[EMAIL PROTECTED] Apache as TLS client
Does anyone know how to set up apache (and is prepared to spend the time sharing this) (or knows where I could find this info) so that apache acts as a client to another server, using tls where the server requires client certificates for authentication/encryption? The apache "client" is running phpldapadmin that needs to connect to an LDAP server that demands client certificate authentication. My apologies if this is regarded as OT. Many thanks in advance. Nicole King (aka Catsmuvva) Did you know that ringing an 084x/087x can give the company you're ringing upto 4.5ppm? Have your say on stealth premium rate 08x numbers by visting www.saynoto0870.com/consultation . - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] NameVirtualHost / VirtualHost Scenario
> -Original Message- > From: Arthur DiSegna [mailto:[EMAIL PROTECTED] > > What happens to the client who writes a script pointing to > the public IP > address instead of the FQDN of the one server. To add to Nick's advice, the literal answer is that if apache cannot identify the VH to use (no host header or non-matching host header) it will assign the request to the *first* VH in the config. If you don't want either VH to be used then, as Nick suggests, make a default VH (containing a default page or an error or whatever) and put it first in the config. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > > The VirtualHost configuration takes advantage of host headers which > don't appear in a direct IP based requests. > > Will I have to redo my .conf file to include both > IP addresses > ??? > > Thanks in advance > > > > - > The official User-To-User support forum of the Apache HTTP > Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] ReverseProxy with cache on last-modified
Hello all, for everybody's interest. I've succeeded in setting up an apache as reverse proxy for another webserver with cache that refreshes on last modification date. I'll now try this out for use with java webstart so the reverse proxy can act as proximity cache for all connected clients/PCs
RE: [EMAIL PROTECTED] mod-ssl with or without client certificate
> -Original Message- > From: Ezio Paglia [mailto:[EMAIL PROTECTED] > Sent: Donnerstag, 22. Dezember 2005 18:03 > To: users@httpd.apache.org > Subject: [EMAIL PROTECTED] mod-ssl with or without client certificate > > > Server version: Apache/2.0.54 > > Hi all. > > In our virtual hosts we have got a squirrelmail conf through > https (without > client side certificate). It works. > > NameVirtualHost *:443 > > > ServerAdmin [EMAIL PROTECTED] > ServerName webmail.comune.grosseto.it > SSLEngine on > DocumentRoot /usr/share/squirrelmail > > php_flag register_globals off > Options Indexes FollowSymLinks > > DirectoryIndex index.php > > > order deny,allow > deny from all > allow from 127.0.0.1 > > > > > I'd like to add another Virtual Host in order to manage client side > certificates. And here the problems start You are trying to use name-based virtual-hosting under SSL. This cannot be done (see http://httpd.apache.org/docs/2.0/ssl/ssl_faq.html#vhosts2 for details and http://marc.theaimsgroup.com/?l=apache-httpd-users&w=2&r=1&s=ssl+name+based&q=b for archived threads on this very topic, which comes up more frequently than I've had hot dinners). Because your two sites are closely linked, you might try using the same cert in both VHs. When a user first requests either site, HTTPS will start up using the cert of the first VH (so this will cause a warning if the request is for the second site) but once the HTTPS session is established, name-based VHing will "work" again since apache can now decrypt the requests and see the Host header. So users will get the correct site. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > > > ServerAdmin [EMAIL PROTECTED] > ServerName ciecns.comune.grosseto.it > LogLevel debug > SSLEngine on > SSLVerifyClient require > SSLVerifyDepth 3 > SSLCACertificateFile /etc/apache2/ssl/caCerts.pem > DocumentRoot /var/www/ > > > Now, if I put this section before the squirrelmail, it asks > me for the > certificate even though I point to the squirrelmail, while if > the latter is > the second section, I can access everything without any > certificate. It > sounds like if does not discriminate between client cert and > no client > certificate, it only understand the method invoked in the > first virtual host. > Do you have any ideas ? > > Ciao and thank you. > Merry Chistmas. > Yours Ezio. > > Ezio Paglia > Sistemi e Database > Servizi Informatici (SED) > Comune di Grosseto > Ufficio : +39-0564-488706 Fax : +39-0564-21139 Cellulare : > +39-320-7984950 > > > - > The official User-To-User support forum of the Apache HTTP > Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Apache and php
Plain text please... The simple answer to your simple question is, read the PHP configuration docs (http://www.php.net/manual/en/configuration.php). Configuration of PHP is non-trivial and dependent on your system and setup. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. -Original Message- From: mark student [mailto:[EMAIL PROTECTED] Sent: Donnerstag, 22. Dezember 2005 22:51 To: users@httpd.apache.org Subject: [EMAIL PROTECTED] Apache and php Hi folks, I have a simple question. I'm running Apache 1.3.x and installed the pkgs CSWphp4cgi, CSWphp4mysql, and SFWmphp. Now, how do I configure Apache and/or PHP to display my little hello.php file in the browser? The browser doesn't display anything when I put in the URL. Help Yahoo! for Good - Make a difference this year. Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_jk help
Hi there,
ok i've managed to get mod_jk.so in
"jakarta-tomcat-connectors-1.2.15-src/jk/native/apache-2.0/" but I
would just like to get some advise on the next step. From my successful
make I was asked to re-compile Apache2.0 but there is no buildconf
script in my apache dir. I also got this warning.
