Re: [EMAIL PROTECTED] Reverse proxy

2005-08-25 Thread isha b 
Thanks a lot Nick Neil and Nick Kew , It really done the magic , Great !!!


Thanks n Regards,
Isha








On 8/24/05, Neil A. Hillard <[EMAIL PROTECTED]> wrote:
> Isha,
> 
> isha b wrote:
> > Thanks , Neil
> >
> > Here in apache we use  set  instead of add in Front-En-Https,
> >
> > RequestHeader set Front-End-Https "On"
> >
> >
> > but that doesn't solved the problem.
> 
> Can you see this header being sent in the request to your backend web
> server.  Is it Outlook Web Access that you're trying to accelerate?
> 
> > http://www.apacheweek.com/features/reverseproxies  is having good info
> > abd mod_proxy_html is almost near to solve this problem but again they
> > clearly says it ias as equivalent as od " ProxyPassReverse " of
> > apache.
> >
> > But I couldn't try adding mod_proxy_html module as this is third party
> > commercial module.
> >
> > Still looking for the solution
> mod_proxy_html is open source, written by Nick Kew.  We're running it
> here and it really does the job.  Download the source, compile and
> install it and you should be laughing.
> 
> HTH,
> 
> 
>Neil.
> 
> --
> Neil Hillard[EMAIL PROTECTED]
> Westland Helicopters Ltd.   http://www.whl.co.uk/
> 
> Disclaimer: This message does not necessarily reflect the
> views of Westland Helicopters Ltd.
> 
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>   "   from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> 
>

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: [EMAIL PROTECTED] Problems with Apache2 Rewrite after upgrade

2005-08-25 Thread Axel-Stéphane SMORGRAV 
Your problem is not due to mod_rewrite. It is most probably an access control 
problem.

I "almost" managed to reproduce it by adding the following lines to my test 
config:

ErrorDocument 403 /docs/FORBIDDEN

   Deny from all


What troubles me a little bit is that I do see the rewrite log message 
"go-ahead with proxy request" in my logs, whereas it does not appear in 
yours... On the other hand you may have edited the logs you posted.


150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (2) init rewrite engine with 
requested uri /docs/123456
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (3) applying pattern 
'^/docs/?$' to uri '/docs/123456'
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (3) applying pattern 
'^/docs/index' to uri '/docs/123456'
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (3) applying pattern 
'^/docs/sitemap' to uri '/docs/123456'
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (3) applying pattern 
'^/docsum' to uri '/docs/123456'
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (3) applying pattern 
'^/docs/([0-9]{6})$' to uri '/docs/123456'
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (2) rewrite /docs/123456 -> 
http://db.jhuccp.org/dbtw-wpd/exec/dbtwpcgi.exe?BU=http%3A%2F%2Fdb.jhuccp.org%2Fdbtw-wpd%2Fexec%2Fdbtwpcgi.exe&QF0=DocNo%&QI0=123456&TN=Popline&AC=QBE_QUERY&MR=30%DL=1&&RL=1&&RF=LongRecordDisplay&DF=LongRecordDisplay
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (3) split 
uri=http://db.jhuccp.org/dbtw-wpd/exec/dbtwpcgi.exe?BU=http%3A%2F%2Fdb.jhuccp.org%2Fdbtw-wpd%2Fexec%2Fdbtwpcgi.exe&QF0=DocNo%&QI0=123456&TN=Popline&AC=QBE_QUERY&MR=30%DL=1&&RL=1&&RF=LongRecordDisplay&DF=LongRecordDisplay
 -> uri=http://db.jhuccp.org/dbtw-wpd/exec/dbtwpcgi.exe, 
args=BU=http%3A%2F%2Fdb.jhuccp.org%2Fdbtw-wpd%2Fexec%2Fdbtwpcgi.exe&QF0=DocNo%&QI0=123456&TN=Popline&AC=QBE_QUERY&MR=30%DL=1&&RL=1&&RF=LongRecordDisplay&DF=LongRecordDisplay
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (2) forcing proxy-throughput 
with http://db.jhuccp.org/dbtw-wpd/exec/dbtwpcgi.exe
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#238ec8/initial] (1) go-ahead with proxy 
request proxy:http://db.jhuccp.org/dbtw-wpd/exec/dbtwpcgi.exe [OK]
150.175.32.163 - - [25/Aug/2005:10:06:37 +0200] 
[labelle16.foo.bar/sid#16d060][rid#23a680/initial/redir#1] (2) init rewrite 
engine with requested uri /docs/FORBIDDEN
[...]

