Re[2]: [EMAIL PROTECTED] Conditional Directives
This sample chapter from Pro Apache 3rd Edition from Apress details how to use embedded Perl in Apache config files. See the section toward the end of the chapter, titled 'Generating on the fly and included configuration files with mod_perl' Not sure if you can do this in .htaccess files though. Keith In theory, theory and practice are the same; In practice they are not. On Mon, 13 Mar 2006, Alan Little wrote: > To: Tony Heal > From: Alan Little <[EMAIL PROTECTED]> > Subject: Re[2]: [EMAIL PROTECTED] Conditional Directives > > That's interesting. Does that include .htaccess files? Could you give > me an example of how to do it? > > -- > Alan Little > Holotech Enterprises > > On Sunday, March 12, 2006, 11:43:57 PM, you wrote: > > > Yes, apache conf file can be written in perl, so you can use if > > statements to determine whether you want something installed or not > > depending on whatever your criteria is. > > > Tony Heal > > Pace Systems Group, Inc. > > 800-624-5999 > > [EMAIL PROTECTED] > > > -Original Message- > > From: Alan Little [mailto:[EMAIL PROTECTED] > > Sent: Sunday, March 12, 2006 7:29 AM > > To: users@httpd.apache.org > > Subject: [EMAIL PROTECTED] Conditional Directives > > > Is there a general way to make Apache directives conditional, based on > > such things as environment variables, presence of a file or directory, > > etc.? I'm familiar with such things as IfModule or IfDefine, but want > > something more general. I've searched all day and can't find > > anything, but perhaps I'm overlooking something. > > > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] DocumentRoot problem
On 3/6/06, Boyle Owen <[EMAIL PROTECTED]> wrote: > All you do to change the docroot is edit the argument to the DocumentRoot > directive > and then restart the server. Yes, I changed this: ServerRoot "/etc/apache2" to this: ServerRoot "/home/dotancohen/www/public_html" > Of course, you have to do this in the correct file... Your posts so far > indicate that you > are not certain which config file or files are actually being loaded so I > strongly > suspect you are doing the right thing in the wrong file. From phpinfo() I found that the correct file is: /etc/apache2/apache2.conf > Did you try the trick of putting a deliberate syntax error in the file - > just type "wibble" > as the first line in the file - that's an easy way to check you're working on > the correct > file (should cause an error when you try to restart, if it starts OK, your > file is not > being loaded). Yes, and when I try to restart I get: Syntax error on line 1 of /etc/apache2/apache2.conf: Invalid command 'fuckup', perhaps mis-spelled or defined by a module not included in the server configuration > How are you starting/restarting apache? Are you using apachectl? [EMAIL PROTECTED]:~# /usr/sbin/apache2ctl restart > Rgds, > Owen Boyle Thanks. Dotan Cohen
Re[2]: [EMAIL PROTECTED] Conditional Directives
Sample chapter link: http://www.apress.com/book/supplementDownload.html?bID=275&sID=2134 :-) Keith In theory, theory and practice are the same; In practice they are not. On Mon, 13 Mar 2006 [EMAIL PROTECTED] wrote: > To: users@httpd.apache.org > From: [EMAIL PROTECTED] > Subject: Re[2]: [EMAIL PROTECTED] Conditional Directives > > > This sample chapter from Pro Apache 3rd Edition from Apress > details how to use embedded Perl in Apache config files. > See the section toward the end of the chapter, titled > > 'Generating on the fly and included configuration files with > mod_perl' > > Not sure if you can do this in .htaccess files though. > > Keith - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Two versions of Apache
I installed Apache 2 on Fedora this Saturday.I have a problem, whenever i restart my machine, it starts up the default httpd service that comes with Fedora, meaning i have two versions running and i have to shut down the default httpd then go to /usr/local/apache2/bin/apachectl start. I find this very cumbersome to do, how can i remove the default httpd so that whenever i start or run Linux, it uses the newer version!
