[squid-users] Uninitialized SSL certificate database directory
Amos Jeffries
squid3 at treenet.co.nz
Tue Aug 28 11:28:30 UTC 2018
On 28/08/18 7:13 AM, Maximiliano Santa Cruz wrote:
>
> Hello everybody.
>
> I've been struggling with this error:
>
> (ssl_crtd): Uninitialized SSL certificate database directory:
> /var/lib/ssl_db. To initialize, run "ssl_crtd -c -s /var/lib/ssl_db".
>
> I've tried a lot of workarounds from this mailing list but none of them
> worked for me, these are the permissions that I have:
>
> [root at localhost admin]# /usr/lib64/squid/ssl_crtd -c -s /var/lib/ssl_db
>
> [root at localhost admin]# ll /var/lib/ssl_db
> total 4
> drwxr-xr-x. 2 squid squid 6 Aug 27 15:06 certs
> -rw-r--r--. 1 squid squid 0 Aug 27 15:06 index.txt
> -rw-r--r--. 1 squid squid 1 Aug 27 15:06 size
>
Have you updated SELinux permissions after creating or changing the
directory?
test -x /sbin/restorecon && restorecon /var/lib/ssl_db
>
> OS: CentOS 7
> [root at localhost admin]# squid -v
> Squid Cache: Version 3.5.27
> Service Name: squid
>
Missing the configure options which will say what --with-default-user=
was set to. That account needs to match the one with rights to the
directory - it may not be "squid".
Also, please update to Squid-4. It has much better support for SSL-Bump
features than squid-3.x. Eliezer has packages available
Amos
More information about the squid-users
mailing list