I also simplified the rewrite rules a little bit, and un-escaped the proxy URL 
(to the best of my ability)

   RewriteRule ^/docs/?$ /docs/index.html
   RewriteRule ^/docs/index -   [L] #If this 
matches, don't do any rewriting
   RewriteRule ^/docs/sitemap   -   [L] #If this 
matches, don't do any rewriting. For Google sitemap program
   RewriteRule ^/docsum -   [L] #If this 
matches, don't do any rewriting
   RewriteRule ^/docs/([0-9]{6})$ 
http://db.jhuccp.org/dbtw-wpd/exec/dbtwpcgi.exe?BU=http://db.jhuccp.org/dbtw-wpd/exec/dbtwpcgi.exe&QF0=DocNo%&QI0=$1&TN=Popline&AC=QBE_QUERY&MR=30%DL=1&&RL=1&&RF=LongRecordDisplay&DF=LongRecordDisplay
  [P]
   RewriteRule ^/docs/[0-9]{4}  -   [L] #If this 
matches, don't do any rewriting
   RewriteRule .* http://db.jhuccp.org/popinform/basic.html  [R,L]

-ascs

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] mod_cache and conditional disabling

2005-08-25 Thread Colm MacCarthaigh 
On Thu, Aug 25, 2005 at 04:03:53PM +1000, Steve McInerney wrote:
> As part of implementing a short term performance improvement, we're
> looking at using a caching reverse proxy.
> 
> In essence we need to be able to disable mod_cache on a reverse proxy
> configuration for certain classes of users only.
> 
> Users are able to be identified via Cookie and hence we can get an Env set
> for that identification. But I can't figure out a way to disable the
> caching based on this information.

Currently there is no easy way to achieve this within the proxy
configuration, however it is being worked on.

An approach might be to modify the backend, so that responses for these
users are rendered uncacheable. A full guide to the conditions which
determine cacheability is at;

http://httpd.apache.org/docs/2.1/caching.html#overview

Forcing the backend to include a "Vary: *" header for such responses
would give the desired behaviour for example.

-- 
Colm MacCárthaighPublic Key: [EMAIL PROTECTED]

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: [EMAIL PROTECTED] mod_cache and conditional disabling

2005-08-25 Thread Axel-Stéphane SMORGRAV 
It is possible by doing a bit of rewriting and tweaking of URLs.


Here's the general idea:

RewriteCond %{HTTP_COOKIE}  MYCOOKIE
RewriteRule ^(.*)$ /DONTCACHE$1

ProxyPass /DONTCACHE http://backend.foo.bar/
ProxyPassReverse  /DONTCACHE http://backend.foo.bar/

CacheDisable /DONTCACHE

or something like that.

-ascs


-Original Message-
From: Steve McInerney [mailto:[EMAIL PROTECTED] 
Sent: Thursday, August 25, 2005 8:04 AM
To: users@httpd.apache.org
Subject: [EMAIL PROTECTED] mod_cache and conditional disabling

Hi,

As part of implementing a short term performance improvement, we're looking at 
using a caching reverse proxy.


In essence we need to be able to disable mod_cache on a reverse proxy 
configuration for certain classes of users only.

Users are able to be identified via Cookie and hence we can get an Env set for 
that identification. But I can't figure out a way to disable the caching based 
on this information.

Unfortunately, all the URL's remain the same for normal and "special"
users, so the normal CacheDisable Directive don't work.


I've tried using mod_rewrite and a proxy rule (ie [P]) without any success
- the resulting output is still cached, tho that could be PEBKAC.


Any ideas or insight would be greatly appreciated.


Cheers!


- Steve


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] mod_cache and conditional disabling

2005-08-25 Thread Colm MacCarthaigh 
On Thu, Aug 25, 2005 at 10:30:19AM +0200, Axel-Stéphane  SMORGRAV wrote:
> It is possible by doing a bit of rewriting and tweaking of URLs.
> 
> Here's the general idea:
> 
> RewriteCond %{HTTP_COOKIE}MYCOOKIE
> RewriteRule ^(.*)$ /DONTCACHE$1
> 
> ProxyPass /DONTCACHE http://backend.foo.bar/
> ProxyPassReverse  /DONTCACHE http://backend.foo.bar/
> 
> CacheDisable /DONTCACHE
> 
> or something like that.

I don't think that will work reliably. Although it will prevent requests
with the cookie set from being cached, it will not prevent responses for
non-cookie users being served to cookie users. This is because mod_cache
runs as a quick-handler, before mod_rewrite has had a chance to run.

-- 
Colm MacCárthaighPublic Key: [EMAIL PROTECTED]

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Authentication against Windows domain for Apache on Linux

2005-08-25 Thread Tom DSilva 
I'm sorry for the skip. I'm using Windows NT 4.0 Service Pack 6 +
Option Pack 4. Suse is v9.2 and Apache is the latest.

Thanks,
Tom


On 8/25/05, Sascha Kersken <[EMAIL PROTECTED]> wrote:
> Hi,
> 
> unfortunately, you didn't write what version of Windows Server you are
> using. If you are running Windows 2000 Server or Windows Server 2003 as an
> Active Directory domain controller, mod_auth_ldap works just fine.
> 
> Regards
> Sascha
> 
> - Original Message -
> From: "Tom DSilva" <[EMAIL PROTECTED]>
> To: 
> Sent: Wednesday, August 24, 2005 5:39 PM
> Subject: [EMAIL PROTECTED] Authentication against Windows domain for Apache on
> Linux
> 
> 
> Hello all,
> 
> We have a Windows file server with some shared folders. We have a web
> server running Apache on Suse. We want to give access to the shared
> folders via the web server only to the valid Windows users. We can not
> use the normal authenication techniques commonly used in Apache like
> basic, authentication, dbm, or LDAP.
> 
> I wanted to know if there is any way to authenticate users against a
> Windows domain on Apache running in Linux? I couln't find any useful
> information on Google. Can anyone point me the appropriate resources?
> 
> TIA,
> Tom
> 
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>   "   from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> 
> 
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>   "   from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> 
>

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] strange connections to apache2 port 443

2005-08-25 Thread Thomas Hendrich 
Hi,

I hope that I describe my problem to the right mailinglist and that
someone can give me the hint I need.

