http://publib.boulder.ibm.com/httpserv/ihsdiag/gather_startup_doc.html#SOLGSKIT2
On some Solaris/SPARC systems manufactured by Fujitsu, GSKit can hang during startup. To resolve the issue, take the following two steps:
- Upgrade GSKit to 8.0.50.61 or later (8.5.5.10, 8.0.0.13, or older fixpacks with PI60207)
- Specify
SSLAttributeSet 4007 1to prevent the FIPS certified ICC 8.4 from being loaded. Note: If usingSSLFIPSEnable, you must also opt-in to using a non-certified cryptograhic module with environment variableICC_IGNORE_FIPS=YES
Some other instructions may refer to removing a "C/" directory from the GSKit lib directory. This should have the same result asSSLAttributeSet 4007 1-- disabling the initialization of the FIPS certified cryptographic module inside of GSKit. There is always a 2nd, non-certified cryptographic module that can be used.
Append below line at the end of httpd.conf
SSLAttributeSet 4007 1
You may need reboot the server.
I tried " SSLAttributeSet 4007 1", it doesn't fix the problem, then I deleted
"C/" directory from the GSKit lib directory, and it works.
I tried " SSLAttributeSet 4007 1", it doesn't fix the problem, then I deleted
"C/" directory from the GSKit lib directory, and it works.
No comments:
Post a Comment