RE: [EMAIL PROTECTED] DocumentRoot problem
> -Original Message- > From: Dotan Cohen [mailto:[EMAIL PROTECTED] > Sent: Montag, 13. März 2006 09:11 > To: users@httpd.apache.org > Subject: Re: [EMAIL PROTECTED] DocumentRoot problem > > On 3/6/06, Boyle Owen <[EMAIL PROTECTED]> wrote: > > > All you do to change the docroot is edit the argument to > the DocumentRoot directive > > and then restart the server. > Yes, I changed this: > ServerRoot "/etc/apache2" > to this: > ServerRoot "/home/dotancohen/www/public_html" DocumentRoot != ServerRoot Read carefully Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > > > > Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Two versions of Apache
Check for the file /etc/rc.d./init.d/httpd If it exists, then go ahead and edit it with any text editor and change the httpd path. That way, it will start your custom apache instead of the one which came with your os. -Graham -Original Message- From: Roger <[EMAIL PROTECTED]> Subj: [EMAIL PROTECTED] Two versions of Apache Date: Mon Mar 13, 2006 2:33 am Size: 670 bytes To: users@httpd.apache.org I installed Apache 2 on Fedora this Saturday.I have a problem, whenever i restart my machine, it starts up the default httpd service that comes with Fedora, meaning i have two versions running and i have to shut down the default httpd then go to /usr/local/apache2/bin/apachectl start. I find this very cumbersome to do, how can i remove the default httpd so that whenever i start or run Linux, it uses the newer version! - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] caching limit files in mod_file_cache?
Changed the title to be noticed. :-) -- Forwarded message -- From: Xuekun Hu <[EMAIL PROTECTED]> Date: Mar 10, 2006 7:38 PM Subject: Re: [EMAIL PROTECTED] mod_mem_cache configuration help To: users@httpd.apache.org Thanks for replying. I tested mod_file_cache. However I also met some errors both with cachefile and mmapfile. When I want to cache more than 20 files, there are the below errors. Using cachefile: [Fri Mar 10 12:56:47 2006] [info] [client 10.0.1.4] (70014)End of file found: core_output_filter: writing data to the network [Fri Mar 10 12:56:47 2006] [info] [client 10.0.1.4] (70014)End of file found: core_output_filter: writing data to the network [Fri Mar 10 12:56:48 2006] [info] [client 10.0.1.3] (70014)End of file found: core_output_filter: writing data to the network ... Using mmapfile: [Fri Mar 10 15:32:03 2006] [info] [client 10.0.0.7] (14)Bad address: core_output_filter: writing data to the network [Fri Mar 10 15:32:03 2006] [info] [client 10.0.0.7] (14)Bad address: core_output_filter: writing data to the network [Fri Mar 10 15:32:03 2006] [info] [client 10.0.1.3] (14)Bad address: core_output_filter: writing data to the network ... While when caching below 10 files, all work fine. It seems mod_file_cache can't cache many files? My configuration is: 4 x Intel Xeon (EM64T) SLES9 SP2 (64bit) Is it a bug? Thx, Xuekun On 2/24/06, Joshua Slive <[EMAIL PROTECTED]> wrote: > On 2/23/06, Xuekun Hu <[EMAIL PROTECTED]> wrote: > > Hi, > > > > I want to cache some files and don't want them to be removed if the > > cache if full. That's means the cache is serviced as > > first-come-first-service basis. Can I do that by setting > > "CacheDefaultExpire" to a large number? > > > > However I found this sentence "If a new object needs to be inserted in > > the cache and the size of the object is greater than the remaining > > memory, objects will be removed until the new object can be cached. > > The object to be removed is selected using the algorithm specified by > > MCacheRemovalAlgorithm" in docs. So it seems the objects are hard to > > stay in the cache, it has the the chance to be removed out! > > > > Any ideas? Thanks in advance. > > It sounds like you may be looking for mod_file_cache. > > If not, you may also want to consider using mod_disk_cache in place of > mod_mem_cache, because it allows the OS to be in charge of the memory > caching issues (using the OS buffer cache) and hence will often > outperform mod_mem_cache. > > Joshua. > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] > " from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Re: mod_dav / mod_ssl file corruption