I´m running a SuSE Linux 9.0 with Apache2 2.0.53 ( installed via rpm
from ftp.suse.com ) with mod_ssl. The startup parameter for the apache
is "-D SSL".

But here comes my problem ... I´m also running an iptables firewall and
I notice a strange behaviour on my system but only when I start apache
with "-D SSL". When I run apache only with http there are no strange
connection attempts in the firewall logs.

To be more precise, my firewall logs show entries of connection attampts
from my localhost to my localhost via interface lo ( not eth0 ) from
some increacing port to port 443.

Fact is that this connections only appear when I start the apache with
"-D SSL" and I can also comment out all the virtual hosts for port 443
but that does not matter, only when I start the apache without SSL the
connections disappear.
The strange thing is that in the firewall logs there are syn, ack ...
flags but I can not find any apache2-logfile entry for one of this
connections.

Does that sound familiar to somebody?
Is there a configuration withtin the apache2 to probe the ssl aware
apache?

Kind regards

Tom 

-- 
5 GB Mailbox, 50 FreeSMS http://www.gmx.net/de/go/promail
+++ GMX - die erste Adresse für Mail, Message, More +++

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: [EMAIL PROTECTED] mod_cache and conditional disabling

2005-08-25 Thread Axel-Stéphane SMORGRAV 

OK What about this, at the expense of an additional GET :


   RewriteCond %{HTTP_COOKIE}   MYCOOKIE
   RewriteRule ^(.*)$ http://cache.foo.bar$1 [P]

   ProxyPassReverse  / http://cache.foo.bar/

   ProxyPass / http://backend.foo.bar/ 
   ProxyPassReverse  / http://backend.foo.bar/



   ProxyPass / http://backend.foo.bar/ 
   ProxyPassReverse  / http://backend.foo.bar/

   CacheEnable /

 

-Original Message-
From: Colm MacCarthaigh [mailto:[EMAIL PROTECTED] 
Sent: Thursday, August 25, 2005 10:35 AM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] mod_cache and conditional disabling

On Thu, Aug 25, 2005 at 10:30:19AM +0200, Axel-Stéphane  SMORGRAV wrote:
> It is possible by doing a bit of rewriting and tweaking of URLs.
> 
> Here's the general idea:
> 
> RewriteCond %{HTTP_COOKIE}MYCOOKIE
> RewriteRule ^(.*)$ /DONTCACHE$1
> 
> ProxyPass /DONTCACHE http://backend.foo.bar/ ProxyPassReverse  
> /DONTCACHE http://backend.foo.bar/
> 
> CacheDisable /DONTCACHE
> 
> or something like that.

I don't think that will work reliably. Although it will prevent requests with 
the cookie set from being cached, it will not prevent responses for non-cookie 
users being served to cookie users. This is because mod_cache runs as a 
quick-handler, before mod_rewrite has had a chance to run.

-- 
Colm MacCárthaighPublic Key: [EMAIL PROTECTED]

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] mod_cache and conditional disabling

2005-08-25 Thread Colm MacCarthaigh 
On Thu, Aug 25, 2005 at 01:56:07PM +0200, Axel-Stéphane  SMORGRAV wrote:
> OK What about this, at the expense of an additional GET :
> 
> 
>RewriteCond %{HTTP_COOKIE} MYCOOKIE
>RewriteRule ^(.*)$ http://cache.foo.bar$1 [P]
> 
>ProxyPassReverse  / http://cache.foo.bar/
> 
>ProxyPass / http://backend.foo.bar/ 
>ProxyPassReverse  / http://backend.foo.bar/
> 
> 
> 
>ProxyPass / http://backend.foo.bar/ 
>ProxyPassReverse  / http://backend.foo.bar/
> 
>CacheEnable /
> 

No, that still won't work, but almost :) If you have;

RewriteCond %{HTTP_COOKIE}  !MYCOOKIE

The above will work, I think.

-- 
Colm MacCárthaighPublic Key: [EMAIL PROTECTED]

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: [EMAIL PROTECTED] mod_cache and conditional disabling

2005-08-25 Thread Axel-Stéphane SMORGRAV 
Uh, yeah. T'was the other way around.

Well: Houston, we've got a solution !

