_/php-5.3.29/ext/standard/ -DPHP_ATOM_INC -I/home/yuri/_/php-5.3.29/include -I/home/yuri/_/php-5.3.29/main -I/home/yuri/_/php-5.3.29 -I/home/yuri/_/php-5.3.29/ext/date/lib -I/home/yuri/_/php-5.3.29/ext/ereg/regex -I/usr/include/libxml2 -I/home/yuri/_/php-5.3.29/ext/sqlite3/libsqlite -I/home/yuri/_/php-5.3.29/TSRM -I/home/yuri/_/php-5.3.29/Zend -I/usr/include -g -O2 -fvisibility=hidden -c /home/yuri/_/php-5.3.29/ext/standard/info.c -o ext/standard/info.lo
  /bin/sh /home/yuri/_/php-5.3.29/libtool --silent --preserve-dup-deps --mode=compile gcc -Imain/ -I/home/yuri/_/php-5.3.29/main/ -DPHP_ATOM_INC -I/home/yuri/_/php-5.3.29/include -I/home/yuri/_/php-5.3.29/main -I/home/yuri/_/php-5.3.29 -I/home/yuri/_/php-5.3.29/ext/date/lib -I/home/yuri/_/php-5.3.29/ext/ereg/regex -I/usr/include/libxml2 -I/home/yuri/_/php-5.3.29/ext/sqlite3/libsqlite -I/home/yuri/_/php-5.3.29/TSRM -I/home/yuri/_/php-5.3.29/Zend -I/usr/include -g -O2 -fvisibility=hidden -c main/internal_functions.c -o main/internal_functions.lo
  /bin/sh /home/yuri/_/php-5.3.29/libtool --silent --preserve-dup-deps --mode=link gcc -export-dynamic -I/usr/include -g -O2 -fvisibility=hidden ext/date/php_date.lo ext/date/lib/astro.lo ext/date/lib/dow.lo ext/date/lib/parse_date.lo ext/date/lib/parse_tz.lo ext/date/lib/timelib.lo ext/date/lib/tm2unixtime.lo ext/date/lib/unixtime2tm.lo ext/date/lib/parse_iso_intervals.lo ext/date/lib/interval.lo ext/ereg/ereg.lo ext/ereg/regex/regcomp.lo ext/ereg/regex/regexec.lo ext/ereg/regex/regerror.lo ext/ereg/regex/regfree.lo ext/libxml/libxml.lo ext/openssl/openssl.lo ext/openssl/xp_ssl.lo ext/pcre/pcrelib/pcre_chartables.lo ext/pcre/pcrelib/pcre_ucd.lo ext/pcre/pcrelib/pcre_compile.lo ext/pcre/pcrelib/pcre_config.lo ext/pcre/pcrelib/pcre_exec.lo ext/pcre/pcrelib/pcre_fullinfo.lo ext/pcre/pcrelib/pcre_get.lo ext/pcre/pcrelib/pcre_globals.lo ext/pcre/pcrelib/pcre_maketables.lo ext/pcre/pcrelib/pcre_newline.lo ext/pcre/pcrelib/pcre_ord2utf8.lo ext/pcre/pcrelib/pcre_refcount.lo ext/pcre/pcrelib/pcre_study.lo ext/pcre/pcrelib/pcre_tables.lo ext/pcre/pcrelib/pcre_valid_utf8.lo ext/pcre/pcrelib/pcre_version.lo ext/pcre/pcrelib/pcre_xclass.lo ext/pcre/php_pcre.lo ext/sqlite3/sqlite3.lo ext/sqlite3/libsqlite/sqlite3.lo ext/ctype/ctype.lo ext/dom/php_dom.lo ext/dom/attr.lo ext/dom/document.lo ext/dom/domerrorhandler.lo ext/dom/domstringlist.lo ext/dom/domexception.lo ext/dom/namelist.lo ext/dom/processinginstruction.lo ext/dom/cdatasection.lo ext/dom/documentfragment.lo ext/dom/domimplementation.lo ext/dom/element.lo ext/dom/node.lo ext/dom/string_extend.lo ext/dom/characterdata.lo ext/dom/documenttype.lo ext/dom/domimplementationlist.lo ext/dom/entity.lo ext/dom/nodelist.lo ext/dom/text.lo ext/dom/comment.lo ext/dom/domconfiguration.lo ext/dom/domimplementationsource.lo ext/dom/entityreference.lo ext/dom/notation.lo ext/dom/xpath.lo ext/dom/dom_iterators.lo ext/dom/typeinfo.lo ext/dom/domerror.lo ext/dom/domlocator.lo ext/dom/namednodemap.lo ext/dom/userdatahandler.lo ext/fileinfo/fileinfo.lo ext/fileinfo/libmagic/apprentice.lo ext/fileinfo/libmagic/apptype.lo ext/fileinfo/libmagic/ascmagic.lo ext/fileinfo/libmagic/cdf.lo ext/fileinfo/libmagic/cdf_time.lo ext/fileinfo/libmagic/compress.lo ext/fileinfo/libmagic/encoding.lo ext/fileinfo/libmagic/fsmagic.lo ext/fileinfo/libmagic/funcs.lo ext/fileinfo/libmagic/is_tar.lo ext/fileinfo/libmagic/magic.lo ext/fileinfo/libmagic/print.lo ext/fileinfo/libmagic/readcdf.lo ext/fileinfo/libmagic/readelf.lo ext/fileinfo/libmagic/softmagic.lo ext/filter/filter.lo ext/filter/sanitizing_filters.lo ext/filter/logical_filters.lo ext/filter/callback_filter.lo ext/hash/hash.lo ext/hash/hash_md.lo ext/hash/hash_sha.lo ext/hash/hash_ripemd.lo ext/hash/hash_haval.lo ext/hash/hash_tiger.lo ext/hash/hash_gost.lo ext/hash/hash_snefru.lo ext/hash/hash_whirlpool.lo ext/hash/hash_adler32.lo ext/hash/hash_crc32.lo ext/hash/hash_salsa.lo ext/iconv/iconv.lo ext/json/json.lo ext/json/utf8_to_utf16.lo ext/json/utf8_decode.lo ext/json/JSON_parser.lo ext/pdo/pdo.lo ext/pdo/pdo_dbh.lo ext/pdo/pdo_stmt.lo ext/pdo/pdo_sql_parser.lo ext/pdo/pdo_sqlstate.lo ext/pdo_sqlite/pdo_sqlite.lo ext/pdo_sqlite/sqlite_driver.lo ext/pdo_sqlite/sqlite_statement.lo ext/phar/util.lo ext/phar/tar.lo ext/phar/zip.lo ext/phar/stream.lo ext/phar/func_interceptors.lo ext/phar/dirstream.lo ext/phar/phar.lo ext/phar/phar_object.lo ext/phar/phar_path_check.lo ext/posix/posix.lo ext/reflection/php_reflection.lo ext/session/session.lo ext/session/mod_files.lo ext/session/mod_mm.lo ext/session/mod_user.lo ext/simplexml/simplexml.lo ext/simplexml/sxe.lo ext/spl/php_spl.lo ext/spl/spl_functions.lo ext/spl/spl_engine.lo ext/spl/spl_iterators.lo ext/spl/spl_array.lo ext/spl/spl_directory.lo ext/spl/spl_exceptions.lo ext/spl/spl_observer.lo ext/spl/spl_dllist.lo ext/spl/spl_heap.lo ext/spl/spl_fixedarray.lo ext/sqlite/sqlite.lo ext/sqlite/sess_sqlite.lo ext/sqlite/pdo_sqlite2.lo ext/sqlite/libsqlite/src/opcodes.lo ext/sqlite/libsqlite/src/parse.lo ext/sqlite/libsqlite/src/encode.lo ext/sqlite/libsqlite/src/auth.lo ext/sqlite/libsqlite/src/btree.lo ext/sqlite/libsqlite/src/build.lo ext/sqlite/libsqlite/src/delete.lo ext/sqlite/libsqlite/src/expr.lo ext/sqlite/libsqlite/src/func.lo ext/sqlite/libsqlite/src/hash.lo ext/sqlite/libsqlite/src/insert.lo ext/sqlite/libsqlite/src/main.lo ext/sqlite/libsqlite/src/os.lo ext/sqlite/libsqlite/src/pager.lo ext/sqlite/libsqlite/src/printf.lo ext/sqlite/libsqlite/src/random.lo ext/sqlite/libsqlite/src/select.lo ext/sqlite/libsqlite/src/table.lo ext/sqlite/libsqlite/src/tokenize.lo ext/sqlite/libsqlite/src/update.lo ext/sqlite/libsqlite/src/util.lo ext/sqlite/libsqlite/src/vdbe.lo ext/sqlite/libsqlite/src/attach.lo ext/sqlite/libsqlite/src/btree_rb.lo ext/sqlite/libsqlite/src/pragma.lo ext/sqlite/libsqlite/src/vacuum.lo ext/sqlite/libsqlite/src/copy.lo ext/sqlite/libsqlite/src/vdbeaux.lo ext/sqlite/libsqlite/src/date.lo ext/sqlite/libsqlite/src/where.lo ext/sqlite/libsqlite/src/trigger.lo ext/standard/crypt_freesec.lo ext/standard/crypt_blowfish.lo ext/standard/crypt_sha512.lo ext/standard/crypt_sha256.lo ext/standard/php_crypt_r.lo ext/standard/array.lo ext/standard/base64.lo ext/standard/basic_functions.lo ext/standard/browscap.lo ext/standard/crc32.lo ext/standard/crypt.lo ext/standard/cyr_convert.lo ext/standard/datetime.lo ext/standard/dir.lo ext/standard/dl.lo ext/standard/dns.lo ext/standard/exec.lo ext/standard/file.lo ext/standard/filestat.lo ext/standard/flock_compat.lo ext/standard/formatted_print.lo ext/standard/fsock.lo ext/standard/head.lo ext/standard/html.lo ext/standard/image.lo ext/standard/info.lo ext/standard/iptc.lo ext/standard/lcg.lo ext/standard/link.lo ext/standard/mail.lo ext/standard/math.lo ext/standard/md5.lo ext/standard/metaphone.lo ext/standard/microtime.lo ext/standard/pack.lo ext/standard/pageinfo.lo ext/standard/quot_print.lo ext/standard/rand.lo ext/standard/soundex.lo ext/standard/string.lo ext/standard/scanf.lo ext/standard/syslog.lo ext/standard/type.lo ext/standard/uniqid.lo ext/standard/url.lo ext/standard/var.lo ext/standard/versioning.lo ext/standard/assert.lo ext/standard/strnatcmp.lo ext/standard/levenshtein.lo ext/standard/incomplete_class.lo ext/standard/url_scanner_ex.lo ext/standard/ftp_fopen_wrapper.lo ext/standard/http_fopen_wrapper.lo ext/standard/php_fopen_wrapper.lo ext/standard/credits.lo ext/standard/css.lo ext/standard/var_unserializer.lo ext/standard/ftok.lo ext/standard/sha1.lo ext/standard/user_filters.lo ext/standard/uuencode.lo ext/standard/filters.lo ext/standard/proc_open.lo ext/standard/streamsfuncs.lo ext/standard/http.lo ext/tokenizer/tokenizer.lo ext/tokenizer/tokenizer_data.lo ext/xml/xml.lo ext/xml/compat.lo ext/xmlreader/php_xmlreader.lo ext/xmlwriter/php_xmlwriter.lo TSRM/TSRM.lo TSRM/tsrm_strtok_r.lo TSRM/tsrm_virtual_cwd.lo main/main.lo main/snprintf.lo main/spprintf.lo main/php_sprintf.lo main/safe_mode.lo main/fopen_wrappers.lo main/alloca.lo main/php_scandir.lo main/php_ini.lo main/SAPI.lo main/rfc1867.lo main/php_content_types.lo main/strlcpy.lo main/strlcat.lo main/mergesort.lo main/reentrancy.lo main/php_variables.lo main/php_ticks.lo main/network.lo main/php_open_temporary_file.lo main/php_logos.lo main/output.lo main/getopt.lo main/streams/streams.lo main/streams/cast.lo main/streams/memory.lo main/streams/filter.lo main/streams/plain_wrapper.lo main/streams/userspace.lo main/streams/transports.lo main/streams/xp_socket.lo main/streams/mmap.lo main/streams/glob_wrapper.lo Zend/zend_language_parser.lo Zend/zend_language_scanner.lo Zend/zend_ini_parser.lo Zend/zend_ini_scanner.lo Zend/zend_alloc.lo Zend/zend_compile.lo Zend/zend_constants.lo Zend/zend_dynamic_array.lo Zend/zend_execute_API.lo Zend/zend_highlight.lo Zend/zend_llist.lo Zend/zend_opcode.lo Zend/zend_operators.lo Zend/zend_ptr_stack.lo Zend/zend_stack.lo Zend/zend_variables.lo Zend/zend.lo Zend/zend_API.lo Zend/zend_extensions.lo Zend/zend_hash.lo Zend/zend_list.lo Zend/zend_indent.lo Zend/zend_builtin_functions.lo Zend/zend_sprintf.lo Zend/zend_ini.lo Zend/zend_qsort.lo Zend/zend_multibyte.lo Zend/zend_ts_hash.lo Zend/zend_stream.lo Zend/zend_iterators.lo Zend/zend_interfaces.lo Zend/zend_exceptions.lo Zend/zend_strtod.lo Zend/zend_gc.lo Zend/zend_closures.lo Zend/zend_float.lo Zend/zend_objects.lo Zend/zend_object_handlers.lo Zend/zend_objects_API.lo Zend/zend_default_classes.lo Zend/zend_execute.lo sapi/cgi/cgi_main.lo sapi/cgi/fastcgi.lo main/internal_functions.lo -lcrypt -lresolv -lcrypt -lrt -lrt -lm -ldl -lnsl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lcrypt -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lxml2 -lz -lm -ldl -lcrypt -o sapi/cgi/php-cgi
  ext/openssl/openssl.o: In function `zm_startup_openssl':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:992: undefined reference to `SSL_library_init'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:993: undefined reference to `OpenSSL_add_all_ciphers'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:994: undefined reference to `OpenSSL_add_all_digests'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:995: undefined reference to `OPENSSL_add_all_algorithms_noconf'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:997: undefined reference to `ERR_load_ERR_strings'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:998: undefined reference to `ERR_load_crypto_strings'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:999: undefined reference to `ERR_load_EVP_strings'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1003: undefined reference to `SSL_get_ex_new_index'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1078: undefined reference to `X509_get_default_cert_area'
  ext/openssl/openssl.o: In function `zm_info_openssl':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1108: undefined reference to `SSLeay_version'
  ext/openssl/openssl.o: In function `zm_shutdown_openssl':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1118: undefined reference to `EVP_cleanup'
  ext/openssl/openssl.o: In function `add_assoc_name_entry':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:567: undefined reference to `X509_NAME_entry_count'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:572: undefined reference to `X509_NAME_get_entry'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:573: undefined reference to `X509_NAME_ENTRY_get_object'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:574: undefined reference to `OBJ_obj2nid'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:578: undefined reference to `OBJ_nid2sn'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:593: undefined reference to `X509_NAME_get_entry'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:594: undefined reference to `X509_NAME_ENTRY_get_data'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:595: undefined reference to `ASN1_STRING_type'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:596: undefined reference to `ASN1_STRING_to_UTF8'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:588: undefined reference to `X509_NAME_get_index_by_OBJ'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:567: undefined reference to `X509_NAME_entry_count'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:601: undefined reference to `ASN1_STRING_data'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:602: undefined reference to `ASN1_STRING_length'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:580: undefined reference to `OBJ_nid2ln'
  ext/openssl/openssl.o: In function `asn1_time_to_time_t':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:647: undefined reference to `ASN1_STRING_type'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:652: undefined reference to `ASN1_STRING_length'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:652: undefined reference to `ASN1_STRING_data'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:657: undefined reference to `ASN1_STRING_length'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:662: undefined reference to `ASN1_STRING_data'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:668: undefined reference to `ASN1_STRING_length'
  ext/openssl/openssl.o: In function `setup_verify':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1686: undefined reference to `X509_STORE_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1728: undefined reference to `X509_LOOKUP_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1728: undefined reference to `X509_STORE_add_lookup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1730: undefined reference to `X509_LOOKUP_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1734: undefined reference to `X509_LOOKUP_hash_dir'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1734: undefined reference to `X509_STORE_add_lookup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1736: undefined reference to `X509_LOOKUP_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1709: undefined reference to `X509_LOOKUP_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1709: undefined reference to `X509_STORE_add_lookup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1710: undefined reference to `X509_LOOKUP_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1717: undefined reference to `X509_LOOKUP_hash_dir'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1717: undefined reference to `X509_STORE_add_lookup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1718: undefined reference to `X509_LOOKUP_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1728: undefined reference to `X509_LOOKUP_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1728: undefined reference to `X509_STORE_add_lookup'
  ext/openssl/openssl.o: In function `php_sk_X509_free':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1786: undefined reference to `X509_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1784: undefined reference to `sk_pop'
  ext/openssl/openssl.o: In function `zif_openssl_pkcs12_read':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2024: undefined reference to `BIO_s_mem'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2024: undefined reference to `BIO_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2026: undefined reference to `BIO_write'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2092: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2095: undefined reference to `EVP_PKEY_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2098: undefined reference to `X509_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2029: undefined reference to `d2i_PKCS12_bio'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2030: undefined reference to `PKCS12_parse'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2036: undefined reference to `BIO_s_mem'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2036: undefined reference to `BIO_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2037: undefined reference to `PEM_write_bio_X509'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2044: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2046: undefined reference to `BIO_s_mem'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2046: undefined reference to `BIO_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2047: undefined reference to `PEM_write_bio_PrivateKey'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2054: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2073: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2075: undefined reference to `X509_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2061: undefined reference to `sk_pop'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2064: undefined reference to `BIO_s_mem'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2064: undefined reference to `BIO_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2065: undefined reference to `PEM_write_bio_X509'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2067: undefined reference to `BIO_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2078: undefined reference to `sk_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2086: undefined reference to `PKCS12_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2049: undefined reference to `BIO_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2039: undefined reference to `BIO_ctrl'
  ext/openssl/openssl.o: In function `php_openssl_dispose_config':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:859: undefined reference to `EVP_PKEY_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:863: undefined reference to `CONF_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:867: undefined reference to `CONF_free'
  ext/openssl/openssl.o: In function `php_openssl_load_rand_file':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:884: undefined reference to `RAND_egd'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:883: undefined reference to `RAND_file_name'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:890: undefined reference to `RAND_load_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:891: undefined reference to `RAND_status'
  ext/openssl/openssl.o: In function `php_openssl_write_rand_file':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:916: undefined reference to `RAND_write_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:914: undefined reference to `RAND_file_name'
