Cannot open SSLSessionCache???

Posted on 2006-10-29
Last Modified: 2012-08-14
Does anyone know why this might be happening???  Apache simply will not create this file, all it does it look for it.  I tried to create an empty one but when I run apache it removes it first.  

[29/Oct/2006 08:30:37 30648] [error] Cannot open SSLSessionCache DBM file `/programs/apache/logs-ssl/ssl_scache' for scanning (System error follows)
[29/Oct/2006 08:30:37 30648] [error] System: No such file or directory (errno: 2)

[29/Oct/2006 08:30:37 30648] [error] Cannot open SSLSessionCache DBM file `/programs/apache/logs-ssl/ssl_scache' for reading (fetch) (System error follows)
[29/Oct/2006 08:30:37 30648] [error] System: No such file or directory (errno: 2)

This 'logs-ssl' directory is world writable.  Actually it doesn't matter where I put the ssl_scache, its never created and apache always gives these read errors trying to reach it.

I'm running Apache 1.3.37 on Linux 2.4.32.  Latest everything like modssl 2.8.28-1.3.37, openssl 0.9.8d and php 4.4.4.  File system is ext3.

This is whats in the httpd.conf:

<IfModule mod_ssl.c>
   SSLPassPhraseDialog builtin
   SSLSessionCache dbm:logs-ssl/ssl_scache
   SSLSessionCacheTimeout  300
   SSLMutex file:logs-ssl/ssl_mutex
   SSLRandomSeed startup builtin
   SSLRandomSeed connect builtin
   SSLLog /programs/apache/logs-ssl/ssl.log
   SSLLogLevel info

The ssl.log is logging fine, and the ssl_mutex files are created normally.  anyone?

Question by:scottg
  • 3
  • 2
LVL 15

Expert Comment

ID: 17833644
what is the owner and group of the file?  Of the directory that it is in?

Author Comment

ID: 17833820
The file never exists, thats the problem.  I mentioned above "Apache simply will not create this file, all it does is look for it.  I tried to create an empty one but when I run apache it removes it first."  So I can't give you the owner/group of the file as it never exists.

The directory has perms 777 and is owned by Apache's EUID which is   But even if its 750 and root.root it don't matter, I've tried everything.
LVL 15

Expert Comment

ID: 17833856
But you did say that you tried to create an empty one.  My question was what did you set that to when it was created.

Setting to 777 is a very bad idea; it is possible that the reason it won't run is because the security is too lax.

I found an google reference to setting the user and id to apache.apache (even though they had nobody.httpd), but if you dont' have that username and group configured, I don't see how that would help.

I notice that you are using a relative path for the file:

SSLSessionCache dbm:logs-ssl/ssl_scache

Have you tried using an absolute (full) path instead?
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.


Author Comment

ID: 17833890
I'll try the full path, but I don't think it will matter because the error looks like it checks in the right place:

Cannot open SSLSessionCache DBM file `/programs/apache/logs-ssl/ssl_scache'

Author Comment

ID: 17998379
problem was never solved, I had to disable the cache, which is fine. maybe give periwinkle half the points for trying to help.

Thanks for directing me to a 30 page help.jsp document, that helps.   Wouldn't it be great just to have a "Close Question" button or something.  

Accepted Solution

Computer101 earned 0 total points
ID: 18190714
PAQed with points refunded (500)

EE Admin

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Over the last year I have answered a couple of basic URL rewriting questions several times so I thought I might as well have a stab at: explaining the basics, providing a few useful links and consolidating some of the most common queries into a sing…
In Solr 4.0 it is possible to atomically (or partially) update individual fields in a document. This article will show the operations possible for atomic updating as well as setting up your Solr instance to be able to perform the actions. One major …
Sending a Secure fax is easy with eFax Corporate ( First, just open a new email message. In the To field, type your recipient's fax number You can even send a secure international fax — just include t…
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…

863 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now