-ascs 

-Original Message-
From: Colm MacCarthaigh [mailto:[EMAIL PROTECTED] 
Sent: Thursday, August 25, 2005 2:04 PM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] mod_cache and conditional disabling

On Thu, Aug 25, 2005 at 01:56:07PM +0200, Axel-Stéphane  SMORGRAV wrote:
> OK What about this, at the expense of an additional GET :
> 
> 
>RewriteCond %{HTTP_COOKIE} MYCOOKIE
>RewriteRule ^(.*)$ http://cache.foo.bar$1 [P]
> 
>ProxyPassReverse  / http://cache.foo.bar/
> 
>ProxyPass / http://backend.foo.bar/ 
>ProxyPassReverse  / http://backend.foo.bar/ 
> 
> 
>ProxyPass / http://backend.foo.bar/ 
>ProxyPassReverse  / http://backend.foo.bar/
> 
>CacheEnable /
> 

No, that still won't work, but almost :) If you have;

RewriteCond %{HTTP_COOKIE}  !MYCOOKIE

The above will work, I think.

-- 
Colm MacCárthaighPublic Key: [EMAIL PROTECTED]

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Apache crashes while processing a request whose connection has been forcibly closed by IExplorer

2005-08-25 Thread Birgit Dreyer 
Hi all,

we are using Windows XP resp. Windows 2000 with  Apache/2.0.54 (Win32)
mod_ssl/2.0.54 OpenSSL/0.9.7g mod_python/3.1.3 Python/2.3.5 (httpd.conf see
appendix)

Apache crashes while processing a request whose connection has been
forcibly closed by the IExplorer. This occurs while the request handler
tries to write a large amount of data for the answer.

Apache crashes in  following scenario: Apache is processing a request. Our
handler tries to write a large amount of data ( in our case  ~96 bytes)
to the request. To do this apache calls the function apr_brigade_write. If
the amount of data is large a transient bucket with the user data address
will be created.


apr_brigade.c:
APU_DECLARE(apr_status_t) apr_brigade_write(apr_bucket_brigade *b,
apr_brigade_flush flush,
void *ctx,
const char *str, apr_size_t
nbyte)
{
 ...
if (nbyte > remaining) {
/* either a buffer bucket exists but is full,
 * or no buffer bucket exists and the data is too big
 * to buffer.  In either case, we should flush.  */
if (flush) {
e = apr_bucket_transient_create(str, nbyte, b->bucket_alloc);
APR_BRIGADE_INSERT_TAIL(b, e);
   return flush(b, ctx);
   ...


This bucket will be send to the next filters. In our case Mod_Deflate
fragments it in a loop to 8000 byte pieces and send it to the next filter


(mod_deflate.c / line 553 :
static apr_status_t deflate_out_filter(ap_filter_t *f,
   apr_bucket_brigade *bb)
{
   ...
while (ctx->stream.avail_in != 0) {
if (ctx->stream.avail_out == 0) {
apr_status_t rv;

ctx->stream.next_out = ctx->buffer;
len = c->bufferSize - ctx->stream.avail_out;

b = apr_bucket_heap_create((char *)ctx->buffer, len,
   NULL, f->c->bucket_alloc);
APR_BRIGADE_INSERT_TAIL(ctx->bb, b);
ctx->stream.avail_out = c->bufferSize;
/* Send what we have right now to the next filter. */
rv = ap_pass_brigade(f->next, ctx->bb);
if (rv != APR_SUCCESS) {
return rv;
}
}


At last SSL tries to write on the connection. But in the meantime IExplorer
has closed the connection (e.g. because the user trigger a further request
in the same frame). Thus SSL_Write fails:

error.log (loglevel info):

[Thu Aug 25 13:20:19 2005] [info] Subsequent (No.142) HTTPS request
received for child 0 (server PDDEKA-W1165:443)
[Thu Aug 25 13:20:20 2005] [info] Subsequent (No.134) HTTPS request
received for child 1 (server PDDEKA-W1165:443)
[Thu Aug 25 13:20:20 2005] [info] (OS 10054)An existing connection was
forcibly closed by the remote host.  : core_output_filter: writing data to
the network
[Thu Aug 25 13:20:20 2005] [info] (620019)APR does not understand this
error code: SSL output filter write failed.


The processing aborts. But unfortunately the transient buckets of
apr_bucket.c will not deleted. Because this bucket resp. its brigade will
be referenced in the ctx and this will be processed later at the finalizing
of the request:
In succession of the call of ap_finalize_request_protocol(r) of this
request ap_old_write_filter  will be called.


protocol.c:
AP_CORE_DECLARE_NONSTD(apr_status_t) ap_old_write_filter(
ap_filter_t *f, apr_bucket_brigade *bb)
{
old_write_filter_ctx *ctx = f->ctx;

AP_DEBU

[EMAIL PROTECTED] apache error question

2005-08-25 Thread Jay Allen 
Folks,

I have apache 2.0.49 on a windows server (with mod_ssl) and CF MX 6.1. 
 In my error log I see this occurring frequently:

[Wed Aug 24 16:03:25 2005] [notice] Parent: child process exited with
status 3221226324 -- Restarting.

...note I have maxrequestsperchild set to 0 which I think technicallly
means the child process shouldn't exit unless something goes wrong or
apache is stopped or restarted.

Occassionally (once or twice a week so far), apache will hang on this
server and if I try to restart apache it doesn't work, and eventually I
have to bounce the server.  Then it will run fine for a while, but
eventually it siezes up again.  (Note this is a very low traffic server,
so that probably explains why this doesn't happen more often?)