  ext/openssl/openssl.o: In function `php_openssl_generate_private_key':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2855: undefined reference to `CONF_get_string'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2858: undefined reference to `EVP_PKEY_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2909: undefined reference to `EVP_PKEY_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2885: undefined reference to `DH_generate_parameters'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2889: undefined reference to `DH_get_default_method'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2889: undefined reference to `DH_set_method'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2890: undefined reference to `DH_check'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2895: undefined reference to `DH_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2861: undefined reference to `RSA_generate_key'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2861: undefined reference to `EVP_PKEY_assign'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2868: undefined reference to `DSA_generate_parameters'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2870: undefined reference to `DSA_get_default_method'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2870: undefined reference to `DSA_set_method'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2871: undefined reference to `DSA_generate_key'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2872: undefined reference to `EVP_PKEY_assign'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2876: undefined reference to `DSA_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2890: undefined reference to `DH_generate_key'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2891: undefined reference to `EVP_PKEY_assign'
  ext/openssl/openssl.o: In function `zif_openssl_pkey_get_details':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3282: undefined reference to `BIO_s_mem'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3282: undefined reference to `BIO_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3283: undefined reference to `PEM_write_bio_PUBKEY'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3284: undefined reference to `BIO_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3287: undefined reference to `EVP_PKEY_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3292: undefined reference to `EVP_PKEY_type'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3361: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3302: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3302: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3303: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3303: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3304: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3304: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3305: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3305: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3306: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3306: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3307: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3307: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3308: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3308: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3309: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3309: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3325: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3325: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3326: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3326: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3327: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3327: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3328: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3328: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3329: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3329: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3342: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3342: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3343: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3343: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3344: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3344: undefined reference to `BN_bn2bin'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3345: undefined reference to `BN_num_bits'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3345: undefined reference to `BN_bn2bin'
  ext/openssl/openssl.o: In function `verify_callback':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4408: undefined reference to `X509_STORE_CTX_get_current_cert'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4409: undefined reference to `X509_STORE_CTX_get_error'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4410: undefined reference to `X509_STORE_CTX_get_error_depth'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4413: undefined reference to `SSL_get_ex_data_X509_STORE_CTX_idx'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4413: undefined reference to `X509_STORE_CTX_get_ex_data'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4414: undefined reference to `SSL_get_ex_data'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4427: undefined reference to `X509_STORE_CTX_set_error'
  ext/openssl/openssl.o: In function `zif_openssl_get_md_methods':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4663: undefined reference to `OBJ_NAME_do_all_sorted'
  ext/openssl/openssl.o: In function `zif_openssl_get_cipher_methods':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4679: undefined reference to `OBJ_NAME_do_all_sorted'
  ext/openssl/openssl.o: In function `zif_openssl_digest':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4700: undefined reference to `EVP_get_digestbyname'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4706: undefined reference to `EVP_MD_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4709: undefined reference to `EVP_DigestInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4710: undefined reference to `EVP_DigestUpdate'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4711: undefined reference to `EVP_DigestFinal'
  ext/openssl/openssl.o: In function `zif_openssl_dh_compute_key':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4965: undefined reference to `EVP_PKEY_type'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4969: undefined reference to `BN_bin2bn'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4971: undefined reference to `DH_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4972: undefined reference to `DH_compute_key'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4982: undefined reference to `BN_free'
  ext/openssl/openssl.o: In function `zif_openssl_random_pseudo_bytes':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:5010: undefined reference to `RAND_pseudo_bytes'
  ext/openssl/openssl.o: In function `zif_openssl_error_string':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4079: undefined reference to `ERR_get_error'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4081: undefined reference to `ERR_error_string'
  ext/openssl/openssl.o: In function `zif_openssl_cipher_iv_length':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4938: undefined reference to `EVP_get_cipherbyname'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4944: undefined reference to `EVP_CIPHER_iv_length'
  ext/openssl/openssl.o: In function `zif_openssl_encrypt':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4780: undefined reference to `EVP_get_cipherbyname'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4786: undefined reference to `EVP_CIPHER_key_length'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4795: undefined reference to `EVP_CIPHER_iv_length'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4801: undefined reference to `EVP_CIPHER_block_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4804: undefined reference to `EVP_EncryptInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4808: undefined reference to `EVP_EncryptInit_ex'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4810: undefined reference to `EVP_EncryptUpdate'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4813: undefined reference to `EVP_EncryptFinal'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4836: undefined reference to `EVP_CIPHER_CTX_cleanup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4806: undefined reference to `EVP_CIPHER_CTX_set_key_length'
  ext/openssl/openssl.o: In function `zif_openssl_decrypt':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4864: undefined reference to `EVP_get_cipherbyname'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4880: undefined reference to `EVP_CIPHER_key_length'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4889: undefined reference to `EVP_CIPHER_iv_length'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4891: undefined reference to `EVP_CIPHER_block_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4894: undefined reference to `EVP_DecryptInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4898: undefined reference to `EVP_DecryptInit_ex'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4899: undefined reference to `EVP_DecryptUpdate'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4901: undefined reference to `EVP_DecryptFinal'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4918: undefined reference to `EVP_CIPHER_CTX_cleanup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4896: undefined reference to `EVP_CIPHER_CTX_set_key_length'
  ext/openssl/openssl.o: In function `php_openssl_csr_from_zval':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2295: undefined reference to `BIO_new_mem_buf'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2297: undefined reference to `PEM_read_bio_X509_REQ'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2298: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2293: undefined reference to `BIO_new_file'
  ext/openssl/openssl.o: In function `zif_openssl_csr_export':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2376: undefined reference to `BIO_s_mem'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2376: undefined reference to `BIO_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2381: undefined reference to `PEM_write_bio_X509_REQ'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2394: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2392: undefined reference to `X509_REQ_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2384: undefined reference to `BIO_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2378: undefined reference to `X509_REQ_print'
  ext/openssl/openssl.o: In function `zif_openssl_csr_get_public_key':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2662: undefined reference to `X509_REQ_get_pubkey'
  ext/openssl/openssl.o: In function `php_openssl_x509_from_zval':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1200: undefined reference to `BIO_new_mem_buf'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1205: undefined reference to `d2i_X509'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1205: undefined reference to `PEM_ASN1_read_bio'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1209: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1191: undefined reference to `BIO_new_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1195: undefined reference to `PEM_read_bio_X509'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1196: undefined reference to `BIO_free'
  ext/openssl/openssl.o: In function `zif_openssl_x509_export_to_file':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1247: undefined reference to `BIO_new_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1252: undefined reference to `PEM_write_bio_X509'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1261: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1250: undefined reference to `X509_print'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1259: undefined reference to `X509_free'
  ext/openssl/openssl.o: In function `zif_openssl_x509_export':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1286: undefined reference to `BIO_s_mem'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1286: undefined reference to `BIO_new'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1290: undefined reference to `PEM_write_bio_X509'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1294: undefined reference to `BIO_ctrl'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1303: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1301: undefined reference to `X509_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1288: undefined reference to `X509_print'
  ext/openssl/openssl.o: In function `php_openssl_evp_from_zval':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2813: undefined reference to `BIO_new_mem_buf'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2811: undefined reference to `BIO_new_file'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2819: undefined reference to `PEM_read_bio_PrivateKey'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2820: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2826: undefined reference to `X509_get_pubkey'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2830: undefined reference to `X509_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2795: undefined reference to `BIO_new_mem_buf'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2800: undefined reference to `PEM_read_bio_PUBKEY'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2801: undefined reference to `BIO_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2826: undefined reference to `X509_get_pubkey'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:2793: undefined reference to `BIO_new_file'
  ext/openssl/openssl.o: In function `zif_openssl_private_encrypt':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3844: undefined reference to `EVP_PKEY_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3850: undefined reference to `RSA_private_encrypt'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3871: undefined reference to `EVP_PKEY_free'
  ext/openssl/openssl.o: In function `zif_openssl_private_decrypt':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3902: undefined reference to `EVP_PKEY_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3908: undefined reference to `RSA_private_decrypt'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3934: undefined reference to `EVP_PKEY_free'
  ext/openssl/openssl.o: In function `zif_openssl_public_encrypt':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3967: undefined reference to `EVP_PKEY_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3973: undefined reference to `RSA_public_encrypt'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:3992: undefined reference to `EVP_PKEY_free'
  ext/openssl/openssl.o: In function `zif_openssl_public_decrypt':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4026: undefined reference to `EVP_PKEY_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4032: undefined reference to `RSA_public_decrypt'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4063: undefined reference to `EVP_PKEY_free'
  ext/openssl/openssl.o: In function `zif_openssl_sign':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4129: undefined reference to `EVP_PKEY_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4132: undefined reference to `EVP_DigestInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4133: undefined reference to `EVP_DigestUpdate'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4134: undefined reference to `EVP_SignFinal'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4143: undefined reference to `EVP_MD_CTX_cleanup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4145: undefined reference to `EVP_PKEY_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4119: undefined reference to `EVP_get_digestbyname'
  ext/openssl/openssl.o: In function `zif_openssl_verify':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4191: undefined reference to `EVP_DigestInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4192: undefined reference to `EVP_DigestUpdate'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4193: undefined reference to `EVP_VerifyFinal'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4194: undefined reference to `EVP_MD_CTX_cleanup'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4175: undefined reference to `EVP_get_digestbyname'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4197: undefined reference to `EVP_PKEY_free'
  ext/openssl/openssl.o: In function `zif_openssl_seal':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4232: undefined reference to `EVP_get_cipherbyname'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4259: undefined reference to `EVP_PKEY_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4264: undefined reference to `EVP_EncryptInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4316: undefined reference to `EVP_PKEY_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4275: undefined reference to `EVP_CIPHER_CTX_block_size'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4277: undefined reference to `EVP_SealInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4277: undefined reference to `EVP_EncryptUpdate'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4283: undefined reference to `EVP_SealFinal'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4238: undefined reference to `EVP_rc4'
  ext/openssl/openssl.o: In function `zif_openssl_open':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4356: undefined reference to `EVP_get_cipherbyname'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4367: undefined reference to `EVP_OpenInit'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4367: undefined reference to `EVP_DecryptUpdate'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4371: undefined reference to `EVP_PKEY_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4368: undefined reference to `EVP_OpenFinal'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4362: undefined reference to `EVP_rc4'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:4383: undefined reference to `EVP_PKEY_free'
  ext/openssl/openssl.o: In function `zif_openssl_x509_check_private_key':
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1327: undefined reference to `X509_check_private_key'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1331: undefined reference to `EVP_PKEY_free'
  /home/yuri/_/php-5.3.29/ext/openssl/openssl.c:1334: undefined reference to `X509_free'
  ext/openssl/openssl.o: In function `zif_openssl_x509_parse':
  /hom

  Which one is it supposed to be? I have both versions installed side-by-side in /usr/lib, the prefix was /usr. Also, I was thinking about openssl installing header files into /usr/include. Aren't they needed to compile this php extension? openssl098 basically installs just the library:
  $ pacaur -Ql openssl098
  openssl098 /usr/
  openssl098 /usr/bin/
  openssl098 /usr/bin/openssl098
  openssl098 /usr/lib/
  openssl098 /usr/lib/libcrypto.so.0.9.8
  openssl098 /usr/lib/libssl.so.0.9.8
  openssl098 /usr/share/
  openssl098 /usr/share/licenses/
  openssl098 /usr/share/licenses/openssl098
  Maybe I should go with compiling openssl from sources after all...