Hello, we have had the same problem with the version 2.0.55 of Apache, as you described. That was the reason we had to downgrade our Apache instance on the reverse proxy to the version 2.0.54, which does not have the bug. The "internal" instance must not be downgraded. Regards, Hermann Maurer Von: A. Micka [mailto:[EMAIL PROTECTED] Gesendet: Montag, 13. März 2006 04:27An: users@httpd.apache.orgBetreff: [EMAIL PROTECTED] Re: mod_dav / mod_ssl file corruption I hope someone has further insight on this because we're stumped --We have been running mod_ssl+mod_dav behind a mod_proxy instance for years. However, our upgrade from 2.0.52 to 2.0.55 has caused some very strange behavior:A WebDAV PUT over SSL stalls after uploading 8k of data. When accessed through the proxy host, these files are corrupted: The first 8k of the file is missing, and the 2nd 8k block appears two or more times.When upgrading apache and its modules, we did not change any configuration files or alter any other software behavior. I would be very appreciative of any insight or assistance.Thanks! On 2/26/06, A. Micka <[EMAIL PROTECTED]> wrote: After a recent upgrade to apache 2.0.55, we are unable to PUT files using WebDAV over SSL.When accessed directly, the WebDAV upload hangs after uploading about 8k of data. Because our DAV servers are behind a proxy, uploads sent through the proxy server appear to be uploaded correctly but the resulting file is corrupted and 1K chunks of the file are repeated and scrambled. Things work as expected when accessed without SSL.Thanks in advance for any help you can offer!
Re: [EMAIL PROTECTED] DocumentRoot problem
On 3/13/06, Boyle Owen <[EMAIL PROTECTED]> wrote: > > -Original Message- > > From: Dotan Cohen [mailto:[EMAIL PROTECTED] > > Sent: Montag, 13. März 2006 09:11 > > To: users@httpd.apache.org > > Subject: Re: [EMAIL PROTECTED] DocumentRoot problem > > > > On 3/6/06, Boyle Owen <[EMAIL PROTECTED]> wrote: > > > > > All you do to change the docroot is edit the argument to > > the DocumentRoot directive > > > and then restart the server. > > Yes, I changed this: > > ServerRoot "/etc/apache2" > > to this: > > ServerRoot "/home/dotancohen/www/public_html" > > DocumentRoot != ServerRoot > > Read carefully > > Rgds, > Owen Boyle Oops, thanks. So, where _is_ the DocumentRoot stored?!? It is not in that file! Where else can I look? [EMAIL PROTECTED]:~# cat /etc/apache2/apache2.conf | grep DocumentRoot [EMAIL PROTECTED]:~#
RE: [EMAIL PROTECTED] DocumentRoot problem
> -Original Message- > From: Dotan Cohen [mailto:[EMAIL PROTECTED] > > Oops, thanks. So, where _is_ the DocumentRoot stored?!? It is not in > that file! Where else can I look? > [EMAIL PROTECTED]:~# cat /etc/apache2/apache2.conf | grep DocumentRoot > [EMAIL PROTECTED]:~# Docs... http://httpd.apache.org/docs/2.2/mod/core.html#documentroot the directive doesn't *need* to be anywhere. It has a default (DocumentRoot /usr/local/apache/htdocs). To override the default, you simply introduce it: DocumentRoot /any/where/you/like Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Two versions of Apache
Thanks again, but what do i edit in that httpd file On Mon, 2006-03-13 at 02:39 -0600, Graham Frank wrote: Check for the file /etc/rc.d./init.d/httpd If it exists, then go ahead and edit it with any text editor and change the httpd path. That way, it will start your custom apache instead of the one which came with your os. -Graham -Original Message- From: Roger <[EMAIL PROTECTED]> Subj: [EMAIL PROTECTED] Two versions of Apache Date: Mon Mar 13, 2006 2:33 am Size: 670 bytes To: users@httpd.apache.org I installed Apache 2 on Fedora this Saturday.I have a problem, whenever i restart my machine, it starts up the default httpd service that comes with Fedora, meaning i have two versions running and i have to shut down the default httpd then go to /usr/local/apache2/bin/apachectl start. I find this very cumbersome to do, how can i remove the default httpd so that whenever i start or run Linux, it uses the newer version! - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] DocumentRoot problem