When I googled this error and other log entries, I found several
things, few of which were helpful.  I have added Win32DisalbeAcceptEx to
the apache config. on advice noted in several articles, but that doesn't
seemed to have helped.  I also saw an article that mentioned using
EnableSendfile off and EnableMMap off but I'm doubtful that those will
help.

I also saw some info. that seemed to relate this issue back to the use
of non-threadsafe code.  From what I can tell, we currently aren't
running anything that is not threadsafe on the server.

I could really use some advice as to what I should look for (other log
entries?) or test to help identify what's causing this problem.  Is this
a known issue w/a standard fix? (I hope so? hehe), or if not what should
my next step(s) be to solve this?

Thanks in Advance,


Jay J. Allen <[EMAIL PROTECTED]>
Professional Technologist
WVU Web Services
ph: (304) 293-5276
fax: (304) 293-7414

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Which file gets served when the URL does not include a mime type extension.

2005-08-25 Thread David Holden 
Yes  content negotiation is what was happening as I had Multiviews on
in the conf file.

 Thanks 
 
Dave.

On 8/24/05, oxfordmusic.net <[EMAIL PROTECTED]> wrote:
> >
> > thanks for the reply, the reason I ask is because I'm getting a
> > default behaviour that I cannot find documentation of.
> >
> > i.e. if I sent up a server with these two files in a directory it is
> > always serving the XML file over the HTML file.
> >
> > e.g
> >
> > http://localhost/test/file
> >
> > will return file.xml not file.html
> >
> > I don't think "DirectoryIndex" is appropriate here because the file
> > name does not matter, e.g. it could be fred.xml/fred.html or
> > bill.xml/bill.html it still chooses the .xml file over the html file
> > if both are there..
> >
> 
> correct. "DirectoryIndex" is not approariate here. that only governs the
> behaviour when http://localhost/test is requested.
> what you need to read up on is Content Negotiation:
> http://www.google.co.uk/search?hl=en&q=apache+content+negotiation&btnG=Google+Search&meta=
> which is how the server decides which file to server based on what the
> browser has requested and your own rules.
> a simple way to define it is, i believe, to place a file called file.var in
> the same directory with contents something like this:
> 
> URI: file
> 
> URI: file.html
> Content-type: text/html; qs=1
> 
> i am by no means an expert but this should at least give you something to
> get started on.
> 
> andy
> 
> 
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>"   from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
> 
> 


-- 
-- 
Dr. David Holden.
Please avoid sending me Word or PowerPoint attachments, thanks.
See: 
Public GPG key available on request.
-

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Mod_proxy and javascript problem

2005-08-25 Thread Jérôme Tytgat 
Hello community.

I'm trying to set up a reverse proxy under apache 2.0.54 (debian version).

The server i'm proxy reversing is a IIS 6.0 with class server on it (a
microsoft application for school networking).

I'm using mod_security, rewriterules and proxy for the reverse proxy and some of
virtual hosting because I'm masking 3 IIS server behind a linux/apache
server.

Each server is reached as follow :

http://www.toto.net/ goes to server1 (1.0.2.1)
http://www.toto.net/class goes to server2 (1.0.0.2)
http://www.toto.net/prod goes to server3 (1.0.0.3)
http://www.toto.net/sst goes to stats on the apache server

The big problem is that some javascript (.js) are not correctly interpreted
on the browser, so the html page is broken.

My vhost looks like this :


SSLEngine On
SSLProxyEngine on
SSLCACertificateFile /etc/apache2/ssl/cacert.pem
#SSLCertificateFile /etc/apache2/ssl/www.toto.net.crt
#SSLCertificateKeyFile /etc/apache2/ssl/www.toto.net.key
SSLCertificateFile /etc/apache2/ssl/newcert.pem
SSLCertificateKeyFile /etc/apache2/ssl/private.key

ServerAdmin [EMAIL PROTECTED]
ServerName www.toto.net
ServerAlias toto.net

CustomLog /var/log/apache2/https.toto.net.log combined
ErrorLog /var/log/apache2/https.toto.net.error.log

RewriteEngine on
RewriteOptions inherit
RewriteLog "/var/log/apache2/rewrite.https.toto.net.log"
RewriteLogLevel 0

ProxyRequests off
ProxyVia Off
ProxyErrorOverride Off
ProxyPreserveHost Off

Order Deny,Allow
Allow from all


# RewriteRules

RewriteRule ^/sst$  https://www.toto.net/sst/stats.html 
[R,NC]
RewriteRule ^/sst/$ https://www.toto.net/sst/stats.html 
[R,NC]

RewriteRule ^/class$https://www.toto.net/class/ [R,NC]
RewriteRule ^/class/class(.*)$  https://www.toto.net/class$1 [R,NC]

RewriteRule ^/prod$ https://www.toto.net/prod/ [R,NC]
RewriteRule ^/prod/prod(.*)$https://www.toto.net/prod$1 [R,NC]

RewriteCond %{HTTP_REFERER} ^https://(www\.)?toto.net/class/.*$ [NC]
RewriteCond %{REQUEST_URI}  !^/class/.*$ [NC]
RewriteRule ^/(.*)$ https://www.toto.net/class/$1 [R]