  On a side note
  x33a wrote:In case you do try out an older version, make sure to use one with the heartbleed patch.
  Does it matter? I'm going to use it for development.

• Newly Occuring CSS SSL Issue in Chrome, FF10, IE9 with L5 rules; 3 second delay, loss of L5 stickyness

  We recently started suffering an issue with our CSS11501S-K9 units not performing URL stickiness on our SSL wrapped L5 rules.  I've spent dozens of manhours working on the problem, and have quite a bit of information to report, including a solution.  There is a high probability that anybody who uses SSL to an L5 rule on a CSS unit will become affected by this problem over the next few weeks/months as users update their browsers with new SSL patches.  
  We hadn't made any changes to our config in months, and eliminated hardware problems by testing a second unit. 
  Here are the exact symptoms we saw:
    Browsers affected: Firefox 10, Chrome, IE9, others (and some earlier versions of IE depending on patch levels)
    Browsers not affected: FireFox 3.5, w3m 0.5.2, curl7.19.7
    Impact 1: For SSL Rules backed by L5 rules, the initial response to the first request would be 3 seconds.  Further requests on the same TCP connection would not be delayed
    Impact 2: L5 rules being accessed via SSL would nolonger perform any URL based stickiness.  Accessing the same rule skipping SSL, would work fine
  I focused on the 3 second delay, since that was a new issue and was easier to debug than monitoring multiple servers to see if stickiness was broken.  This is what I found when a client tries to connect to an SSL rule that ultimately is routed to a L5 HTTP rule:
  1. Client/CSS perform initial TLS handshake, crypto cyphers determined (nearly instantly)
  2. Client sends HTTP 1.1 request for resource (nearly instantly)
  3. 3 seconds of no traffic in our out of the CSS related to this request
  4. CSS opens an HTTP connection to backend webserver, backend webserver responds (nearly instantly)
  5. The CSS seems to route to the backend server using the balance method (round-robin) instead of the advanced-balance method (url)
  6. Response is sent to the client with the resource (nearly instantly)
  7. Future requests sent from the browser on the same TCP connection have no delay, but the advanced-balance continues to be ignored
  The 3 seconds is quite an exact figure (within a few milliseconds) and appears to be entirely happening inside of the CSS unit itself, since it does not connect to the backend server until after the 3 seconds elapse.  3 seconds smelled like some sort of internal timeout set in the CSS unit after it gives up waiting for something.
  Looking at the packets from affected browsers I discovered that the GET /foobar HTTP/1.1 request was being broken into two separate TLSv1 application messages, the first was 24 bytes and the second was 400 bytes.  Decrypting these messages I found the first message was a
  G
  and the second message was:
  ET /foobar HTTP/1.1
  This essentially splits the initial request the client is sending into two pieces.  This confuses wireshark so much, it doesn't decode this as a HTTP request, and just decodes it as "continuation or non-HTTP traffic".
  On the working browsers I saw only one TLSv1 application message, decrypting it I saw:
  GET /foobar HTTP/1.1
  (obviously I'm simplifying the contents of the request, there were lots of headers and stuff)
  I am aware that the CSS can't handle L5 rules appropriately if they get fragmented, so I suspected this was the problem.  I pulled a packet trace from a few years ago, and at that time confirmed we never saw a double TLSv1 application messages before. 
  A number of openssl vulnerabilities were recently fixed: http://www.ubuntu.com/usn/usn-1357-1
  and browsers may have been recently updated to fix some of these issues, changing the way they encode their traffic. 
  Solution:
  Our ssl config looked something like this:
  ssl-proxy-list SSL_ACCEL
    ssl-server 10 vip address XX.XX.XX.XX
    ssl-server 10 rsakey XXXX
    ssl-server 10 cipher rsa-with-3des-ede-cbc-sha XX.XX.XX.XX 80
    ssl-server 10 cipher rsa-with-rc4-128-sha XX.XX.XX.XX 80
    ssl-server 10 cipher rsa-with-rc4-128-md5 XX.XX.XX.XX 80
    ssl-server 10 unclean-shutdown
    ssl-server 10 rsacert XXXXXX
  Removing:
    ssl-server 10 cipher rsa-with-3des-ede-cbc-sha XX.XX.XX.XX 80
  Solves the problem.  After that's removed, the browsers will nolonger fragment the first character of their request into a separate TLSv1 message.  The 3 second delay goes away, and L5 stickiness is fixed.  The "CBC" in the cyper refers to Cypher-Block-Chaining (a great article here:
  http://en.wikipedia.org/wiki/Cipher-block_chaining), and breaking the payload into multiple packages may have been an attempt to initialize the IV for encryption -- although I'm really just guessing, I stopped researching once I verified this solution was acceptable.
  This issue became serious enough for us to notice first on Monday Feb 13th 2012. We believe a number of our large customers distributed workstation updates over the weekend.  The customers affected were using IE7, although my personal IE7 test workstation did not appear to be affected.  It's quite possible our customers were going through an SSL proxy.  I suspect as more people upgrade their browsers, this will become a more serious issue for CSS users, and I hope this saves somebody a huge headache and problems with their production environment.
  -Joe

  Hi Joe,
  That's a very good analysis you did.
  As you already suspected, the issue comes from the TLS record fragmentation feature that was introduced in the latest browser versions to overcome a SSL vulnerability (http://www.kb.cert.org/vuls/id/864643). Unfortunately, similar issues are happening with multiple products.
  For CSS, the bug tracking this issue is CSCtx68270. The development team is actively working on a fix for it, which should be available (in an interim software release, so to get it you wil have to go through TAC) in the next couple of weeks
  In the meantime, as workaround, you can configure the CSS to use only RC4 cyphers (which is what you were suggesting also). These are not affected by the vulnerability, so, browsers don't apply the record fragmentation when they are in use. This workaround has been tested by several customers already, and the results seem to be very positive.
  Regards
  Daniel

• Cache Memory Allocator \ Short Term Memory Allocator Issues

  Hi all
  I have a number of identically configured (High School) Servers which are giving me the same memory errors (some more frequently than others) and I've run out of ideas.
  They are all HP Proliant DL360 G6 Servers, NetWare 6.5 sp8 with eDir 8.8 sp5.
  The error messages are :
  "Cache memory allocator out of available memory." followed by "Short term memory allocator is out of memory. xxx attempts to get more memory failed. request size in bytes xxxxxxxx from Module SWEEP.NLM"
  The module referred to is always "SWEEP.NLM" (Sophos Anti-virus). A Server reset solves the problem but it is normally back within a month.
  I've posted below a config.txt and segstats.txt from one of the servers.
  I would be grateful if someone could help me with this as it's now becoming a 'headache'.
  Cheers
  Neil Hughes
  *** Memory Pool Configuration for : KLDSRV1
  Time and date : 10:34:44 AM 01/18/2012
  Server version : NetWare 6.5 Support Pack 8
  Server uptime : 32d 20h 00m 00s
  SEG.NLM version : v1.72
  0xFFFFFFFF --------------------------------------------------------------
  | Kernel Reserved Space |
  | |
  | Size : 180,355,071 bytes (172.0 MB) |
  | |
  0xF5400000 --------------------------------------------------------------
  | User Address Space (L!=P) |
  | |
  | User Pool Size : 884,998,144 bytes (844.0 MB) |
  | High Water Mark : 2,936,012,800 bytes (2.73 GB) |
  | |
  0xC0800000 --------------------------------------------------------------
  | Virtual Memory Cache Pool (L!=P) |
  | |
  | VM Pool Size : 1,082,130,432 bytes (1.01 GB) |
  | Available : 1,049,260,032 bytes (1000.7 MB) |
  | Total VM Pages : 1,047,080,960 bytes (998.6 MB) |
  | Free Clean VM : 1,025,097,728 bytes (977.6 MB) |
  | Free Cache VM : 21,983,232 bytes (21.0 MB) |
  | Total LP Pages : 0 bytes (0 KB) |
  | Free Clean LP : 0 bytes (0 KB) |
  | Free Cache LP : 0 bytes (0 KB) |
  | Free Dirty : 0 bytes (0 KB) |
  | VM Pages In Use : 2,179,072 bytes (2.1 MB) |
  | NLM Memory In Use : 1,066,545,152 bytes (1017.1 MB) |
  | NLM/VM Memory : 1,050,394,624 bytes (1001.7 MB) |
  | Largest Segment : 16,240,640 bytes (15.5 MB) |
  | High Water Mark : 1,535,295,488 bytes (1.43 GB) |
  | |
  0x80000000 --------------------------------------------------------------
  | File System Cache Pool (L==P or L!=P) |
  | |
  | FS Pool Size : 2,141,048,832 bytes (1.99 GB) |
  | Available : 252,231,680 bytes (240.5 MB) |
  | Largest Segment : 10,547,200 bytes (10.1 MB) |
  | |
  | NSS Memory (85%) : 1,043,554,304 bytes (995.2 MB) |
  | NSS (avail cache) : 958,324,736 bytes (913.9 MB) |
  | |
  0x00623000 --------------------------------------------------------------
  | DOS / SERVER.NLM |
  | |
  | Size : 6,434,816 bytes (6.1 MB) |
  | |
  0x00000000 --------------------------------------------------------------
  Top 6 Memory Consuming NLMs
  NLM Name Version Date Total NLM Memory
  ================================================== ==============================
  1. DS.NLM 20219.15 12 May 2009 242,957,527 bytes (231.7 MB)
  2. NSS.NLM 3.27.03 7 Jun 2010 225,471,568 bytes (215.0 MB)
  3. SERVER.NLM 5.70.08 3 Oct 2008 197,615,392 bytes (188.5 MB)
  4. SWEEP.NLM 4.73 1 Dec 2011 104,793,570 bytes (99.9 MB)
  5. DBSRV6.NLM 6.00.04 16 May 2001 38,735,938 bytes (36.9 MB)
  6. XMGR.NLM 27610.01.01 30 Mar 2009 32,184,593 bytes (30.7 MB)
  Logical Memory Summary Information
  ================================================== ==============================
  File System Cache Information
  FS Cache Free : 63,897,600 bytes (60.9 MB)
  FS Cache Fragmented : 188,334,080 bytes (179.6 MB)
  FS Cache Largest Segment : 10,547,200 bytes (10.1 MB)
  Logical System Cache Information
  LS Cache Free : 138,153,984 bytes (131.8 MB)
  LS Cache Fragmented : 364,015,616 bytes (347.2 MB)
  LS Cache Uninitialized : 333,455,360 bytes (318.0 MB)
  LS Cache Largest Segment : 16,240,640 bytes (15.5 MB)
  LS Cache Largest Position : 34490000
  Summary Statistics
  Total Free : 202,051,584 bytes (192.7 MB)
  Total Fragmented : 552,349,696 bytes (526.8 MB)
  Highest Physical Address : DF62E000
  User Space : 1,065,353,216 bytes (1016.0 MB)
  User Space (High Water Mark) : 2,936,012,800 bytes (2.73 GB)
  NLM Memory (High Water Mark) : 1,535,295,488 bytes (1.43 GB)
  Kernel Address Space In Use : 2,475,212,800 bytes (2.31 GB)
  Available Kernel Address Space : 754,401,280 bytes (719.5 MB)
  Memory Summary Screen (.ms)
  ================================================== ==============================
  KNOWN MEMORY Bytes Pages Bytes Pages
  Server: 3747295616 914867 Video: 8192 2
  Dos: 111232 27 Other: 131072 32
  FS CACHE KERNEL NLM MEMORY
  Original: 3743006720 913820 Code: 48136192 11752
  Current: 252231680 61580 Data: 28098560 6860
  Dirty: 0 0 Sh Code: 40960 10
  Largest seg: 10547200 2575 Sh Data: 20480 5
  Non-Movable: 0 0 Help: 172032 42
  Other: 1890455552 461537 Message: 1249280 305
  Avail NSS: 958328832 233967 Alloc L!=P: 957685760 233810
  Movable: 8192 2 Alloc L==P: 14991360 3660
  Total: 1050394624 256444
  VM SYSTEM
  Free clean VM: 1025097728 250268
  Free clean LP: 0 0
  Free cache VM: 21983232 5367
  Free cache LP: 0 0
  Free dirty: 0 0
  In use: 2179072 532
  Total: 1049260032 256167
  Memory Configuration (set parameters)
  ================================================== ==============================
  Auto Tune Server Memory = OFF
  File Cache Maximum Size = 2147483648
  File Service Memory Optimization = 1
  Logical Space Compression = 1
  Garbage Collection Interval = 299.9 seconds
  VM Garbage Collector Period = 300.0 seconds
  server -u<number> = 884998144
  NSS Configuration File:
  C:\NWSERVER\NSSSTART.CFG
  /AllocAheadBlks=0
  /MinBufferCacheSize=20000
  /MinOSBufferCacheSize=20000
  /CacheBalanceMaxBuffersPerSession=20000
  /NameCacheSize=200000
  /AuthCacheSize=20000
  /NumWorkToDos=100
  /FileFlushTimer=10
  /BufferFlushTimer=10
  /ClosedFileCacheSize=100000
  /CacheBalance=85
  DS Configuration File:
  SYS:\_NETWARE\_NDSDB.INI
  preallocatecache=true
  cache=200000000
  Server High/Low Water Mark Values
  ================================================== ==============================
  NLM Memory High Water Mark = 1,535,295,488 bytes
  File System High Water Mark = 435,727 bytes
  User Space Information:
  User Space High Water Mark = 683,339,776 bytes
  Committed Pages High Water Mark = 91 pages
  Mapped VM Pages High Water Mark = 5,870 pages
  Reserved Pages High Water Mark = 692,325 pages
  Swapped Pages High Water Mark = 5,710 pages
  Available Low Water Mark = 882,774,016
  ESM Memory High Water Mark = 949 pages
  Novell File Server Configuration Report For Server: KLDSRV1
  Novell File Server Configuration Report Created: Wed, Jan 18, 2012 11:15 am
  Novell File Server Configuration Report. [Produced by CONFIG.NLM v3.10.17]
  Novell NetWare 5.70.08 October 3, 2008
  (C) Copyright 1983-2008 Novell Inc. All Rights Reserved.