On 3/13/06, Boyle Owen <[EMAIL PROTECTED]> wrote: > > -Original Message- > > From: Dotan Cohen [mailto:[EMAIL PROTECTED] > > > > Oops, thanks. So, where _is_ the DocumentRoot stored?!? It is not in > > that file! Where else can I look? > > [EMAIL PROTECTED]:~# cat /etc/apache2/apache2.conf | grep DocumentRoot > > [EMAIL PROTECTED]:~# > > Docs... http://httpd.apache.org/docs/2.2/mod/core.html#documentroot the > directive doesn't *need* to be anywhere. It has a default (DocumentRoot > /usr/local/apache/htdocs). To override the default, you simply introduce > it: > > DocumentRoot /any/where/you/like > > Rgds, > Owen Boyle Well, I put the ServerRoot back where it was and added the DocumentRoot, tryin both of these: DocumentRoot /home/dotancohen/www/public_html DocumentRoot "/home/dotancohen/www/public_html" But after restarting the server (after each change), it _still_ does not change!!! What must I do?!? I'm getting very frustrated.
[EMAIL PROTECTED] Re: [SPAM] Re: [EMAIL PROTECTED] Two versions of Apache
You might like to make a copy of your original boot script that is used to start apache. Then you can edit that, as already mentioned, and then uninstall the default apache that comes with your distro. (It is also a good idea save/backup any altered system scripts like this in a safe place, so you can reinstall them if you do an OS reinstall or upgrade later.) If you are not using the default apache, and it is still installed, you will find it is updated when you do a security update, which is a waste of time. The same applies to other services that you install along side default installations, such as php or mysql. An alternative way to start apache would be to add something like this to your boot.local script, but you will not get the nice information messages to say apache, mysql or whatever has started up at boot time. Don't forget to add entries to your halt.local script to shut down the services that you start from boot.local. contents of my boot.local script: #! /bin/sh # # Copyright (c) 2002 SuSE Linux AG Nuernberg, Germany. All rights reserved. # # Author: Werner Fink <[EMAIL PROTECTED]>, 1996 # Burchard Steinbild <[EMAIL PROTECTED]>, 1996 # # /etc/init.d/boot.local # # script with local commands to be executed from init on system startup # # Here you should add things, that should happen directly after booting # before we're going to the first run level. # start the MySQL 5.0.18 server /usr/local/mysql-5.0.18/bin/start-mysql-5.0.18 # start apache 2.2.0 web server /usr/local/apache-2.2.0/bin/apachectl start contents of halt.local: #! /bin/sh # # Copyright (c) 2002 SuSE Linux AG Nuernberg, Germany. All rights reserved. # # Author: Werner Fink <[EMAIL PROTECTED]>, 1998 # Burchard Steinbild, 1998 # # /etc/init.d/halt.local # # script with local commands to be executed from init on system shutdown # # Here you should add things, that should happen directly before shuting # down. # stop the apache 2.2.0 web server /usr/local/apache-2.2.0/bin/apachectl stop # stop the MySQL 5.0.18 database server /usr/local/mysql-5.0.18/bin/stop-mysql-5.0.18 You also could post your original apache boot script to the list, for us to tell you where it needs editing, if you prefer to use that method. HTH Keith In theory, theory and practice are the same; In practice they are not. On Mon, 13 Mar 2006, Roger wrote: > To: users@httpd.apache.org, [EMAIL PROTECTED] > From: Roger <[EMAIL PROTECTED]> > Subject: [SPAM] Re: [EMAIL PROTECTED] Two versions of Apache > > Thanks again, but what do i edit in that httpd file > > On Mon, 2006-03-13 at 02:39 -0600, Graham Frank wrote: > > > Check for the file /etc/rc.d./init.d/httpd > > > > If it exists, then go ahead and edit it with any text editor and change the > > httpd path. That way, it will start your custom apache instead of the one > > which came with your os. > > > > -Graham > > > > -Original Message- > > > > From: Roger <[EMAIL PROTECTED]> > > Subj: [EMAIL PROTECTED] Two versions of Apache > > Date: Mon Mar 13, 2006 2:33 am > > Size: 670 bytes > > To: users@httpd.apache.org > > > >I installed Apache 2 on Fedora this Saturday.I