RewriteCond %{HTTP_REFERER} ^https://(www\.)?toto.net/prod/.*$ [NC]
RewriteCond %{REQUEST_URI}  !^/prod/.*$ [NC]
RewriteRule ^/(.*)$ https://www.toto.net/prod/$1 [R]

RewriteRule ^/prod/(.*)$http://1.0.0.3/$1 [P,L,NC]
RewriteRule ^/class/(.*)$   http://1.0.0.2/$1 [P,L,NC]

RewriteCond %{REQUEST_URI}  !^/sst/.*$ [NC]
RewriteRule ^/(.*)$ http://192.168.2.1/$1 [P,L]

ProxyPassReverse /prod/ http://1.0.0.3/
ProxyPassReverse /class/http://1.0.0.2/
ProxyPassReverse /  http://1.0.2.1/

SecAuditLog /var/log/apache2/audit.https.toto.net.log


Of course I'm limited in debugging because the class server application needs 
IE 6.0...

The Html source page is the same if I go directly to the server or if I go 
through the proxy
(BODY, HEAD and HTML tags have been commented out)

Re: [EMAIL PROTECTED] Mod_proxy and javascript problem

2005-08-25 Thread Joshua Slive 
On 8/25/05, Jérôme Tytgat <[EMAIL PROTECTED]> wrote:
> Hello community.
> 
> I'm trying to set up a reverse proxy under apache 2.0.54 (debian version).
> 
> The server i'm proxy reversing is a IIS 6.0 with class server on it (a
> microsoft application for school networking).
> 
> I'm using mod_security, rewriterules and proxy for the reverse proxy and some 
> of
> virtual hosting because I'm masking 3 IIS server behind a linux/apache
> server.
> 
> Each server is reached as follow :
> 
> http://www.toto.net/ goes to server1 (1.0.2.1)
> http://www.toto.net/class goes to server2 (1.0.0.2)
> http://www.toto.net/prod goes to server3 (1.0.0.3)
> http://www.toto.net/sst goes to stats on the apache server
> 
> The big problem is that some javascript (.js) are not correctly interpreted
> on the browser, so the html page is broken.

This is probably because the javascript contains links using the
private names/paths rather than the public ones.  You can fix this
with mod_proxy_html:
http://apache.webthing.com/mod_proxy_html/

Joshua.

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Building 2.0.54/mod_ssl libcom_err Problem

2005-08-25 Thread Hunter Hillegas 
Hi.

I am trying to get 2.0.54 running on RHEL3/x86.

I am running configure as follows:

./configure --enable-so --enable-shared=max --enable-proxy --enable-ssl

Configure runs fine. I run into trouble when I try to make:

/usr/bin/ld: warning: libcomm_err.so.3, needed by /usr/lib64/libssl.so, may
conflict with libcom_err.so.2

I can't get past this point.

Locate shows that both libcom_err.so.2 and libcom_err.so.3 are on the
machine:

/usr/kerberos/lib64/libcom_err.so.3
/lib64/libcom_err.so.2

I did some searching on Google to no avail. If someone could point me in the
right direction, that would be great.

Thx.



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Trouble with regexp on , using Apache 1.3.33

2005-08-25 Thread Martijn 

Hello Joshua, thanks for your post.

That would be a valid solution if the real names where A and B, but 
unfortunately they're longer than a single character ("crewforum" and 
"stats" to be exact) and this wouldn't work on the virtual locations as well.


At 20:36 24-8-2005 -0400, you wrote:

Well, I'm not sure why this doesn't work, but you shouldn't even need
a regex for that.  You should be able to do

using shell-style wildcard character classes.  See:
http://httpd.apache.org/docs/2.0/sections.html#file-and-web
which is for a more modern version of the server but should still apply to 
1.3.


> I've got a few directories, lets say they're named A, B, C and D.
> Two of these (A and B) need to be restricted.
>
> I figured that this should be done by the following regexp:
> 



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Re: can't start multiple apache instances

2005-08-25 Thread Michael Greenish 
Thanks for the reply.  Actually there is no error
message in the error log.  What I did find is that I
can start the second instance if I call httpd2 -f
/path/to/httpd.conf & directly.  However, the
start_proc call in the apachectl script does not seem
to work.  Any suggestions with that?

greanie

--- Joost de Heer <[EMAIL PROTECTED]> wrote:

> > What is preventing the second instance from
> > starting? Any help would be greatly appreciated.
> 
> What does the errorlog say?
> 
> Joost
> 
> 


__
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Apache 2.0.54 on IBM z/OS

2005-08-25 Thread Anderson, Dick L 
Hi,

I have just attempted to install 2.0.54 on z/OS Release 4.  Everything
went well during:

./configure --prefix=/usr/local/apache-2.0.54 --with-mpm=prefork
--enable-info --enable-static-support
--enable-charset_lite

make

make install

When I bring up the resulting "httpd", it is doing everything EXCEPT
translating the resulting pages from EBCDIC to ISO-8859-I for delivery
to the browser.  That is to say, it is sending EBCDIC-formatted pages to
the browser.  "server-status" and "server-info" requests are also being
responded to with EBCDIC results.

What am I missing here?  Has anyone run this on z/OS?

Thanks for any help...

