Apache / 2.4.41 (http) Service is not running

rimasintas

New member
Joined
Feb 10, 2020
Messages
2
Hi. I'm asking for help. Apache service does not start. DirectAdmin CustomBuild 2.0 environment. "Restarting apache.
AH00526: Syntax error on line 243 of /etc/httpd/conf/extra/httpd-ssl.conf:
Invalid command 'SSLOpenSSLConfCmd', possibly missed or defined by a module not included in the server configuration "
After viewing the configuration. I see
<IfModule ssl_module>
SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
</IfModule>
Which problem I don't understand. In search as TLS version compatibility but that very old information 2007
Os version centos-release-6-10.el6.centos.12.3.x86_64
Out of grateful appreciation
 

smtalk

Administrator
Staff member
Joined
Aug 22, 2006
Messages
8,774
Location
LT, EU
Fixed in CB 2.0 rev. 2405. To check your version, just run "./build version", if it's older:
Code:
cd /usr/local/directadmin/custombuild
wget -O build http://files1.directadmin.com/services/custombuild/2.0/custombuild/build
./build rewrite_confs
 

khiavnet

Verified User
Joined
Sep 1, 2018
Messages
6
hi
im not start httpd and receive this error
AH00526: Syntax error on line 243 of /etc/httpd/conf/extra/httpd-ssl.conf:
SSLOpenSSLConfCmd: file '/etc/httpd/conf/ssl.crt/dhparams.pem' does not exist or is empty.
dhparms.pem file is empty
please help me tanks
 
Last edited:

zEitEr

Super Moderator
Joined
Apr 11, 2005
Messages
14,146
Location
GMT +7.00
Will it help

Code:
cd /usr/local/directadmin/custombuild
./build rewrite_confs
?
 

ditto

Verified User
Joined
Apr 27, 2009
Messages
2,540
@smtalk. I did see this in Custombuild changelog:

Code:
2405 - Fix OpenSSL <1.0.2 version check for SSLOpenSSLConfCmd use on CentOS6/Debian8/Debian9
However we are not using CentOS6/Debian8/Debian9, we are only using CentOS 7 and CentOS 8, but still after doing ./build rewrite_confs I get this in the bottom of /etc/httpd/conf/extra/httpd-ssl.conf:

Code:
SSLOpenSSLConfCmd DHParameters "/etc/httpd/conf/ssl.crt/dhparams.pem"
Is that by design, or is it a bug that I get it on a CentOS 7 server?
 

ditto

Verified User
Joined
Apr 27, 2009
Messages
2,540
@khiavnet, The file /etc/httpd/conf/ssl.crt/dhparams.pem should exist and should not be empty after doing ./build rewrite_confs , but if it still is missing or empty, you can temporary remove the last line from /etc/httpd/conf/extra/httpd-ssl.conf, remove this:

Code:
SSLOpenSSLConfCmd DHParameters "/etc/httpd/conf/ssl.crt/dhparams.pem"
Then try to restart Apache. Please note this is not a fix, it is a temporary work-around until you can figure out what went wrong.
 

khiavnet

Verified User
Joined
Sep 1, 2018
Messages
6
@khiavnet, The file /etc/httpd/conf/ssl.crt/dhparams.pem should exist and should not be empty after doing ./build rewrite_confs , but if it still is missing or empty, you can temporary remove the last line from /etc/httpd/conf/extra/httpd-ssl.conf, remove this:

Code:
SSLOpenSSLConfCmd DHParameters "/etc/httpd/conf/ssl.crt/dhparams.pem"
Then try to restart Apache. Please note this is not a fix, it is a temporary work-around until you can figure out what went wrong.
Apache was working after I got the directadmin update
and i forget this im using apache_nginx in custom build
 
Last edited:

smtalk

Administrator
Staff member
Joined
Aug 22, 2006
Messages
8,774
Location
LT, EU
@smtalk. I did see this in Custombuild changelog:

Code:
2405 - Fix OpenSSL <1.0.2 version check for SSLOpenSSLConfCmd use on CentOS6/Debian8/Debian9
However we are not using CentOS6/Debian8/Debian9, we are only using CentOS 7 and CentOS 8, but still after doing ./build rewrite_confs I get this in the bottom of /etc/httpd/conf/extra/httpd-ssl.conf:

Code:
SSLOpenSSLConfCmd DHParameters "/etc/httpd/conf/ssl.crt/dhparams.pem"
Is that by design, or is it a bug that I get it on a CentOS 7 server?
As the log entry states - it doesn't affect CentOS7 or 8, and it adds SSLOpenSSLConfCmd line there successfully, because it's fully supported by OpenSSL 1.0.2.
 
Top