Re: updated to 13.1 (i386). Apache won't run if php80 enabled
- In reply to: William Dudley : "Re: updated to 13.1 (i386). Apache won't run if php80 enabled"
- Go to: [ bottom of page ] [ top of archives ] [ this month ]
Date: Thu, 06 Apr 2023 16:00:47 UTC
Hi Bill, > I'm using the port of sendmail so STARTTLS will work. I recommend in the strongest possible terms that you not use STARTTLS in any way, and that you use TLS-enforced SMTPS (port 465) and IMAPS (port 993) exclusively with clients. [1,2] When your sendmail can't reach other MTAs on 465 to deliver mail to them, it can and should drop back to using port 25 with no TLS, but clients (MUAs) accessing it should use only 465 and 993. Cheers, Alex [1] https://www.eff.org/deeplinks/2014/11/starttls-downgrade-attacks [2] https://nostarttls.secvuln.info/ ---------------------------------------- Apr 6, 2023 16:15:33 William Dudley <wfdudley@gmail.com>: > > my reply below. > > On Thu, Apr 6, 2023 at 2:20 AM Odhiambo Washington <odhiambo@gmail.com> wrote: >> >> >> On Thu, Apr 6, 2023 at 9:09 AM Steve O'Hara-Smith <steve@sohara.org> wrote: >>> On Wed, 5 Apr 2023 11:09:37 -0400 >>> William Dudley <wfdudley@gmail.com> wrote: >>> >>>> I have another machine running 13.1, but it's amd64. It happily runs >>>> Apache with php80, so I downgraded the i386 machine to php80 >>>> so the two machines would be "the same". >>>> >>>> Except this didn't fix the problem. Apache won't run with either php80 >>>> OR php81 enabled, using this stanza in httpd.conf: >>> >>> Two possibilities spring to mind >>> >>> - the two machines are not "the same", check all relevant package >>> versions right down the dependency tree. >>> >>> - The code depends on a feature not in one CPU or something of that >>> order. Given that PHP and Apache work independently the glue is the prime >>> suspect, I'd try building mod-php from ports. >> >> He wants to keep things simple, so he prefers pkg install... no ports. > > I'm not averse to trying the port to see what happens. I'm using the port of sendmail > so STARTTLS will work. > > Bill Dudley > >> >> -- >> Best regards, >> Odhiambo WASHINGTON, >> Nairobi,KE >> +254 7 3200 0004/+254 7 2274 3223 >> "Oh, the cruft.", egrep -v '^$|^.*#' ¯\_(ツ)_/¯ :-) >> [How to ask smart questions: http://www.catb.org/~esr/faqs/smart-questions.html]