Dick Anderson

Information Systems & Solutions
Lockheed Martin
(703)453-3956

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Apache 2.0.54 on IBM z/OS

2005-08-25 Thread William A. Rowe, Jr. 

Anderson, Dick L wrote:


I have just attempted to install 2.0.54 on z/OS Release 4.

When I bring up the resulting "httpd", it is doing everything EXCEPT
translating the resulting pages from EBCDIC to ISO-8859-I for delivery
to the browser.  That is to say, it is sending EBCDIC-formatted pages to
the browser.


That is *by design* - your content is served as raw binary information.
Any translation you desire should either be pre-converted to the desired
charset, or you can install the mod_charset_lite (provided iconv was
detected and apr-util configured the apr_xlate_* functions).  Note that
fixing the content with mod_charset_lite will be much more cpu intensive
than to pre-stage your files in the desired presentation format.


"server-status" and "server-info" requests are also being
responded to with EBCDIC results.


That's a *totally* different issue; you should report this as a bug;
generated content (in this case, from inside mod_status.c and mod_info.c
sources) obviously needs to be changed from the native printf charset
into some ascii flavor.  Again, you can configure mod_charset_lite to
transform this content, but that doesn't diminish the fact that they
should be emitting results in a legible charset :)

Bill

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Redirect Port 80 requests to https

2005-08-25 Thread Dave Morrow 
Title: Redirect Port 80 requests to https






Hi all.  How can I rewrite port 80 to https?  I know I have seen this somewhere, but cannot locate it.  


Basically, if someone comes in to http://www.mydomain.com I want to redirect them to https://www.mydomain.com


David A. Morrow

Technical Systems Lead

Autodata Solutions Company

[EMAIL PROTECTED]

http://www.autodata.net

Tel: (519) 951-6079

Fax: (519) 451-6615 


< Poor planning on your part does not necessarily constitute an emergency on my part! >


This message has originated from Autodata Solutions. The attached material is the Confidential and Proprietary Information of Autodata Solutions. This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please delete this message and notify the Autodata system administrator at [EMAIL PROTECTED]

RE: [EMAIL PROTECTED] mod_cache and conditional disabling

2005-08-25 Thread Steve McInerney 
Indeed! My profound and effusive thanks!!!

I've done some preliminary testing and apart from some minor niggles with
site specific stuff, it all works like a champ. [1]
Still need to go thru formal testing etc etc etc to completely verify, but
the preliminaries are very promising.

Those remaining niggles should be fairly easy to solve from here now I
have a way forward.


Colm's suggestion of using Vary was where I was about to start. Could have
been painful so I wasn't looking forward to it. Due to a couple of
factors, we are trying to avoid spending too much time doing code changes.
So a server based solution is ideal.

The additional GET is, in the overall scheme of things, trivial. Initial
testing via siege suggests a complete site speed/throughput improvement of
over 100x. I'm not going to worry about that additional GET. :-)


If I may be indulged, I'd like to explain the solution to bed it in my own
mind and help others that follow later. Feel free to correct etc.


Problem: Need to cache most traffic; Need to *not* cache remaining traffic
identified via Cookie. All URL's are identical. Need caching as a short
term performance improvment (so we have time to do a major code
cleanup/upgrade).


*  Create Two Virtual servers. The primary/original address (www.foo.bar)
and a new one to deal with any and all caching (cache.foo.bar)

*  We still have a backend server that actually does all the slow work
(backend.foo.bar)

*  Within www.foo.bar's virtual config we have two decision/config branches.
   i.  Using a Conditional rewrite, look for the identifying Cookie, if
NOT found, then using a rewrite rule, send the request via proxy via
the cache.foo.bar virtual server. Don't forget the ProxyPassReverse.
[3]
   ii. We are at this point if we have not matched (i); thus we *DO* have
a matching Cookie and can instead proxy direct to the backend server,
avoiding the cache server.
*  Configure the Cache virtual server to:
   a.  Cache
   b.  Proxy requests to the backend server. This particular (as in (b)
alone) config is identical to (ii) above.


Cheers, and again my thanks!


- Steve


[1] NB. When using rewrite rules if *really* helps if you make sure that
the rewrite engine is on. Doh. [2]
[2] Too early in the morning and barely started on my coffee.
[3] Appears to be an additional key missing line in my solo attempt using
rewrites.


On Thu, August 25, 2005 22:07, Axel-Stéphane  SMORGRAV said:
> Uh, yeah. T'was the other way around.
>
> Well: Houston, we've got a solution !
>
> -ascs
>
> -Original Message-
> From: Colm MacCarthaigh [mailto:[EMAIL PROTECTED]
> Sent: Thursday, August 25, 2005 2:04 PM
> To: users@httpd.apache.org
> Subject: Re: [EMAIL PROTECTED] mod_cache and conditional disabling
>
> On Thu, Aug 25, 2005 at 01:56:07PM +0200, Axel-Stéphane  SMORGRAV wrote:
>> OK What about this, at the expense of an additional GET :
>>
>> 
>>RewriteCond %{HTTP_COOKIE}MYCOOKIE
>>RewriteRule ^(.*)$ http://cache.foo.bar$1 [P]
>>
>>ProxyPassReverse  / http://cache.foo.bar/
>>
>>ProxyPass / http://backend.foo.bar/
>>ProxyPassReverse  / http://backend.foo.bar/ 
>>
>> 
>>ProxyPass / http://backend.foo.bar/
>>ProxyPassReverse  / http://backend.foo.bar/
>>
>>CacheEnable /
>> 
>
> No, that still won't work, but almost :) If you have;
>
> RewriteCond %{HTTP_COOKIE}!MYCOOKIE
>
> The above will work, I think.
>
> --
> Colm MacCárthaighPublic Key: [EMAIL PROTECTED]
>
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>"   from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
>
>