  Server name...............: KLDSRV1
  OS Version................: v5.70
  OS revision number........: 8
  Product Version...........: v6.50
  Product Revision Number...: 8
  Server Up Time(D:H:M:Sec).: 32:20:51:12
  Serial number.............: XXXXXXXX
  Internal Net. Addr........: 00000000h
  Security Restriction Level: 1
  SFT Level.................: 2
  Engine Type...............: NATIVE
  TTS Level.................: 1
  Total Server memory.......: 3573.81 MB or 3747406848 Bytes
  Processor speed rating....: 197582
  Original cache buffers....: 913820
  Current Cache Buffers.....: 292534
  LRU Sitting Time(D:H:M:S).: 32:20:51:12
  Current FSP's.............: 12
  Current MP FSP's..........: 378
  Current Receive Buffers...: 3000
  Directory cache buffers...: 0
  Workstations Connected....: 1136
  Max Workstations Connected: 1528
  Server language...........: ENGLISH (4)
  Timesync active...........: Yes
  Time is synchronized......: Yes
  Total Processors..........: 4
  Server DOS Country ID.....: 44
  Server DOS Code Page......: 850
  Boot Loader...............: DOS
  Top of Modules List 312 Modules Loaded.
  ACPIASL.NLM v1.05.16 Jan. 16, 2007 ACPI Architecture Services Layer for ACPI compliant systems
  ACPICA.NLM v1.05.16 Jan. 16, 2007 ACPI Component Architecture for ACPI compliant systems
  ACPICMGR.NLM v1.05.16 Jan. 16, 2007 ACPI Component Manager for ACPI compliant systems
  ACPIDRV.PSM v1.05.19 Jan. 16, 2007 ACPI Platform Support Module for ACPI compliant systems
  ACPIPWR.NLM v1.05.16 Jan. 16, 2007 ACPI Power Management Driver for ACPI compliant systems
  AFREECON.NLM v5.00 Jul. 22, 2005 AdRem Free Remote Console (NCPE)
  APACHE2.NLM v2.00.63 Apr. 25, 2008 Apache Web Server 2.0.63
  APRLIB.NLM v0.09.17 Apr. 25, 2008 Apache Portability Runtime Library 0.9.17
  AUTHLDAP.NLM v2.00.63 Apr. 25, 2008 Apache 2.0.63 LDAP Authentication Module
  AUTHLDDN.NLM v1.00 Nov. 9, 2005 LdapDN Module
  BROKER.NLM v3.00.12 Feb. 20, 2008 NDPS Broker
  BSDSOCK.NLM v6.82.02 Dec. 23, 2009 Novell BSDSOCK Module
  BTCPCOM.NLM v7.90 Jul. 9, 2003 BTCPCOM.NLM v7.90.000, Build 253
  BTRIEVE.NLM v7.90 Mar. 21, 2001 BTRIEVE.NLM v7.90.000
  CALNLM32.NLM v6.01.03 Aug. 26, 2008 NetWare NWCalls Runtime Library
  CCS.NLM v27610.01.01 Mar. 30, 2009 Controlled Cryptography Services from Novell, Inc.
  CDBE.NLM v6.01 Sep. 21, 2006 NetWare Configuration DB Engine
  CDDVD.NSS v3.27.03 Jun. 7, 2010 NSS Loadable Storage System (LSS) for CD/UDF (Build 212 MP)
  CERTLCM.NLM v28200902.26 Feb. 26, 2009 Novell SASL EXTERNAL Proxy LCM 2.8.2.0 20090226
  CERTLSM.NLM v28200902.26 Feb. 26, 2009 Novell SASL EXTERNAL LSM 2.8.2.0 20090226
  CHARSET.NLM v1.01 Jun. 4, 2003 Display Character Set Support For NetWare
  CIOS.NLM v1.60 Feb. 12, 2008 Consolidated IO System
  CLBACKUP.NLM v8.00 Sep. 22, 2010 NetWare Client Backup
  CLBROWSE.NLM v8.00 Dec. 3, 2008 NetWare Client Browse
  CLIB.NLM v5.90.15 Mar. 10, 2008 (Legacy) Standard C Runtime Library for NLMs
  CLNNLM32.NLM v6.01.03 Aug. 26, 2008 NetWare NWClient Runtime Library
  CLRESTOR.NLM v8.00 Mar. 31, 2009 NetWare Client Restore
  CLXNLM32.NLM v6.01.03 Aug. 26, 2008 NetWare NWCLX Runtime Library
  COMN.NSS v3.27.03 Jun. 7, 2010 NSS Common Support Layer (COMN) (Build 212 MP)
  CONFIG.NLM v3.10.17 Feb. 12, 2008 NetWare Server Configuration Reader
  CONLOG.NLM v3.01.02 Aug. 8, 2006 System Console Logger
  CONNAUD.NLM v3.17 May. 10, 2005 NLS - Connection Metering
  CONNMGR.NLM v5.60.01 Sep. 7, 2006 NetWare Connection Manager NLM
  CPQBSSA.NLM v8.20 Jan. 29, 2009 HP Insight Management Base System Agent
  CPQCI.NLM v1.06 Oct. 17, 2005 hp ProLiant iLO Management Interface Driver
  CPQDASA.NLM v8.20.01 Feb. 24, 2009 HP Management Array Subsystem Agent
  CPQHMMO.NLM v3.92 Jun. 10, 2003 Compaq HMMO Services Provider for NetWare
  CPQHOST.NLM v8.20 Jan. 29, 2009 HP Insight Management Host Agent
  CPQHTHSA.NLM v8.20 Jan. 29, 2009 HP Insight Management Health Agent
  CPQNCSA.NLM v8.20 Dec. 11, 2008 HP Insight NIC Agent
  CPQRISA.NLM v8.20 Jan. 29, 2009 HP Insight Management Remote Insight Agent
  CPQSSSA.NLM v8.20.01 Feb. 24, 2009 HP Management Storage Box Subsystem Agent
  CPQTHRSA.NLM v8.20 Jan. 29, 2009 HP Insight Management Threshold Agent
  CPQWEBAG.NLM v8.20 Jan. 29, 2009 HP Web Based Management Agent
  CPUCHECK.NLM v5.60.01 Dec. 6, 2007 NetWare Processor Checking Utility
  CRLSM.NLM v2.08.01 Oct. 28, 2008 Challenge Response LSM v2.8.1.0
  CSL.NLM v2.06.02 Jan. 13, 2000 NetWare Call Support Layer For NetWare
  CSLIND.NLM v4.21 Dec. 7, 1999 TCPIP CSL INDEPENDENCE MODULE 7Dec99 7Dec99
  CVAPPMGR.NLM v8.00 Nov. 22, 2010 AppManager
  CVARCH.NLM v8.00 Nov. 10, 2010 Archive Library
  CVD.NLM v8.00 Apr. 13, 2011 Communications Service
  CVJOBCL.NLM v8.00 Nov. 10, 2010 Job Client
  CVLIB.NLM v8.00 Apr. 13, 2011 Library for NetWare
  CVLZOLIB.NLM v8.00 Dec. 3, 2008 LZO Compression Library
  CVNETCHK.NLM v8.00 Dec. 3, 2008 Network Check
  CVSIM.NLM v8.00 Dec. 3, 2008 Software Installation Manager
  CVSMS.NLM v8.00 Sep. 28, 2009 NetWare SMS Interface
  DBEXTF6.NLM v6.00.04 Sep. 12, 2000 Sybase Adaptive Server Anywhere External Library
  DBNET6.NLM v1.45.02 Mar. 16, 2006 Debug Network IO Support
  DBSRV6.NLM v6.00.04 May. 16, 2001 Sybase Adaptive Server Anywhere
  DFSLIB.NLM v3.27.03 Jun. 7, 2010 DFS Common Library (Build 212 MP)
  DHOST.NLM v10010.97 Sep. 18, 2006 Novell DHost Portability Interface 1.0.0 SMP
  DIAG500.NLM v3.04.03 Oct. 31, 2007 Diagnostic/coredump utility for NetWare 6.x
  DM.NLM v3.01.60 May. 21, 2008 Novell XTier Directory Manager
  DMNDAP.NLM v3.01.60 May. 21, 2008 Novell XTier Directory Manager NDAP Provider
  DPLSV386.NLM v1.15.03 Apr. 16, 2010 NetWare 6.x Distributed Print Library - DPLSV386
  DPRPCNLM.NLM v3.00.17 Oct. 10, 2006 Novell NDPS RPC Library NLM
  DS.NLM v20219.15 May. 12, 2009 Novell eDirectory Version 8.8 SP5 SMP
  DSAPI.NLM v6.00.04 Jan. 27, 2006 NetWare NWNet Runtime Library
  DSEVENT.NLM v6.01.03 Aug. 26, 2008 NetWare DSEvent Runtime Library
  DSLOADER.NLM v20219.15 May. 12, 2009 Novell eDirectory Version 8.8.0 Loader SMP
  DSLOG.NLM v20219.15 May. 12, 2009 DS Log for Novell eDirectory 8.8.0
  DTS.NLM v3.01.05 Sep. 8, 2008 Transaction Server 3.1.0 - Netware
  EHCIDRV.CAD v1.05 Feb. 26, 2008 Novell Universal Serial Bus EHCI driver
  EPWDLSM.NLM v27000508.12 Aug. 12, 2005 Novell Enhanced Password LSM 2.7.0.0 20050812
  ETADVLSM.NLM v27000508.03 Aug. 3, 2005 Novell Entrust LSM 2.7.0.0 20050803
  ETHERTSM.NLM v3.90 Mar. 20, 2006 Novell Ethernet Topology Specific Module
  EVENTMGR.NLM v3.01.60 May. 21, 2008 Novell XTier Event Manager
  EVMGRC.NLM v8.00 Dec. 3, 2008 Event Manager Client
  EXPIRES.NLM v2.00.63 Apr. 25, 2008 Apache 2.0.63 Expires Module
  FATFS.NLM v1.24 Aug. 27, 2007 FAT Filesystem Module for NetWare
  FILESYS.NLM v5.14 Apr. 16, 2008 NetWare File System NLM
  FSBRWSE.NLM v8.00 Dec. 3, 2008 NetWare File System Browser
  GALAXY.NLM v8.00 Dec. 3, 2008 Loader
  GAMS.NLM v2.00.01 Sep. 2, 2008 Graded Authentication Management Service
  HBNNSP.NLM v3.01.60 May. 21, 2008 Novell XTier GetHostByName Name Service Provider
  HEADERS.NLM v2.00.63 Apr. 25, 2008 Apache 2.0.63 Headers Module
  HOSTMIB.NLM v5.03.01 Dec. 1, 2006 NetWare 5.x/6.x Host Resources MIB
  HPASMXL.NLM v1.14 Jan. 25, 2009 HP ProLiant Embedded Health Driver
  HPQCISS.HAM v1.16.01 Mar. 3, 2009 HP SAS/SATA Unified RAID driver
  HTTPSTK.NLM v4.03 Sep. 4, 2008 Novell Small Http Interface
  HWDETECT.NLM v1.19.05 Feb. 20, 2003 Novell Hardware Insertion/Removal Detection
  IDEATA.HAM v4.34 May. 5, 2007 Novell IDE/ATA/ATAPI/SATA Host Adapter Module
  IFACE.NLM v7.05.04 Dec. 1, 2011 SAV Interface for NetWare
  IFOLDER.NLM v2.04 Feb. 19, 2007 ifolder
  IFOLDERU.NLM v2.04 Feb. 19, 2007 ifolderu
  IMGSERV.NLM v7.00 Jan. 12, 2009 ZENworks Imaging Server
  IPCTL.NLM v3.01.60 May. 21, 2008 Novell XTier Transport Layer
  IPMCFG.NLM v1.01.16 Oct. 22, 2005 Web Interface for IP Address Management
  IPMGMT.NLM v1.03.01 May. 29, 2007 TCPIP - NetWare IP Address Management
  IPPSRVR.NLM v4.02.02 Jun. 16, 2010 Novell iPrint Server
  JAVA.NLM v1.43 Oct. 16, 2008 java.nlm (based on 1.4.2_18) Build 08101613
  JNCPV2.NLM v1.10 Nov. 13, 2003 Native Wrapper Java Class Libraries for NetWare
  JNET.NLM v1.43 Oct. 16, 2008 Java jnet (based on 1.4.2_18)
  JSMSG.NLM v3.27.03 Jun. 7, 2010 Jetstream Message Layer (Build 212 MP)
  JSOCK.NLM v1.43 Oct. 16, 2008 Support For Java Sockets (loader)
  JSOCK6X.NLM v1.43 Oct. 16, 2008 NetWare 6.x Support For Java Sockets (JDK 1.4.2)
  JSTCP.NLM v3.27.03 Jun. 7, 2010 Jetstream TCP Transport Layer (Build 212 MP)
  JVM.NLM v1.43 Oct. 16, 2008 Java Hotspot 1.4.2_18 Interpreter
  JVMLIB.NLM v1.43 Oct. 16, 2008 Java jvmlib (based on 1.4.2_18)
  KEYB.NLM v2.10 Jul. 26, 2001 NetWare National Keyboard Support
  LANGMANI.NLM v10212.02 Mar. 10, 2009 Novell Cross-Platform Language Manager
  LBURP.NLM v20216.02 Mar. 10, 2009 LDAP Bulkload Update/Replication Protocol service extension for Novell eDirectory 8.8
  LCMCIFS2.NLM v2.00.09 Sep. 14, 2007 Windows Native File Access Login Methods (Build 91 SP)
  LCMMD5.NLM v28000806.23 Jun. 23, 2008 Novell SASL DIGEST-MD5 Proxy LCM 2.8.0.0 20080623
  LDAPSDK.NLM v3.05.02 Apr. 12, 2009 LDAP SDK Library (Clib version)
  LDAPXS.NLM v3.05.01 Apr. 12, 2009 (Clib version)
  LFS.NLM v5.12 Sep. 21, 2005 NetWare Logical File System NLM
  LIB0.NLM v5.90.15 Mar. 10, 2008 Novell Ring 0 Library for NLMs
  LIBC.NLM v9.00.05 Oct. 3, 2008 Standard C Runtime Library for NLMs [optimized, 7]
  LIBCCLIB.NLM v6.00 Oct. 23, 2002 LibC to CLib Shim for NLMs [optimized, 0]
  LIBCVCL.NLM v8.00 Dec. 3, 2008 Cryptography Library
  LIBNICM.NLM v3.01.60 May. 21, 2008 Novell XTier Base Services
  LIBNSS.NLM v3.27.03 Jun. 7, 2010 Generic Library used by NSS (Build 212 MP)
  LIBPERL.NLM v5.00.05 Sep. 13, 2005 Perl 5.8.4 - Script Interpreter and Library
  LIBXML2.NLM v2.06.26 Aug. 27, 2006 libxml2 2.6.26 (LIBC) - The XML C parser and toolkit of Gnome
  LIBXTREG.NLM v3.01.60 May. 21, 2008 Novell XTier Base Services
  LLDAPSDK.NLM v3.05.02 Apr. 12, 2009 LDAP SDK Library (LibC version)
  LLDAPSSL.NLM v3.05.01 Apr. 12, 2009 NetWare SSL Library for LDAP SDK (LibC version)
  LLDAPX.NLM v3.05.01 Apr. 12, 2009 NetWare Extension APIs for LDAP SDK (LibC version)
  LOCNLM32.NLM v6.00.04 Nov. 29, 2005 NetWare NWLocale Runtime Library
  LSAPI.NLM v5.02 Jan. 7, 2003 NLS LSAPI Library
  LSL.MPM v5.70 Feb. 15, 2006 lsl Memory Protection Module
  LSL.NLM v4.86 Feb. 2, 2006 Novell NetWare Link Support Layer
  LSMAFP3.NLM v2.00.11 Sep. 14, 2007 Macintosh Native File Access Login Methods (Build 118 SP)
  LSMCIFS2.NLM v2.00.07 Sep. 14, 2007 Windows Native File Access Login Methods (Build 103 SP)
  LSMMD5.NLM v28000806.23 Jun. 23, 2008 Novell SASL DIGEST-MD5 LSM 2.8.0.0 20080623
  MAL.NSS v3.27.03 Jun. 7, 2010 NSS Media Access Layer (MAL) (Build 212 MP)
  MALHLP.NLM v3.27.03 Jun. 7, 2010 NSS Configure help messages (Build 212 MP)
