/lib is a standard location for redhat/fedora. The binary, according to strace, tried opening /usr/lib/foo and then failed out. There were others that were OK as they went through a "chain" of locations looking for the lib. But those 4 were problematic.<br>
<br>Binary-only packages not produced by the distro are almost always a problem. To add insult to injury on this, Cisco uses openssl which does not require source redistribution.<br><br><div class="gmail_quote">On Tue, Nov 25, 2008 at 1:15 PM, Chris Kleeschulte <span dir="ltr"><<a href="mailto:chris.kleeschulte@it.libertydistribution.com">chris.kleeschulte@it.libertydistribution.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">I have seen this a lot with precompiled binaries, but usually happens<br>
when the linker references a specific symbol in a version library<br>
versus the version-less symlinked pointer.<br>
<br>
such as ibXxf86misc.so -> libXxf86misc.so.1.1.0<br>
<br>
I am wondering if you should have just made sure that /lib existed in<br>
your linker's config file /etc/ld.so.conf? The binary should be using<br>
the linker to tell it where things are?<br>
<br>
then run ldconfig to update the cache<br>
<br>
Chris<br>
<div><div></div><div class="Wj3C7c"><br>
On Nov 25, 2008, at 12:33 PM, Jim Kinney wrote:<br>
<br>
> For the archives:<br>
><br>
> The Cisco Anyconnect VPN client for Linux is supposed to work with<br>
> SSL certs. But "out of the box" is just won't. It appears (based on<br>
> strace analysis) that the vpn binary is hard linked to libs that are<br>
> not always there. The solution was to do some symlinks:<br>
><br>
> ln -s /lib/libnss3.so /usr/lib/libnss3.so<br>
> ln -s /lib/libplc4.so /usr/lib/libplc4.so<br>
> ln -s /lib/libnspr4.so /usr/lib/libnspr4.so<br>
> ln -s /lib/libsmime3.so /usr/lib/libsmime3.so<br>
><br>
> This worked for a Fedora 9 system (requires<br>
> nspr-4.7.1-0.9.1.fc9.i386 nss-3.12.1.1-5.fc9.i386<br>
> openssl-0.9.8g-9.fc9.i386).<br>
><br>
> The cert was installed in firefox using the security management<br>
> tools - I had a private ID cert as well as a new CA cert to install.<br>
><br>
><br>
> --<br>
> --<br>
> James P. Kinney III<br>
><br>
</div></div>> _______________________________________________<br>
> Ale mailing list<br>
> <a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
> <a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
<br>
_______________________________________________<br>
Ale mailing list<br>
<a href="mailto:Ale@ale.org">Ale@ale.org</a><br>
<a href="http://mail.ale.org/mailman/listinfo/ale" target="_blank">http://mail.ale.org/mailman/listinfo/ale</a><br>
</blockquote></div><br><br clear="all"><br>-- <br>-- <br>James P. Kinney III <br><br>