have a problem, > > whenever i restart my machine, it starts up the default httpd service that > > comes with Fedora, meaning i have two versions running and i have to shut > > down the default httpd then go to > > > > /usr/local/apache2/bin/apachectl start. > > > > I find this very cumbersome to do, how can i remove the default httpd so > > that whenever i start or run Linux, it uses the newer version! > > > > > > - > > The official User-To-User support forum of the Apache HTTP Server Project. > > See http://httpd.apache.org/userslist.html> for more info. > > To unsubscribe, e-mail: [EMAIL PROTECTED] > >" from the digest: [EMAIL PROTECTED] > > For additional commands, e-mail: [EMAIL PROTECTED] > > > - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Sending images and ASCII in same content stream
Thank you for responding-- I wrote a nice little dynamic database backend, so whatever I produce will just be data from a database. The browser will not have access to files. I assume I will have to apply a series of content-length headers-- Assuming these are done correctly with content-type declarations, will the browser automatically display the images after receiving the complete n bytes for each image? Dustin Boyle Owen wrote: -Original Message- From: Dustin Oprea [mailto:[EMAIL PROTECTED]] Sent: Samstag, 11. März 2006 00:01 To: users@httpd.apache.org Subject: [EMAIL PROTECTED] Sending images and ASCII in same content stream Is it possible to send the binary images and ASCII HTML in the same document? Your question is too vague to be answered.. What are your trying to achieve? What did you try? What didn't work? [Taking it literally, the answer is "yes".] Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. Dustin - The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Two versions of Apache
Perform a search for the old httpd path. If you use nano/pico to edit the file, then press Ctrl+W to perform a word search. In short, if the path to the old httpd was /usr/local/apache/bin/httpd, then find all of the times that string appears in the file and change it to the one you want. Now, you can't set it to apachectl, but that's fine. /usr/local/apache2/bin/httpd -f /usr/local/apache2/conf/httpd.conf Assuming that's the correct path, you can use that line to start Apache, for example. But a simple changing of paths in the init.d file should do the trick.. Sorry if this wasn't clear, I just woke up and am still orienting. -Graham -Original Message- From: Roger <[EMAIL PROTECTED]> Subj: Re: [EMAIL PROTECTED] Two versions of Apache Date: Mon Mar 13, 2006 4:06 am Size: 2K To: users@httpd.apache.org, [EMAIL PROTECTED] Thanks again, but what do i edit in that httpd file On Mon, 2006-03-13 at 02:39 -0600, Graham Frank wrote: Check for the file /etc/rc.d./init.d/httpd If it exists, then go ahead and edit it with any text editor and change the httpd path. That way, it will start your custom apache instead of the one which came with your os. -Graham -Original Message- From: Roger <[EMAIL PROTECTED]> Subj: [EMAIL PROTECTED] Two versions of Apache Date: Mon Mar 13, 2006 2:33 am Size: 670 bytes To: users@httpd.apache.org I installed Apache 2 on Fedora this Saturday.I have a problem, whenever i restart my machine, it starts up the default httpd service that comes with Fedora, meaning i have two versions running and i have to shut down the default httpd then go to /usr/local/apache2/bin/apachectl start.I find this very cumbersome to do, how can i remove the default httpd so that whenever i start or run Linux, it uses the newer version! - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED]" from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]--- message truncated --- - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] DMZ and Port Forward