  MANAGE.NSS v3.27.03 Jun. 7, 2010 NSS Management Functions (Build 212 MP)
  MASV.NLM v2.00.01 Sep. 2, 2008 Mandatory Access Control Service
  MATHLIB.NLM v4.21 Oct. 14, 1999 NetWare Math Library Auto-Load Stub
  MM.NLM v3.22.08 Apr. 24, 2009 ENG TEST - NetWare 6.5 Media Manager
  MOD_IPP.NLM v1.00.04 Jun. 7, 2006 iPrint Module
  MOD_JK.NLM v1.02.23 Apr. 25, 2008 Apache 2.0 plugin for Tomcat
  MOD_XSRV.NLM v3.01.04 May. 21, 2008 Novell XTier Server (Apache2 Module)
  MOMAPSNW.NLM v4.00 May. 7, 2010 4.0 Build: 492 NW FC AB 2010-05-07 NW
  MONDATA.NLM v6.00 Jul. 18, 2003 NetWare 5.x/6.x Monitor MIB
  MONITOR.NLM v12.02.02 Apr. 4, 2006 NetWare Console Monitor
  MSM.NLM v4.12 Aug. 22, 2007 Novell Multi-Processor Media Support Module
  N1000E.LAN v10.47 Oct. 6, 2007 HP NC-Series Intel N1E Ethernet driver
  NBI.NLM v3.01.01 Jul. 13, 2007 NetWare Bus Interface
  NCM.NLM v1.15.01 Oct. 20, 2004 Novell Configuration Manager
  NCP.NLM v5.61.01 Sep. 30, 2008 NetWare Core Protocol (NCP) Engine
  NCPIP.NLM v6.02.01 Sep. 30, 2008 NetWare NCP Services over IP
  NCPL.NLM v3.01.60 May. 21, 2008 Novell XTier Base Services
  NCPNLM32.NLM v6.01.03 Aug. 26, 2008 NetWare NWNCP Runtime Library
  NDPSGW.NLM v4.01.02 Mar. 2, 2010 NDPS Gateway
  NDPSM.NLM v3.03.02 May. 18, 2010 NDPS Manager
  NDS4.NLM v3.01.60 Apr. 9, 2008 Novell XTier NDS4 Authentication Provider
  NDSAUDIT.NLM v2.09 May. 22, 2003 Directory Services Audit
  NDSIMON.NLM v20216.12 Apr. 15, 2009 NDS iMonitor 8.8 SP5
  NEB.NLM v5.60 Sep. 27, 2004 Novell Event Bus
  NETDB.MPM v5.70 Feb. 15, 2006 netdb Memory Protection Module
  NETDB.NLM v4.11.05 Jan. 6, 2005 Network Database Access Module
  NETLIB.NLM v6.50.22 Feb. 12, 2003 Novell TCPIP NETLIB Module
  NETNLM32.NLM v6.01.03 Aug. 26, 2008 NetWare NWNet Runtime Library
  NIAM.NLM v3.01.60 May. 21, 2008 Novell XTier Identity Manager
  NICISDI.NLM v27610.01.01 Mar. 30, 2009 Security Domain Infrastructure
  NILE.NLM v7.00.01 Aug. 20, 2007 Novell N/Ties NLM ("") Release Build with symbols
  NIPPED.NLM v1.03.09 Jul. 11, 2006 NetWare 5.x, 6.x INF File Editing Library - NIPPED
  NIPPZLIB.NLM v1.00.01 Nov. 28, 2005 General Purpose ZIP File Library for NetWare
  NIRMAN.NLM v1.06.04 Sep. 18, 2007 TCPIP - NetWare Internetworking Remote Manager
  NIT.NLM v5.90.15 Mar. 10, 2008 NetWare Interface Tools Library for NLMs
  NLDAP.NLM v20219.14 May. 13, 2009 LDAP Agent for Novell eDirectory 8.8 SP5
  NLMLIB.NLM v5.90.15 Mar. 10, 2008 Novell NLM Runtime Library
  NLSADPT2.NLM v2.00 Sep. 9, 2003 NLS and Metering adapter for iManager 2.0 plugin
  NLSAPI.NLM v5.02 Aug. 7, 2003 NLSAPI
  NLSLRUP.NLM v4.01.07 May. 10, 2005 NLS - Usage Metering
  NLSLSP.NLM v5.02 May. 25, 2005 NLS - License Service Provider
  NLSMETER.NLM v3.43 May. 10, 2005 NLS - Software Usage Metering Database
  NLSTRAP.NLM v5.02 Feb. 19, 2004 NetWare License Server Trap
  NMAS.NLM v33200904.07 Apr. 7, 2009 Novell Modular Authentication Service 3.3.2.0 20090407
  NMASGPXY.NLM v33200904.07 Apr. 7, 2009 NMAS Generic Proxy 3.3.2.0 20090407
  NMASLDAP.NLM v33200904.07 Apr. 7, 2009 NMAS LDAP Extensions 3.3.2.0 20090407
  NPKIAPI.NLM v3.33 Apr. 16, 2009 Public Key Infrastructure Services
  NPKIT.NLM v3.33 Apr. 16, 2009 Public Key Infrastructure Services
  NSCM.NLM v3.01.60 May. 21, 2008 Novell XTier Security Context Manager
  NSNS.NLM v3.01.60 May. 21, 2008 Novell XTier Simple Name Service
  NSPDNS.NLM v6.20.03 Sep. 8, 2003 NetWare Winsock 2.0 NSPDNS.NLM Name Service Providers
  NSPNDS.NLM v6.20 Nov. 12, 2001 NetWare Winsock 2.0 NSPNDS.NLM Name Service Provider
  NSPSLP.NLM v6.20.04 Dec. 6, 2007 NetWare Winsock 2.0 NSPSLP.NLM Name Service Provider
  NSS.NLM v3.27.03 Jun. 7, 2010 NSS (Novell Storage Services) (Build 212 MP)
  NSSIDK.NSS v3.27.03 Jun. 7, 2010 NSS Pool Configuration Manager (Build 212 MP)
  NSSWIN.NLM v3.27.03 Jun. 7, 2010 NSS ASCI Window API Library (Build 212 MP)
  NTFYDPOP.ENM v2.00.03 Feb. 26, 1999 Directed Pop-Up Delivery Method
  NTFYLOG.ENM v2.00.03 May. 25, 1999 Log File Delivery Method
  NTFYPOP.ENM v2.00.03 May. 21, 1999 Pop Up Delivery Method
  NTFYRPC.ENM v2.00.03 Feb. 26, 1999 RPC Delivery Method
  NTFYSPX.ENM v2.00.03 Feb. 26, 1999 SPX Delivery Method
  NTFYSRVR.NLM v3.00.05 May. 10, 2005 NDPS Notification Server
  NTFYWSOC.ENM v2.00.03 Feb. 26, 1999 Winsock Delivery Method
  NTLS.NLM v20510.01 Mar. 11, 2009 NTLS 2.0.5.0 based on OpenSSL 0.9.7m
  NWAIF103.NLM v7.94 Nov. 30, 2001 nwaif103.nlm v7.94, Build 251 ()
  NWBSRVCM.NLM v7.90 Mar. 20, 2001 NWBSRVCM.NLM v7.90.000, Build 230
  NWENC103.NLM v7.90 Feb. 24, 2001 NWENC103.NLM v7.90.000 (Text Encoding Conversion Library)
  NWIDK.NLM v3.01.01 Sep. 19, 2003 CDWare Volume Module
  NWKCFG.NLM v2.16 Jun. 24, 2005 NetWare Kernel Config NLM
  NWMKDE.NLM v7.94 Dec. 11, 2001 NWMKDE.NLM v7.94.251.000
  NWMON.NLM v1.20 Dec. 14, 2005 NetWare Monitoring Software
  NWPA.NLM v3.21.02 Oct. 29, 2008 NetWare 6.5 NetWare Peripheral Architecture NLM
  NWPALOAD.NLM v3.00 Jul. 10, 2000 NetWare 5 NWPA Load Utility
  NWSA.NSS v3.27.03 Jun. 7, 2010 NSS NetWare Semantic Agent (NWSA) (Build 212 MP)
  NWSNUT.NLM v7.00.01 Jul. 11, 2008 NetWare NLM Utility User Interface
  NWTERMIO.NLM v1.00 Sep. 11, 2006 NetWare Terminal Emulation
  NWTRAP.NLM v6.00.05 Jun. 6, 2005 NetWare 5.x/6.x Trap Monitor
  NWUCMGR.NLM v1.05 Mar. 14, 2001 NWUCMGR.NLM v1.5 Build 230
  NWUTIL.NLM v3.00.02 Aug. 20, 2007 Novell Utility Library NLM (_NW65[SP7]{""})
  PARTAPI.NLM v2.00 Apr. 17, 2002 Partition APIs for NetWare 6.1
  PDHCP.NLM v2.08 Oct. 20, 2003 Di-NIC Proxy DHCP Server
  PKI.NLM v3.33 Apr. 16, 2009 Novell Certificate Server
  PKIAPI.NLM v2.23.10 Nov. 20, 2004 Public Key Infrastructure Services
  PMAP.NLM v2.01.04 Mar. 6, 2008 ZENworks Port Mapper Service
  PMLODR.NLM v1.26 Oct. 7, 2005 PMLodr for NW65
  PMPORTAL.NLM v2.16 Nov. 21, 2003 NetWare License Information Portal
  POLIMGR.NLM v6.27 Nov. 3, 2005 NetWare License Policy Manager
  PORTAL.NLM v4.03 Sep. 22, 2008 Novell Remote Manager NLM
  PROCMODS.NLM v8.00 Nov. 5, 2010 PipeLine Procedure Module
  PSVCS.NLM v251.00 Nov. 30, 2001 Portability Services
  PVER500.NLM v3.00 Feb. 1, 2007 NetWare 6.XX Version Library
  PWDLCM.NLM v28000806.23 Jun. 23, 2008 Novell Simple Password Proxy LCM 2.8.0.0 20080623
  PWDLSM.NLM v28000806.23 Jun. 23, 2008 Novell Simple Password LSM 2.8.0.0 20080623
  QUEUE.NLM v5.60 May. 24, 2001 NetWare Queue Services NLM
  REGSRVR.NLM v3.00.06 May. 10, 2005 NDPS Service Registry
  REQUESTR.NLM v5.90.15 Mar. 10, 2008 Novell NCP Requestor for NLMs
  REWRITE.NLM v2.00.63 Apr. 25, 2008 Apache 2.0.63 Rewrite Module
  RMANSRVR.NLM v3.07.02 Mar. 2, 2010 NDPS Resource Manager
  ROLLCALL.NLM v5.00 Jul. 27, 1998 RollCall NLM (101, API 1.0)
  ROTLOGS.NLM v2.00.63 Apr. 25, 2008 Apache 2.0.63 Log Rotation Utility for NetWare
  SAL.NLM v20413.01 Mar. 25, 2009 Novell System Abstraction Layer Version 2.3.1
  SASDFM.NLM v27610.01.01 Mar. 30, 2009 SAS Data Flow Manager
  SASL.NLM v33200904.07 Apr. 7, 2009 Simple Authentication and Security Layer 3.3.2.0 20090407
  SAVENGIN.NLM v3.27 Dec. 1, 2011 SAV Interface engine
  SCSIHD.CDM v3.03.10 May. 30, 2008 Novell NetWare SCSI Fixed Disk Custom Device Module
  SEG.NLM v1.72 Nov. 4, 2004 NetWare Memory Analyzer
  SERVINST.NLM v5.00.13 Nov. 21, 2005 NetWare 5.x/6.x Instrumentation
  SGUID.NLM v6.01 Sep. 27, 2002 NetWare GUID Services
  SLP.MPM v5.70 Feb. 15, 2006 slp Memory Protection Module
  SLP.NLM v2.13 Nov. 15, 2005 SERVICE LOCATION PROTOCOL (RFC2165/RFC2608)
  SLPTCP.NLM v2.13 Nov. 15, 2005 SERVICE LOCATION TCP/UDP INTERFACE (RFC2165/RFC2608)
  SMDR.NLM v6.58.01 Oct. 16, 2008 SMS - Storage Data Requestor
  SMSUT.NLM v1.01.03 Jun. 26, 2008 SMS - Utility Library for NetWare 6.X
  SNMP.MPM v5.70 Feb. 15, 2006 snmp Memory Protection Module
  SNMP.NLM v4.18 Jul. 25, 2006 Netware 4.x/5.x/6.x SNMP Service
  SPMDCLNT.NLM v33200904.07 Apr. 7, 2009 Novell SPM Client for DClient 3.3.2.0 20090407
  STREAMS.MPM v5.70 Feb. 15, 2006 streams Memory Protection Module
  STREAMS.NLM v6.00.06 May. 4, 2005 NetWare STREAMS PTF
  SVCCOST.NLM v3.01.60 May. 21, 2008 Novell XTier Service Costing Module
  SWEEP.NLM v4.73 Dec. 1, 2011 Sophos Anti-Virus User Interface
  SYSCALLS.NLM v5.61 Aug. 2, 2007 NetWare Operating System Call and Marshalling Library
  SYSLOG.NLM v6.05.03 Oct. 22, 2007 NetWare Logfile Daemon
  TCP.NLM v6.82.06 Dec. 23, 2009 Novell TCP/IP Stack - Transport module (NULL encryption)
  TCPIP.MPM v5.70 Feb. 15, 2006 tcpip Memory Protection Module
  TCPIP.NLM v6.82.02 Sep. 30, 2009 Novell TCP/IP Stack - Network module (NULL encryption)
  TCPSTATS.NLM v6.50.10 Jun. 20, 2003 Web Interface for Protocol Monitoring
  TFTP.NLM v2.05.01 Jan. 15, 2008 ZENworks Preboot TFTP Server
  THREADS.NLM v5.90.15 Mar. 10, 2008 Novell Threads Package for NLMs
  TIMESYNC.NLM v6.61.01 Oct. 14, 2005 NetWare Time Synchronization Services
  TLI.MPM v5.70 Feb. 15, 2006 tli Memory Protection Module
  TLI.NLM v4.30.02 Dec. 19, 2000 NetWare Transport Level Interface Library
  TSAFS.NLM v6.53.03 Oct. 16, 2008 SMS - File System Agent for NetWare 6.X
  TSANDS.NLM v20215.04 Apr. 3, 2009 TSA for Novell eDirectory 7.x, 8.x
  UHCIDRV.CAD v1.07 Feb. 26, 2008 Novell Universal Serial Bus UHCI driver
  UNICODE.NLM v7.00 Oct. 26, 2004 NetWare Unicode Runtime Library (UniLib-based) [optimized]
  USCLSM.NLM v27000507.14 Jul. 14, 2005 Novell Universal SmartCard LSM 2.7.0.0 20050714
  USERLIB.NLM v5.60 Sep. 29, 2008 NetWare Operating System Function Library
  UTILLDAP.NLM v2.00.63 Apr. 25, 2008 Apache 2.0.63 LDAP Authentication Module
  UTILLDP2.NLM v1.00 Nov. 9, 2005 LdapDN Module
  VDISK.NLM v1.00 Nov. 30, 2004 NetWare Virtual Disk
  VERIFY.NLM v1.43 Oct. 16, 2008 Java verify (based on 1.4.2_18)
  VLRPC.NLM v3.27.03 Jun. 7, 2010 DFS Volume Location Database (VLDB) RPC interface (Build 212 MP)
  VMRPC.NLM v3.27.03 Jun. 7, 2010 DFS Volume Manager RPC interface (Build 212 MP)
  VOLMN.NSS v3.27.03 Jun. 7, 2010 NSS Distributed Volume Manager (Build 212 MP)
  VOLSMS.NLM v3.27.03 Jun. 7, 2010 NSS Distributed Volume Manager (Build 212 MP)
  WS2_32.NLM v6.24.01 Feb. 14, 2008 NetWare Winsock 2.0 NLM
  WSPIP.NLM v6.24 Dec. 4, 2007 NetWare Winsock Service 1.0 NLM for TCP and UDP
  WSPSSL.NLM v6.26 Dec. 4, 2007 NetWare Winsock Service 1.0 NLM for SSL
  X509ALSM.NLM v27000508.03 Aug. 3, 2005 Novell Advanced X.509 LSM 2.7.0.0 20050803
  X509LSM.NLM v27000508.03 Aug. 3, 2005 Novell Simple X.509 LSM 2.7.0.0 20050803
  XENGEXP.NLM v27610.01.01 Mar. 30, 2009 NICI Import Restricted XENG from Novell, Inc.
  XENGNUL.NLM v27610.01.01 Mar. 30, 2009 NICI NULL XENG from Novell, Inc.
  XENGUSC.NLM v27610.01.01 Mar. 30, 2009 NICI U.S./Worldwide XENG from Novell, Inc.
  XI18N.NLM v10310.53 Aug. 2, 2005 Novell Cross-Platform Internationalization Package
  XIM.XLM v27510.02.01 Aug. 25, 2008 Novell NICI Signed Loader
  XMGR.NLM v27610.01.01 Mar. 30, 2009 NICI XMGR from Novell, Inc.
  XNGAUSC.NLM v27610.01.01 Mar. 30, 2009 NICI U.S./Worldwide XMGR Assistant XENG from Novell, Inc.