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] SSLRequire %{SSL_CIPHER_USEKEYSIZE} >= 128

2005-08-25 Thread Zhou, Tao \(Tao\) 




Has anyone used this SSLRequire 
directive in Apache on Windows? Does it work and enforce >=128-bit encryption?
SSLRequire %{SSL_CIPHER_USEKEYSIZE} >= 
128
 
Thanks.
 
Tao Zhou
Avaya

[EMAIL PROTECTED] RewriteMap prg vs cgi performance

2005-08-25 Thread allan juul 

hello,

i'm in doubt whether to use a perl cgi script or a perl program via 
mod_rewrite because of performance.


the actual processing is handling a client certificate and some xml and 
returning a base64-encoded string. processing takes less than a second 
but let's say it takes exactly one second


if the site gets 10 simultaneously requests for a cgi it will start 10 
perl interpreters (i guess) and all requests should be handled within a 
second.


but what happens if the site gets 10 simultaneously requests for a URI 
that is handled by a perl program via mod_rewrite? like:


  RewriteMap prg:perl_program.pl

i know theres only one perl interpreter started at server startup and it 
listens on STDIN - but does that mean it will handle the 10 request one 
by one? i mean, in this example it would appear to take 10 seconds for 
the last request?


./allan

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Redirect Port 80 requests to https

2005-08-25 Thread Steven Pierce 
Title: Redirect Port 80 requests to https



 
 
http://www.webmasterworld.com/forum92/4282.htm
 
http://www.google.com/search?hl=en&lr=&safe=off&as_qdr=all&q=Apache+https+redirect+http+
 
I did a google search and had 164k come up.
 
http://mail-archives.apache.org/mod_mbox/httpd-users/200408.mbox/[EMAIL PROTECTED]
 
This is on Apache's web site in archive.  Basiclly you use a 
mod_rewrite to do so.
*** REPLY SEPARATOR 
***On 8/25/2005 at 5:24 PM Dave Morrow wrote:

  Hi all.  How can I rewrite port 80 to 
  https?  I know I have seen this somewhere, but cannot locate it.  
  
  Basically, if someone comes in to http://www.mydomain.com I want 
  to redirect them to https://www.mydomain.com 
  David A. Morrow Technical Systems Lead Autodata 
  Solutions Company [EMAIL PROTECTED] http://www.autodata.net Tel: 
  (519) 951-6079 Fax: (519) 
  451-6615  
  < Poor planning on your part does 
  not necessarily constitute an emergency on my part! > 
  This message has originated from Autodata 
  Solutions. The attached material is the Confidential and Proprietary 
  Information of Autodata Solutions. This email and any files transmitted with 
  it are confidential and intended solely for the use of the individual or 
  entity to whom they are addressed. If you have received this email in error 
  please delete this message and notify the Autodata system administrator at 
  [EMAIL PROTECTED] 
  

No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.338 / Virus Database: 267.10.15/80 - Release Date: 8/23/2005

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] RewriteMap prg vs cgi performance

2005-08-25 Thread Joshua Slive 
On 8/25/05, allan juul <[EMAIL PROTECTED]> wrote:
> hello,
> 
> i'm in doubt whether to use a perl cgi script or a perl program via
> mod_rewrite because of performance.
> 
> the actual processing is handling a client certificate and some xml and
> returning a base64-encoded string. processing takes less than a second
> but let's say it takes exactly one second
> 
> if the site gets 10 simultaneously requests for a cgi it will start 10
> perl interpreters (i guess) and all requests should be handled within a
> second.
> 
> but what happens if the site gets 10 simultaneously requests for a URI
> that is handled by a perl program via mod_rewrite? like:
> 
>   RewriteMap prg:perl_program.pl
> 
> i know theres only one perl interpreter started at server startup and it
> listens on STDIN - but does that mean it will handle the 10 request one
> by one? i mean, in this example it would appear to take 10 seconds for
> the last request?

Yes.  The requests are serialized (see the RewriteLock directive).

CGI is the safer alternative because it runs as the less-priveleged
user and a problem in one request won't hurt another request.  It may
or may not be faster than the RewriteMap depending on exactly what
resources are acting as constraints.

Joshua.

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] httpd internal behaviour

2005-08-25 Thread Mario Passaggio 



hi all
On a preforked http server let's say we have 1000 
childs running.
What does happen if some of the childs get killed 
for example with a ulimit limitation they were started with?
What if I send some of them a TERM or KILL 
signal?
Does the father is being informed and the 
scoreboard brought up to date?
Thanx in advance