The web server will then receive everything that isn't assigned to port-forward. This includes worms and such that prey on the weaknesses of whatever machine they can reach, including the hapless MSIE-enabled Windows machine that the DMZ entry might point to. This just seems unnecessary considering your typical webserver usually requires just one port coming in. If you absolutely, positively need a DMZ host, it's because you ran out of slots for port-forwarding on your router, and just need enough things on one machine that you just set the entire thing as a DMZ. If you need a DMZ and you can help it, use a Linux box. Dustin Michael Louie Loria wrote: Hello, What is the difference if I place the web server in DMZ or behind the router via Port forward? What are the security, performance ... issues between the 2? Thanks, Michael Louie Loria LoRz Technology Solutions http://www.lorztech.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] DocumentRoot problem
> -Original Message- > From: Dotan Cohen [mailto:[EMAIL PROTECTED] > > Well, I put the ServerRoot back where it was and added the > DocumentRoot, tryin both of these: > DocumentRoot /home/dotancohen/www/public_html > DocumentRoot "/home/dotancohen/www/public_html" > > But after restarting the server (after each change), it _still_ does > not change!!! > What must I do?!? Browser caching? Try: - shift-Reload (forces the browser to re-request the file) - clear the browser cache and reload - kill the browser and restart it Is this on the web? what's the URL? Do you have wget? Try wget ... what do you get in the file it creates? Try command-line access: $ telnet 80 GET / HTTP/1.0 (hit return twice) >I'm getting very frustrated. Welcome to computing... > This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] DocumentRoot problem
On 3/13/06, Boyle Owen <[EMAIL PROTECTED]> wrote: > > -Original Message- > > From: Dotan Cohen [mailto:[EMAIL PROTECTED] > > > > Well, I put the ServerRoot back where it was and added the > > DocumentRoot, tryin both of these: > > DocumentRoot /home/dotancohen/www/public_html > > DocumentRoot "/home/dotancohen/www/public_html" > > > > But after restarting the server (after each change), it _still_ does > > not change!!! > > What must I do?!? > > Browser caching? Try: No, I do CTRL-R in firefox from localhost. > > - shift-Reload (forces the browser to re-request the file) > - clear the browser cache and reload > - kill the browser and restart it Thanks, tried those too. > Is this on the web? what's the URL? No, localhost > Do you have wget? Try wget ... what do you get in the file it > creates? > > Try command-line access: > > $ telnet 80 > > GET / HTTP/1.0 > (hit return twice) > > >I'm getting very frustrated. > > Welcome to computing... Have any marriage tips? Tell me, might it be that DocumentRoot _is_ declared somewhere else, overriding my config? I ran "grep /var/www -R *" on /etc and got this: [EMAIL PROTECTED]:/etc# grep /var/www -R * grep: alternatives/rmic.1.gz: No such file or directory grep: alternatives/rmic: No such file or directory grep: alternatives/firefox-homepage: No such file or directory grep: alternatives/netscape-javaplugin.so: No such file or directory apache/httpd.conf: apache/httpd.conf: Alias /perl/ /var/www/perl/ apache2/sites-available/default:DocumentRoot /var/www/ apache2/sites-available/default: apache2/sites-enabled/000-default: DocumentRoot /var/www/ apache2/sites-enabled/000-default: grep: cups/pdftops.conf: No such file or directory passwd:www-data:x:33:33:www-data:/var/www:/bin/sh passwd-:www-data:x:33:33:www-data:/var/www:/bin/sh [EMAIL PROTECTED]:/etc# Should I go in there and change those files? Is there something that I am not understanding?
RE: [EMAIL PROTECTED] Finding what module are installed
The surest way to get that list is to ask the OS. On Solaris, use "pldd `cat /httpd.pid`". I'm sure there are similar tools on other Unices. -ascs From: Thomas Anderson [mailto:[EMAIL PROTECTED] Sent: Sunday, March 12, 2006 6:31 AM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] Finding what module are installed Hi, I have Apache2 installed on a debian server. I had installed several modules but am not sure what all I had installed. Is there any way I can see what all modules are present? 'apache2 -l' does not show all the modules installed it only shows the ones that were compiled in. Any ideas on this? Arch - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] apache 1.3.33, php 4.3.6, solaris 8 -> file open problem?