  XSRVNSP.NLM v3.01.60 May. 21, 2008 Novell XTier XSRVNSP Tree Name Service Provider
  XSUP.NLM v27610.01.01 Mar. 30, 2009 NICI XSUP from Novell, Inc.
  XTNCP.NLM v3.01.60 May. 21, 2008 Novell XTier NCP Session Layer Driver
  XTUTIL.NLM v3.01.60 May. 21, 2008 Novell XTier Utility Functions
  ZENIMGDS.NLM v7.00 Mar. 26, 2007 ZENworks Imaging DS Library
  ZENPXE.NLM v7.00 Apr. 22, 2008 ZENworks Imaging PXE Library
  ZENWS.NLM v1.00 Jul. 29, 2002 Zen Workstation Utility NLM
  ZIP.NLM v1.43 Oct. 16, 2008 Java zip (based on 1.4.2_18)
  ZLIB.NLM v1.01.04 Dec. 20, 2002 ZLIB 1.1.4 General Purpose Compression Library for NetWare
  ZLSS.NSS v3.27.03 Jun. 7, 2010 NSS Journaled Storage System (ZLSS) (Build 212 MP)
  End of Modules List 312 Modules Loaded.
  Top of LAN Driver Configuration Listing
  Signature.....: HardwareDriverMLID
  CFG Version...: 1.15
  Node Address..: 002655D01666
  Board Number..: 1
  Board Instance: 1
  Media Type....: ETHERNET_II
  MLID Version..: 10.47
  Slot..........: 101
  I/O...........: 5000h -> 501Fh
  Memory........: FBFE0000h -> FBFFFFFFh
  and FBFC0000h -> FBFC0FFFh
  IRQ...........: 7
  DMA...........: None
  Logical Name..: N1000E_1_EII
  Signature.....: HardwareDriverMLID
  CFG Version...: 1.15
  Node Address..: 002655D01667
  Board Number..: 2
  Board Instance: 2
  Media Type....: ETHERNET_II
  MLID Version..: 10.47
  Slot..........: 102
  I/O...........: 5020h -> 503Fh
  Memory........: FBFA0000h -> FBFBFFFFh
  and FBF80000h -> FBF80FFFh
  IRQ...........: 11
  DMA...........: None
  Logical Name..: N1000E_2_EII
  End of LAN Driver Configuration Listing
  Top of Boot Drive Information
  SERVER.EXE loaded from...........: C:\NWSERVER\
  SERVER.EXE version...............: 1355757 bytes 10-03-2008 09:53am
  Total Space on Drive.............: 2016 MB
  Available Space..................: 1920 MB
  End of Boot Drive Information
  Top of Storage Device Configuration Information
  Storage Device Summary:
  0x0000 [V100-A100] USB UHCI Controller
  0x0001 [V100-A101] USB UHCI Controller
  0x0002 [V100-A102] USB UHCI Controller
  0x0003 [V100-A103] USB UHCI Controller
  0x0004 [V100-A104] USB EHCI Controller
  0x0005 [V100-A105] USB UHCI Controller
  0x0006 [V505-A0] HP SAS/SATA Unified RAID Driver
  0x0007 [V505-A0-D0:0] HP LOGICAL VOLUME f/w:1.66
  0x0008 DOS Partitioned Media
  0x0019 [V505-A0-D0:0-PAA6BA] Free Partition Space
  0x0009 [V505-A0-D0:0-P0] Big DOS; OS/2; Win95 Partition
  0x000A [V505-A0-D0:0-P7F8] NSS Partition
  0x000B [V505-A0-D0:0-P4678] NSS Partition
  0x000C [V505-A0-D0:0-P1CD18] NSS Partition
  0x000D [V505-A0-D0:0-P21B38] NSS Partition
  0x000F [V505-A0-D0:0-P26B38] NSS Partition
  0x0011 [V505-A0-D0:0-P2BB38] NSS Partition
  0x0012 [V505-A0-D0:0-P30B38] Free Partition Space
  0x0013 [V505-A0-D0:0-P353B8] NSS Partition
  0x0014 [V505-A0-D0:0-P48C38] NSS Partition
  0x0015 [V505-A0-D0:0-P612D8] NSS Partition
  0x0016 [V505-A0-D0:0-P79978] NSS Partition
  0x0017 [V505-A0-D0:0-P92018] NSS Partition
  0x0018 [V505-A0-D0:0-PAA6B8] Free Partition Space
  Storage Device Details:
  [V100-A100] USB UHCI Controller
  Media Manager object ID..: 0x0000
  Media Manager Object Type: Adapter
  Driver name..............: UHCIDRV.CAD
  Assigned driver ID.......: 256
  Adapter number...........: 256
  Primary port address.....: 1000
  Primary port length......: 18
  Secondary port address...: Not used
  Secondary port length....: Not used
  Interrupt 0..............: 18
  Interrupt 1..............: Not used
  Slot.....................: 10027
  DMA0.....................: Not used
  DMA1.....................: Not used
  Memory 0 address.........: Not used
  Memory 0 length..........: Not used
  Memory 1 address.........: Not used
  Memory 1 length..........: Not used
  [V100-A101] USB UHCI Controller
  Media Manager object ID..: 0x0001
  Media Manager Object Type: Adapter
  Driver name..............: UHCIDRV.CAD
  Assigned driver ID.......: 256
  Adapter number...........: 257
  Primary port address.....: 1020
  Primary port length......: 18
  Secondary port address...: Not used
  Secondary port length....: Not used
  Interrupt 0..............: 28
  Interrupt 1..............: Not used
  Slot.....................: 10028
  DMA0.....................: Not used
  DMA1.....................: Not used
  Memory 0 address.........: Not used
  Memory 0 length..........: Not used
  Memory 1 address.........: Not used
  Memory 1 length..........: Not used
  [V100-A102] USB UHCI Controller
  Media Manager object ID..: 0x0002
  Media Manager Object Type: Adapter
  Driver name..............: UHCIDRV.CAD
  Assigned driver ID.......: 256
  Adapter number...........: 258
  Primary port address.....: 1040
  Primary port length......: 18
  Secondary port address...: Not used
  Secondary port length....: Not used
  Interrupt 0..............: 38
  Interrupt 1..............: Not used
  Slot.....................: 10029
  DMA0.....................: Not used
  DMA1.....................: Not used
  Memory 0 address.........: Not used
  Memory 0 length..........: Not used
  Memory 1 address.........: Not used
  Memory 1 length..........: Not used
  [V100-A103] USB UHCI Controller
  Media Manager object ID..: 0x0003
  Media Manager Object Type: Adapter
  Driver name..............: UHCIDRV.CAD
  Assigned driver ID.......: 256
  Adapter number...........: 259
  Primary port address.....: 1060
  Primary port length......: 18
  Secondary port address...: Not used
  Secondary port length....: Not used
  Interrupt 0..............: 28
  Interrupt 1..............: Not used
  Slot.....................: 10030
  DMA0.....................: Not used
  DMA1.....................: Not used
  Memory 0 address.........: Not used
  Memory 0 length..........: Not used
  Memory 1 address.........: Not used
  Memory 1 length..........: Not used
  [V100-A104] USB EHCI Controller
  Media Manager object ID..: 0x0004
  Media Manager Object Type: Adapter
  Driver name..............: EHCIDRV.CAD
  Assigned driver ID.......: 256
  Adapter number...........: 260
  Primary port address.....: Not used
  Primary port length......: Not used
  Secondary port address...: Not used
  Secondary port length....: Not used
  Interrupt 0..............: 18
  Interrupt 1..............: Not used
  Slot.....................: 10031
  DMA0.....................: Not used
  DMA1.....................: Not used
  Memory 0 address.........: 0000
  Memory 0 length..........: 006C
  Memory 1 address.........: Not used
  Memory 1 length..........: Not used
  [V100-A105] USB UHCI Controller
  Media Manager object ID..: 0x0005
  Media Manager Object Type: Adapter
  Driver name..............: UHCIDRV.CAD
  Assigned driver ID.......: 256
  Adapter number...........: 261
  Primary port address.....: 3800
  Primary port length......: 18
  Secondary port address...: Not used
  Secondary port length....: Not used
  Interrupt 0..............: 38
  Interrupt 1..............: Not used
  Slot.....................: 10037
  DMA0.....................: Not used
  DMA1.....................: Not used
  Memory 0 address.........: Not used
  Memory 0 length..........: Not used
  Memory 1 address.........: Not used
  Memory 1 length..........: Not used
  [V505-A0] HP SAS/SATA Unified RAID Driver
  Media Manager object ID..: 0x0006
  Media Manager Object Type: Adapter
  Driver name..............: HPQCISS.HAM
  Assigned driver ID.......: 1285
  Adapter number...........: 0
  Primary port address.....: Not used
  Primary port length......: Not used
  Secondary port address...: Not used
  Secondary port length....: Not used
  Interrupt 0..............: 7
  Interrupt 1..............: Not used
  Slot.....................: 10041
  DMA0.....................: Not used
  DMA1.....................: Not used
  Memory 0 address.........: 0000
  Memory 0 length..........: 0400
  Memory 1 address.........: Not used
  Memory 1 length..........: Not used
  [V505-A0-D0:0] HP LOGICAL VOLUME f/w:1.66
  Media manager object ID.....: 0x0007
  Media manager Object Type...: Device
  Device type.................: Magnetic disk
  Capacity....................: 858112 MB
  Unit Size, in bytes.........: 512
  Sectors.....................: 32
  Heads.......................: 255
  Cylinders...................: 18785
  Block size, in bytes........: 4294966784
  Activated...................: Yes
  Registered..................: Yes
  Functional..................: Yes
  Writable....................: Yes
  Write protected.............: No
  Reserved....................: No
  Removable...................: No
  Read Handicap...............: No
  Offline.....................: No
  Controller Number...........: 0
  Device Number...............: 0
  Adapter Number..............: 0
  System Type.................: 0x90000
  Read after write verify.....: Disabled
  DOS Partitioned Media
  Media Manager object ID..: 0x0008
  Media Manager Object Type: Media
  Media type...............: IBM partition
  [V505-A0-D0:0-PAA6BA] Free Partition Space
  Media Manager object ID......: 0x0019
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: No
  Logical partition............: No
  Beginning sector of partition: 1429591200
  Size, in sectors.............: 328023484
  [V505-A0-D0:0-P0] Big DOS; OS/2; Win95 Partition
  Media Manager object ID......: 0x0009
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: No
  Beginning sector of partition: 32
  Size, in sectors.............: 4177888
  [V505-A0-D0:0-P7F8] NSS Partition
  Media Manager object ID......: 0x000A
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: Yes
  Beginning sector of partition: 4177920
  Size, in sectors.............: 32768000
  [V505-A0-D0:0-P4678] NSS Partition
  Media Manager object ID......: 0x000B
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: Yes
  Beginning sector of partition: 36945920
  Size, in sectors.............: 204800000
  [V505-A0-D0:0-P1CD18] NSS Partition
  Media Manager object ID......: 0x000C
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: Yes
  Beginning sector of partition: 241745920
  Size, in sectors.............: 40960000
  [V505-A0-D0:0-P21B38] NSS Partition
  Media Manager object ID......: 0x000D
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: No
  Logical partition............: No
  Beginning sector of partition: 282705920
  Size, in sectors.............: 41943040
  [V505-A0-D0:0-P26B38] NSS Partition
  Media Manager object ID......: 0x000F
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: No
  Logical partition............: No
  Beginning sector of partition: 324648960
  Size, in sectors.............: 41943040
  [V505-A0-D0:0-P2BB38] NSS Partition
  Media Manager object ID......: 0x0011
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: No
  Logical partition............: No
  Beginning sector of partition: 366592000
  Size, in sectors.............: 41943040
  [V505-A0-D0:0-P30B38] Free Partition Space