>libtool: install: warning: remember to run `libtool --finish /home/rmorrin/James/Java/DownloadedSoftware/apache2.0/modules'
Just not sure on next step.
Regards,
James.
On 12/23/05, James Taylor <[EMAIL PROTECTED]> wrote:
Thanks for your help guys, I dont know how I did it but I managed
to get configuer, make and make install to run. This is what
${APACHE_HOME}/modules/jk/ looks like
-rw-r- 1 rmorrin rmorrin 448 Dec 23 00:00 config.m4-rw-r--r-- 1 rmorrin rmorrin 741824 Dec 23 00:00 lib_jk.a-rw-rw 1 rmorrin rmorrin 758 Dec 23 00:00 lib_jk.la
Would someone please be able to advise me on what this output from
">make install" means; I tried running the suggested commands but
they are not recognised.
Regards.
Libraries have been installed in: /home/rmorrin/sw/apache2.0/modules/jk
If you ever happen to want to link against installed librariesin a given directory, LIBDIR, you must either use libtool, andspecify the full pathname of the library, or use the `-LLIBDIR'flag during linking and do at least one of the following:
- add LIBDIR to the `LD_LIBRARY_PATH' environment variable during execution - use the `-RLIBDIR' linker flag
See any operating system documentation about shared libraries formore information, such as the ld(1) and ld.so(8) manual pages.--
Please be sure to re-compile Apache...
cd /home/rmorrin/sw/apache2.0./buildconf./configure --with-mod_jkmake
On 12/22/05, Fenlason, Josh <[EMAIL PROTECTED]
> wrote:
Do you have gcc in your path? The following works for me.
CC="gcc" \
./configure \
--with-apxs=/home/rmorrin/sw/apache2.0/bin/apxs \
--with-java-home=/home/rmorrin/sw/jdk1.5.0_05 \
--with-java-platform=2 \
--enable-jni
-Original Message-From: James Taylor [mailto:
[EMAIL PROTECTED]] Sent: Thursday, December 22, 2005 6:17 AMTo: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] mod_jk help
Ok,
I set an env var CC to gcc but configure is still breaking. The following is the command I try to execute
>./configure --with-apache=/home/rmorrin/sw/apache2.0 --with-java-home=/home/rmorrin/sw/jdk1.5.0_05 --with-java-platform=2 -enable-jni
Heres my output
>hecking build system type... sparc-sun-solaris2.8
>hecking host system type... sparc-sun-solaris2.8
>hecking target system type... sparc-sun-solaris2.8
>hecking for a BSD-compatible install... /opt/csw/bin/ginstall -c
>hecking whether build environment is sane... yes
>hecking for gawk... gawk
>hecking whether make sets $(MAKE)... yes
>checking for gcc... gcc=
>checking for C compiler default output file name... configure: error: C compiler cannot create executables
>See `config.log' for more details.