Hallo, we are using apache 1.3.33 wiht php 4.3.6 on solaris 8. php is build with Oracle access. Everything works fine. Unefortunately we get from time to time problems to access the database just in side php. All other scripts work fine against the db. A reload of the same php page often works again. Does somebody on the list saw something simular? Is there a known problem on solaris systems with apache and php? Any hint is welcome! Regards Harald - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] DocumentRoot problem
> -Original Message- > From: Dotan Cohen [mailto:[EMAIL PROTECTED] > apache2/sites-available/default:DocumentRoot /var/www/ > apache2/sites-available/default: > apache2/sites-enabled/000-default: DocumentRoot /var/www/ > apache2/sites-enabled/000-default: > > Should I go in there and change those files? Is there something that I > am not understanding? The main config can load directives contained in other files. Look for the directive "Include" (see docs for details). If that turns out to be it, decide whether you want to continue with the include files, in which case put the directive there, or remove the Includes and put the DocumentRoot in the main config. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] best practices - section or not?
So I am trying to install this 3rd party application, and it simply won't install without a "" section in my httpd.conf. Since my web server is only running 1 webserver/instance ... I did not define a section. So, I am kinda curious. Is it strange to not define a virtualhost section? Is it a "best practice" to define one anyway? What does everybody think? Richard __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] modjk two-way
Hello Is it possible/how to create a page that displays a jsp within an html page that is served by apache in an apache-tomcat deployment? I dont want to use frames in the technical sense but in a pictorial sense. I want the header/footer, left and right to be displayed by apache and the "center" to be provided by tomcat. To my understanding this is not possible in an apache-tomcat deployment, b/c any *.jsp is going to given entirely over to tomcat. Any enlightment would be greately appreciated. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] SSL And Virtual Hosts
I've been using Apache 1.3 for a while now with several name-based
virtual hosts (my server has only one IP). Recently, I have begun
testing the use of SSL, which is entirely new territory for me. But I
seem to be running into a couple problems.
First thing I notice is that my ssl_engine log yells at me and says I
should not use name-based virtual hosts with SSL. If this is the case,
what would one recommend? What is the "right way" to do it?
During testing of my name-based virtual hosts with SSL, I am using two
of my hosted domains. One of them, the main default domain for my site,
seems to work, except that in my browser (FireFox) the lock icon is
broken, so it seems to not be working from the client side. But no more
info is given as to why that is the case.
The second domain I'm testing seems to be encrypting fine between the
client and server, but when it issues the self-signed cert it sends the
wrong one (the one for the default domain).
Can anyone explain to me what is probably wrong and what the right way
to do things would be?
For reference, here is the VirtualHosts section of my mod_ssl.conf file:
NameVirtualHost *:443
DocumentRoot "/home/www/.www"
ServerName www.cyber0ne.com
ServerAlias cyber0ne.com
DirectoryIndex index.aspx index.asp index.html index.htm index.php
HostnameLookups On
ServerAdmin [EMAIL PROTECTED]
ErrorLog /var/log/apache/ssl_error_log
LogLevel warn
TransferLog /var/log/apache/ssl_access_log
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache/ssl.crt/cyber0ne.cert
SSLCertificateKeyFile /etc/apache/ssl.key/cyber0ne.key
SSLOptions +StdEnvVars
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
downgrade-1.0 force-response-1.0
LogFormat "%h %l %u %t \"%!414r\" %>s %b \"%{Referer}i\"
\"%{User-Agent}i\"" combined
CustomLog /var/log/apache/ssl_access_log combined
DocumentRoot "/home/www/.www/webusers/newharvest"
ServerName www.newharvestchristians.org
ServerAlias newharvestchristians.org
DirectoryIndex index.aspx index.asp index.html index.htm index.php
HostnameLookups On
ServerAdmin [EMAIL PROTECTED]