  Media Manager object ID......: 0x0012
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: No
  Logical partition............: No
  Beginning sector of partition: 408535040
  Size, in sectors.............: 38010880
  [V505-A0-D0:0-P353B8] NSS Partition
  Media Manager object ID......: 0x0013
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: Yes
  Beginning sector of partition: 446545920
  Size, in sectors.............: 163840000
  [V505-A0-D0:0-P48C38] NSS Partition
  Media Manager object ID......: 0x0014
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: Yes
  Beginning sector of partition: 610385920
  Size, in sectors.............: 204800000
  [V505-A0-D0:0-P612D8] NSS Partition
  Media Manager object ID......: 0x0015
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: No
  Beginning sector of partition: 815185920
  Size, in sectors.............: 204800000
  [V505-A0-D0:0-P79978] NSS Partition
  Media Manager object ID......: 0x0016
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: Yes
  Beginning sector of partition: 1019985920
  Size, in sectors.............: 204800000
  [V505-A0-D0:0-P92018] NSS Partition
  Media Manager object ID......: 0x0017
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: Yes
  Logical partition............: No
  Beginning sector of partition: 1224785920
  Size, in sectors.............: 204800000
  [V505-A0-D0:0-PAA6B8] Free Partition Space
  Media Manager object ID......: 0x0018
  Media Manager Object Type....: Partition
  Activated....................: Yes
  Registered...................: Yes
  Functional...................: Yes
  Reserved.....................: No
  Logical partition............: No
  Beginning sector of partition: 1429585920
  Size, in sectors.............: 5280
  End of Storage Device Configuration Information
  * Volume Statistics for SYS *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 15934 MB
  Block Size.................: 4 KB
  Total Blocks...............: 4079171
  Free Blocks................: 3072770
  Purgable Blocks............: 158
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147439380
  Sectors per Block..........: 8
  Free Disk Space............: 12003 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for _ADMIN *
  File System................: Unknown
  Volume Size................: 4 MB
  Block Size.................: 4 KB
  Total Blocks...............: 1024
  Free Blocks................: 1024
  Purgable Blocks............: 0
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147483647
  Sectors per Block..........: 8
  Free Disk Space............: 4 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for IMAGES *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 99702 MB
  Block Size.................: 4 KB
  Total Blocks...............: 25523833
  Free Blocks................: 12760577
  Purgable Blocks............: 0
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147483627
  Sectors per Block..........: 8
  Free Disk Space............: 49846 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for PRINTING *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 19932 MB
  Block Size.................: 4 KB
  Total Blocks...............: 5102598
  Free Blocks................: 4766787
  Purgable Blocks............: 55
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147480871
  Sectors per Block..........: 8
  Free Disk Space............: 18620 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for STAFF *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 140541 MB
  Block Size.................: 4 KB
  Total Blocks...............: 35978535
  Free Blocks................: 4278115
  Purgable Blocks............: 428
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147301305
  Sectors per Block..........: 8
  Free Disk Space............: 16711 MB
  Purgable Disk Space........: 1 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for FCLTY *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 120121 MB
  Block Size.................: 4 KB
  Total Blocks...............: 30751101
  Free Blocks................: 6551019
  Purgable Blocks............: 2
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147231898
  Sectors per Block..........: 8
  Free Disk Space............: 25589 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for APPS *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 79761 MB
  Block Size.................: 4 KB
  Total Blocks...............: 20418911
  Free Blocks................: 8163253
  Purgable Blocks............: 0
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147246784
  Sectors per Block..........: 8
  Free Disk Space............: 31887 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for ACDMC *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 99700 MB
  Block Size.................: 4 KB
  Total Blocks...............: 25523381
  Free Blocks................: 9816828
  Purgable Blocks............: 0
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147069762
  Sectors per Block..........: 8
  Free Disk Space............: 38346 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  * Volume Statistics for PUPILS *
  File System................: NSSIDK (Novell Storage Services)
  Volume Size................: 99702 MB
  Block Size.................: 4 KB
  Total Blocks...............: 25523813
  Free Blocks................: 13579469
  Purgable Blocks............: 0
  Not Yet Purgable Blocks....: 0
  Total Directory Entries....: 2147483647
  Available Directory Entries: 2147417601
  Sectors per Block..........: 8
  Free Disk Space............: 53044 MB
  Purgable Disk Space........: 0 MB
  Suballocation..............: OFF
  Compression................: OFF
  Migration..................: OFF
  Volume Name Name Spaces Loaded
  SYS DOS
  SYS MACINTOSH
  SYS NFS
  SYS LONG_NAMES
  _ADMIN DOS
  _ADMIN MACINTOSH
  _ADMIN NFS
  _ADMIN LONG_NAMES
  IMAGES DOS
  IMAGES MACINTOSH
  IMAGES NFS
  IMAGES LONG_NAMES
  PRINTING DOS
  PRINTING MACINTOSH
  PRINTING NFS
  PRINTING LONG_NAMES
  STAFF DOS
  STAFF MACINTOSH
  STAFF NFS
  STAFF LONG_NAMES
  FCLTY DOS
  FCLTY MACINTOSH
  FCLTY NFS
  FCLTY LONG_NAMES
  APPS DOS
  APPS MACINTOSH
  APPS NFS
  APPS LONG_NAMES
  ACDMC DOS
  ACDMC MACINTOSH
  ACDMC NFS
  ACDMC LONG_NAMES
  PUPILS DOS
  PUPILS MACINTOSH
  PUPILS NFS
  PUPILS LONG_NAMES
  ************************************************** ***************************

  Hi.
  On 18.01.2012 15:36, gayfield wrote:
  >
  > Hi Massimo
  >
  > Many thanks for your quick response. I've been into the console.log and
  > pasted the last few entries below :
  >
  > 17-01-2012 6:19:58 pm: SERVER-5.70-0 [nmID=6001D]
  > Cache memory allocator out of available memory.
  >
  >
  > 17-01-2012 6:19:58 pm: SERVER-5.70-0 [nmID=2000A]
  > Short term memory allocator is out of memory.
  > 1 attempts to get more memory failed.
  > request size in bytes 14807040 from Module SWEEP.NLM
  >
  > Loading Module FSIFIND.NLM [
  > OK ]
  > Loading Module FSBACK.NLM [
  > OK ]
  >
  > 17-01-2012 8:24:13 pm: SERVER-5.70-0 [nmID=6001D]
  > Cache memory allocator out of available memory.
  >
  >
  > 17-01-2012 8:24:13 pm: SERVER-5.70-0 [nmID=2000A]
  > Short term memory allocator is out of memory.
  > 2 attempts to get more memory failed.
  > request size in bytes 11403264 from Module SWEEP.NLM
  >
  >
  > 17-01-2012 8:34:17 pm: SERVER-5.70-0 [nmID=6001D]
  > Cache memory allocator out of available memory.
  >
  >
  > 17-01-2012 8:34:17 pm: SERVER-5.70-0 [nmID=2000A]
  > Short term memory allocator is out of memory.
  > 3 attempts to get more memory failed.
  > request size in bytes 15418880 from Module SWEEP.NLM
  >
  >
  > 17-01-2012 8:48:14 pm: SERVER-5.70-0 [nmID=6001D]
  > Cache memory allocator out of available memory.
  >
  >
  > 17-01-2012 8:48:14 pm: SERVER-5.70-0 [nmID=2000A]
  > Short term memory allocator is out of memory.
  > 4 attempts to get more memory failed.
  > request size in bytes 14807040 from Module SWEEP.NLM
  >
  >
  > 17-01-2012 8:58:18 pm: SERVER-5.70-0 [nmID=6001D]
  > Cache memory allocator out of available memory.
  >
  >
  > 17-01-2012 8:58:18 pm: SERVER-5.70-0 [nmID=2000A]
  > Short term memory allocator is out of memory.
  > 5 attempts to get more memory failed.
  > request size in bytes 14680064 from Module SWEEP.NLM
  >
  > Hope this better clarifies the situation.
  Somewhat. From the time of day, and the loading of commvault modules
  inbetween, this looks like a combined backup / AV scan issue. The
  requests of Sophos are comparably big in size, and they vary a lot. That
  will lead to fragmentation of your memory, until the memory can't be
  allocated in one chunk any more. It also *seems* as if Sophos actually
  scans the data while it gets backed up. That is *bad*.
  CU,
  Massimo Rosen
  Novell Knowledge Partner
  No emails please!
  http://www.cfc-it.de

• Windows 7 (64 bit) iTunes 9.2 Outlook 2010 Sync Issues

  I’ve noticed bunch of conversations here about issues with the new version of iTunes NOT syncing with outlook contacts / calendars but none of them seem to be resolved. I also have lost my calendar sync since I installed the new iTunes. I have un-installed / re-installed iTunes, tried creating a new PST file, created a new mail account, tried pretty much everything I can think of and nothing works. I have wasted more than 23 hours of my time playing with trying to fix this and I am getting pretty fed up. My question is has ANYBODY actually made it work. I fear we may be wasting our time meaning that there is a bug that no one at Apple cares to acknowledge. Thoughts?

  Hello,
  I've been searching through the forum, but did not find someone having a real solution in my situation having the problem as described above. I defintly CANNOT delete all my recurrent appointments! I have about 10.000 elements in my Outlook calender, because I'm really using it for planning my whole business day. Isn't there another solution?
  I was syncing my iPad-calender with MS Outlook (2003 SP3) successful during the last days, but "suddenly" (I think, it was after the iTunes Update) the syncing process was silently stopped as beeing successfull, and no appointments were synced anymore.
  I already followed the rules to resetting the syncdata history of iTunes and also forced to overwrite the iPads calender, but it still remains as before.
  Then I decided to delete the calender by stopping the calender syncing, I mean, I deactivated the hook and then iTunes asked, if I will delete all the data on the iPad, where I then agreed to, as you also describe. Then the calender was successfully emptied, but activating it again after syncing, the OLD state is synced back to the iPad and not my currently modified scheduled appointments from Outlook. This is a miracle, because these are old/deleted data!!! It seems the iPad is just doing a "undo".