Here's a section from config.log
## --- ##
## Core tests. ##
## --- ##
configure:1545: checking build system type
configure:1563: result: sparc-sun-solaris2.8
configure:1571: checking host system type
configure:1585: result: sparc-sun-solaris2.8
configure:1593: checking target system type
configure:1607: result: sparc-sun-solaris2.8
configure:1639: checking for a BSD-compatible install
configure:1694: result: /opt/csw/bin/ginstall -c
configure:1705: checking whether build environment is sane
configure:1748: result: yes
configure:1805: checking for gawk
configure:1821: found /opt/csw/bin/gawk
configure:1831: result: gawk
configure:1841: checking whether make sets $(MAKE)
configure:1861: result: yes
configure:2072: checking for gcc
configure:2098: result: gcc=
configure:2342: checking for C compiler version
configure:2345: gcc= --version &5
./configure: gcc=: command not found
configure:2348: $? = 127
configure:2350: gcc= -v &5
./configure: gcc=: command not found
configure:2353: $? = 127
configure:2355: gcc= -V &5
./configure: gcc=: command not found
configure:2358: $? = 127
configure:2381: checking for C compiler default output file name
configure:2384: gcc= conftest.c >&5
./configure: gcc=: command not found
configure:2387: $? = 127
configure: failed program was:
| /* confdefs.h. */
|
| #define PACKAGE_NAME ""
| #define PACKAGE_TARNAME ""
| #define PACKAGE_VERSION ""
| #define PACKAGE_STRING ""
| #define PACKAGE_BUGREPORT ""
| #define PACKAGE "mod_jk"
| #define VERSION "1.2.14"
| /* end confdefs.h. */
|
| int
| main ()
| {
|
| ;
| return 0;
| }
configure:2426: error: C compiler cannot create executables
See `config.log' for more details.
On 12/21/05, John P. Dodge <[EMAIL PROTECTED]
> wrote:
On Wed, 21 Dec 2005, James Taylor wrote:> Hi there,> I'm not at all hot on compiler stuff so could you/someone please ellaborate
> a little on this for me.> I checked /build/config_vars.mk and I see th
[EMAIL PROTECTED] ModAlias Problems
Hello! Happy holidays to everyone! I am new to configuring apache. Previously I have always just used pre-installed apache configurations, or modified only virtual host entries. Recently I decided to play with Aliases When I use Alias /something/ /path/to/actual/something/ the alias works, I can see everything in the directory(But obviously cannot execute scipts) When I use ScriptAlias /something/ /path/to/actual/something/ I get a 500 error on all my scripts. in my apache config file I have ScriptAlias /cms/ "/home/cms/" AllowOverride None Options Indexes FollowSymLinks MultiViews ExecCGI Order allow,deny Allow from all The permissions on the ~/cms/ directory is Permissions User Group Size Date Time Directory drwxrwxrwx 2 nobody nogroup 4096 2005-12-23 10:50 cms The Permissions of the content of the ~/cms/ directory is Permissions User Group Size Date Time Script -rwxr-xr-x 1 nobody nogroup 69 2005-12-09 14:49 index1.cgi How come my script is not accessable and only returns 500 errors? The example is running at http://blackbox.fidelitysoft.net/cms/ Can anyone provide me with any info on how to resolve this? Thanks Kevin
Re: [EMAIL PROTECTED] ModAlias Problems
On 12/23/05, Kevin Gordon <[EMAIL PROTECTED]> wrote: > How come my script is not accessable and only returns 500 errors? There is a debugging guide here: http://httpd.apache.org/docs/2.2/howto/cgi.html#troubleshoot If you still can't get it after going through there, make sure to at least tell us what the error log says. Joshua.
Re: [EMAIL PROTECTED] Apache 1.3.33 (Win32) was uninstalled but an entry is still listed in Services
Todd Patrick wrote: I uninstalled Apache 1.3.33 (Win32) in Add/Remove Programs, however an entry is still listed in Services. [...] Thus, how am I able to uninstall this from the Services list? If you're familiar with the registry editor, you can remove the entry manually: Start --> run -> type in: regedit Switch to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Apache and remove the key. But be carefully, wrong edits may cause damage on Windows. -- Robert - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