  I already tried the "Help -> Start diagnosis" feature, this said, everything is fine. So, now I don't know, what to to?! I just want to have my calender synchronized!
  Changing the files "ssleay32.dll" and "libeay32.dll" by updating OpenSSL or copying from the iTunes "http://...\Apple\Mobile Device Support"-Folder did not lead to any changes :-/.
  I'm using iTunes v9.2.1.4, iPad iOS 3.2.1, Outlook 2003 SP3.
  So is there someone having some more ideas or giving me a hint, where I maybe could read somthing about a possible error in a log or something like that? Maybe, only ONE appointment is "ill"; how could I detect it?
  Regards, Andreas

• Two way SSL issue in weblogic

  Hi All,
  we have enabled 2 way SSL in weblogic, we have one Admin Server and one managed (soa) server version 11.1.1.5
  steps we have followed:
  we have imported identity certificate and key file to a custom identity store
  improted trust certificates to a custom trust keystore
  in weblogic consile: soa_server1-> keystires : we have updated custom identity and trust details
  in weblogic consile: soa_server1-> ssl - we have updated required custom identity details and selected " Client Certs Requested And Enforced" for Two Way Client Cert Behavior.
  but while testing our process we are getting below error:
  we have tried openssl to test the connectivity but not sure about the output, is there any way to trace the SSL connection?
  any input will be really helpful.
  <AIASessionPoolManagerFault xmlns="http://xmlns.oracle.com/AIASessionPoolManager">
  -<part name="summary">
  <summary xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
  com.oracle.bpel.client.BPELFault: faultName: {{http://xmlns.oracle.com/AIASessionPoolManager}AIASessionPoolManagerFault}
  messageType: {{http://schemas.oracle.com/bpel/extension}RuntimeFaultMessage}
  parts: {{
  summary=<summary xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">Error on AIASessionPoolManager.bpel when attempting Get operation</summary>
  ,detail=<detail xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">Error on AIASessionPoolManager.bpel: Operation=Get.
       SessionPoolHost.getSession(Siebel,170006): getSession(Siebel,170006) failed: Thread [weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@107d5bb4] faild to initialize the session pool. SessionPoolHost.create() thread[weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@107d5bb4]: Failed to obtain a session after 3 attempts. SPM cannot successfully connect to web server Login credentials [endpoint: https://+<host>+:443/ngbeai_enu/start.swe?SWEExtSource=SecureWebService&amp;SWEExtCmd=Execute&amp;WSSOAP=1 ]
       java.lang.Throwable: SOAPException occured when requesting : javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: Received fatal alert: handshake_failure
       javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: Received fatal alert: handshake_failure.
       </detail>
  ,code=<code xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">Error</code>}
  </summary>
  </part>
  -<part name="detail">
  <detail xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">
  Error on AIASessionPoolManager.bpel: Operation=Get.
       SessionPoolHost.getSession(Siebel,170006): getSession(Siebel,170006) failed: Thread [weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@107d5bb4] faild to initialize the session pool. SessionPoolHost.create() thread[weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@107d5bb4]: Failed to obtain a session after 3 attempts. SPM cannot successfully connect to web server Login credentials [endpoint: https://+<host>+/ngbeai_enu/start.swe?SWEExtSource=SecureWebService&SWEExtCmd=Execute&WSSOAP=1 ]
       java.lang.Throwable: SOAPException occured when requesting : javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: Received fatal alert: handshake_failure
       javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: Received fatal alert: handshake_failure.
  </detail>
  </part>
  TIA,
  Vivek
  Edited by: 909283 on Apr 15, 2013 12:07 AM

  Hi Kishor/Rene,
  Thanks for the reply, we have already referred to the mentioned Oracle Note and enabled SSL debugging.
  while starting Admin server we are getting below output:
  Can you please confirm from below logs that SSL connection is correct, i have also provided below the error message we are getting in our process.
  <Apr 2, 2013 6:49:56 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLSetup: loading trusted CA certificates>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Filtering JSSE SSLSocket>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLIOContextTable.addContext(ctx): 316588026>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLSocket will be Muxing>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write SSL_20_RECORD>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received HANDSHAKE>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: ServerHello>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received HANDSHAKE>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: Certificate>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Validating certificate 0 in the chain: Serial number: 105197569742293346305268
  Issuer:DC=com, DC=<xyz>, DC=dir, DC=test, DC=testcore, CN= Test AD Objects CA1
  Subject:C=AU, ST=NSW, L=Sydney, O=<xyz>, OU=Operations and Shared Services, CN= xyz>.com.au, EMAIL=<abcd>@<.com>
  Not Valid Before:Thu Oct 11 11:00:23 EST 2012
  Not Valid After:Sat Oct 11 11:00:23 EST 2014
  Signature Algorithm:SHA1withRSA
  >
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Validating certificate 1 in the chain: Serial number: 458601664052503175495693
  Issuer:CN=<xyz> Test Policy CA
  Subject:DC=com, DC=<xyz>, DC=dir, DC=test, DC=testcore, CN=<xyz> Test AD Objects CA1
  Not Valid Before:Thu Nov 10 15:24:24 EST 2011
  Not Valid After:Thu Nov 10 15:34:24 EST 2016
  Signature Algorithm:SHA1withRSA
  >
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <validationCallback: validateErr = 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> < cert[0] = Serial number: 105197569742293346305268
  Issuer:DC=com, DC=<xyz>, DC=dir, DC=test, DC=testcore, CN=<xyz> Test AD Objects CA1
  Subject:C=AU, ST=NSW, L=Sydney, O=<xyz>, OU=Operations and Shared Services, CN=<abcd>.<.com>, EMAIL=<abcd>@<.com>
  Not Valid Before:Thu Oct 11 11:00:23 EST 2012
  Not Valid After:Sat Oct 11 11:00:23 EST 2014
  Signature Algorithm:SHA1withRSA
  >
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> < cert[1] = Serial number: 458601664052503175495693
  Issuer:CN=<xyz> Test Policy CA
  Subject:DC=com, DC=<xyz>, DC=dir, DC=test, DC=testcore, CN=<xyz> Test AD Objects CA1
  Not Valid Before:Thu Nov 10 15:24:24 EST 2011
  Not Valid After:Thu Nov 10 15:34:24 EST 2016
  Signature Algorithm:SHA1withRSA
  >
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <weblogic user specified trustmanager validation status 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLTrustValidator returns: 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Trust status (0): NONE>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Performing hostname validation checks: <abcd>.<.com>>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received HANDSHAKE>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: ServerKeyExchange RSA>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RSA/ECB/NoPadding>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm MD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RC4>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RC4>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received HANDSHAKE>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: ServerHelloDone>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RSA>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write HANDSHAKE, offset = 0, length = 70>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write CHANGE_CIPHER_SPEC, offset = 0, length = 1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RC4>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HMACMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HMACMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write HANDSHAKE, offset = 0, length = 16>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received CHANGE_CIPHER_SPEC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Using JCE Cipher: SunJCE version 1.6 for algorithm RC4>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HMACMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HMACMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received HANDSHAKE>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <HANDSHAKEMESSAGE: Finished>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacMD5>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Ignoring not supported JCE Mac: SunJCE version 1.6 for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <Will use default Mac for algorithm HmacSHA1>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 8>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read(offset=0, length=8192)>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received APPLICATION_DATA: databufferLen 0, contentLength 26>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read databufferLen 26>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read A returns 26>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 316565651 : 0 + 0 = 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 24>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read(offset=0, length=8192)>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received APPLICATION_DATA: databufferLen 0, contentLength 45>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read databufferLen 45>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read A returns 45>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 316565651 : 0 + 0 = 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 15>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read(offset=0, length=8192)>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received APPLICATION_DATA: databufferLen 0, contentLength 30>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read databufferLen 30>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read A returns 30>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 316565651 : 0 + 0 = 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 18>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read(offset=0, length=8192)>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received APPLICATION_DATA: databufferLen 0, contentLength 23>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read databufferLen 23>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read A returns 23>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 316565651 : 0 + 0 = 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 20>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read(offset=0, length=8192)>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received APPLICATION_DATA: databufferLen 0, contentLength 41>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read databufferLen 41>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read A returns 41>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 316565651 : 0 + 0 = 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write APPLICATION_DATA, offset = 0, length = 7>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read(offset=0, length=8192)>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <isMuxerActivated: false>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 SSL3/TLS MAC>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316569006 received APPLICATION_DATA: databufferLen 0, contentLength 13>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read databufferLen 13>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <316565651 read A returns 13>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <avalable(): 316565651 : 0 + 0 = 0>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <NEW ALERT with Severity: WARNING, Type: 0
  java.lang.Exception: New alert stack
  at com.certicom.tls.record.alert.Alert.<init>(Unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.closeWriteHandler(Unknown Source)
  at com.certicom.tls.interfaceimpl.TLSConnectionImpl.close(Unknown Source)
  at javax.net.ssl.impl.SSLLayeredSocket.close(Unknown Source)
  at weblogic.nodemanager.client.NMServerClient.disconnect(NMServerClient.java:276)
  at weblogic.nodemanager.client.NMServerClient.done(NMServerClient.java:138)
  at weblogic.nodemanager.mbean.NodeManagerRuntime.getState(NodeManagerRuntime.java:423)
  at weblogic.nodemanager.mbean.NodeManagerRuntime.getState(NodeManagerRuntime.java:440)
  at weblogic.server.ServerLifeCycleRuntime.getStateNodeManager(ServerLifeCycleRuntime.java:752)
  at weblogic.server.ServerLifeCycleRuntime.getState(ServerLifeCycleRuntime.java:584)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at weblogic.management.jmx.modelmbean.WLSModelMBean.getAttribute(WLSModelMBean.java:525)
  at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.getAttribute(DefaultMBeanServerInterceptor.java:666)
  at com.sun.jmx.mbeanserver.JmxMBeanServer.getAttribute(JmxMBeanServer.java:638)
  at weblogic.management.mbeanservers.domainruntime.internal.FederatedMBeanServerInterceptor.getAttribute(FederatedMBeanServerInterceptor.java:308)
  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$12.run(WLSMBeanServerInterceptorBase.java:326)
  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.getAttribute(WLSMBeanServerInterceptorBase.java:324)
  at weblogic.management.mbeanservers.internal.JMXContextInterceptor.getAttribute(JMXContextInterceptor.java:157)
  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$12.run(WLSMBeanServerInterceptorBase.java:326)
  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.getAttribute(WLSMBeanServerInterceptorBase.java:324)
  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$12.run(WLSMBeanServerInterceptorBase.java:326)
  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.getAttribute(WLSMBeanServerInterceptorBase.java:324)
  at weblogic.management.mbeanservers.internal.SecurityInterceptor.getAttribute(SecurityInterceptor.java:299)
  at weblogic.management.jmx.mbeanserver.WLSMBeanServer.getAttribute(WLSMBeanServer.java:279)
  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$5$1.run(JMXConnectorSubjectForwarder.java:326)
  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$5.run(JMXConnectorSubjectForwarder.java:324)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder.getAttribute(JMXConnectorSubjectForwarder.java:319)
  at javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1404)
  at javax.management.remote.rmi.RMIConnectionImpl.access$200(RMIConnectionImpl.java:72)
  at javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1265)
  at javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1367)
  at javax.management.remote.rmi.RMIConnectionImpl.getAttribute(RMIConnectionImpl.java:600)
  at javax.management.remote.rmi.RMIConnectionImpl_WLSkel.invoke(Unknown Source)
  at weblogic.rmi.internal.ServerRequest.sendReceive(ServerRequest.java:174)
  at weblogic.rmi.internal.BasicRemoteRef.invoke(BasicRemoteRef.java:222)
  at javax.management.remote.rmi.RMIConnectionImpl_1035_WLStub.getAttribute(Unknown Source)
  at javax.management.remote.rmi.RMIConnector$RemoteMBeanServerConnection.getAttribute(RMIConnector.java:878)
  at javax.management.MBeanServerInvocationHandler.invoke(MBeanServerInvocationHandler.java:263)
  at weblogic.management.jmx.MBeanServerInvocationHandler.doInvoke(MBeanServerInvocationHandler.java:504)
  at weblogic.management.jmx.MBeanServerInvocationHandler.invoke(MBeanServerInvocationHandler.java:380)
  at $Proxy138.getState(Unknown Source)
  at com.bea.console.actions.core.server.ServerTableAction.populateServerRuntimeTableBean(ServerTableAction.java:365)
  at com.bea.console.actions.core.server.ServerTableAction$ServerTableWork.run(ServerTableAction.java:498)
  at weblogic.work.commonj.CommonjWorkManagerImpl$WorkWithListener.run(CommonjWorkManagerImpl.java:203)
  at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:528)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
  >
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <write ALERT, offset = 0, length = 2>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <close(): 316565651>
  <Apr 2, 2013 6:49:57 PM EST> <Debug> <SecuritySSL> <BEA-000000> <SSLIOContextTable.removeContext(ctx): 316588026>
  error in bpel process:
  summary=<summary xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">Error on AIASessionPoolManager.bpel when attempting Get operation</summary>
  ,detail=<detail xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">Error on AIASessionPoolManager.bpel: Operation=Get.
  SessionPoolHost.getSession(Siebel,190001): SessionPoolHost.create() thread[weblogic.work.j2ee.J2EEWorkManager$WorkWithListener@16670d1d]: Failed to obtain a session after 3 attempts. SPM cannot successfully connect to web server Login credentials [endpoint: https://<host>:443/eai_enu/start.swe?SWEExtSource=SecureWebService&amp;SWEExtCmd=Execute&amp;WSSOAP=1 ].
  java.lang.Throwable: SOAPException occured when requesting : javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: Received fatal alert: handshake_failure
  javax.xml.soap.SOAPException: javax.xml.soap.SOAPException: Message send failed: Received fatal alert: handshake_failure</detail>
  ,code=<code xmlns:def="http://www.w3.org/2001/XMLSchema" xsi:type="def:string" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance">Error</code>}
  </summary>
  TIA,
  Vivek
  Edited by: 909283 on Apr 15, 2013 12:08 AM