ErrorLog /var/log/apache/www.newharvestchristians.org-ssl_error_log
LogLevel warn
TransferLog /var/log/apache/www.newharvestchristians.org-ssl_access_log
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache/ssl.crt/newharvestchristians.cert
SSLCertificateKeyFile /etc/apache/ssl.key/newharvestchristians.key
SSLOptions +StdEnvVars
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
downgrade-1.0 force-response-1.0
LogFormat "%h %l %u %t \"%!414r\" %>s %b \"%{Referer}i\"
\"%{User-Agent}i\"" combined
CustomLog /var/log/apache/www.newharvestchristians.org-ssl_access_log
combined
DocumentRoot "/home/www/.www/webusers/newharvest/ftp"
ServerName ftp.newharvestchristians.org
DirectoryIndex index.aspx index.asp index.html index.htm index.php
HostnameLookups On
ServerAdmin [EMAIL PROTECTED]
ErrorLog /var/log/apache/www.newharvestchristians.org-ssl_error_log
LogLevel warn
TransferLog /var/log/apache/www.newharvestchristians.org-ssl_access_log
SSLEngine on
SSLCipherSuite
ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
SSLCertificateFile /etc/apache/ssl.crt/newharvestchristians.cert
SSLCertificateKeyFile /etc/apache/ssl.key/newharvestchristians.key
SSLOptions +StdEnvVars
SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
downgrade-1.0 force-response-1.0
LogFormat "%h %l %u %t \"%!414r\" %>s %b \"%{Referer}i\"
\"%{User-Agent}i\"" combined
CustomLog /var/log/apache/www.newharvestchristians.org-ssl_access_log
combined
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Re: [SPAM] Re: [EMAIL PROTECTED] Two versions of Apache
I don't have a Fedora install available right now, but I know that RedHat includes a util called chkconfig. This program allows you to deactivate daemons while leaving the init-script in place. For example, if you wanted to leave the original version of apache installed, but didn't want it to start on boot, you could run the following: # chkconfig --del apache This will remove an run-level-specific links to /etc/rc.d/init.d/apache, which will keep the script from being executed on boot or halt. However, since the actual script is left in /etc/rc.d/init.d, it can be reactivated later by running: # chkconfig --add apache If you installed apache2 from a Fedora repository, I'd be very surprised if the init-script wasn't written to handle chkconfig, so the same rules should apply; if you run: # chkconfig --add apache2 it should add the run-level-links for apache2 and apache2 should then start on boot. [replace apache2 with the name if your actual init script] I'm pretty sure that SuSE also includes chkconfig, and Debian has update-rc.d. They're great tools, I'd definitely look into using them. ~rlp >>> [EMAIL PROTECTED] 3/13/2006 5:01 AM >>> You might like to make a copy of your original boot script that is used to start apache. Then you can edit that, as already mentioned, and then uninstall the default apache that comes with your distro. (It is also a good idea save/backup any altered system scripts like this in a safe place, so you can reinstall them if you do an OS reinstall or upgrade later.) If you are not using the default apache, and it is still installed, you will find it is updated when you do a security update, which is a waste of time. The same applies to other services that you install along side default installations, such as php or mysql. An alternative way to start apache would be to add something like this to your boot.local script, but you will not get the nice information messages to say apache, mysql or whatever has started up at boot time. Don't forget to add entries to your halt.local script to shut down the services that you start from boot.local. contents of my boot.local script: #! /bin/sh # # Copyright (c) 2002 SuSE Linux AG Nuernberg, Germany. All rights reserved. # # Author: Werner Fink <[EMAIL PROTECTED]>, 1996 # Burchard Steinbild <[EMAIL PROTECTED]>, 1996 # # /etc/init.d/boot.local # # script with local commands to be executed from init on system startup # # Here you should add things, that should happen directly after booting # before we're going to the first run level. # start the MySQL 5.0.18 server /usr/local/mysql-5.0.18/bin/start-mysql-5.0.18 # start apache 2.2.0 web server /usr/local/apache-2.2.0/bin/apachectl start contents of halt.local: #! /bin/sh # # Copyright (c) 2002 SuSE Linux AG Nuernberg, Germany. All rights reserved. # # Author: Werner Fink <[EMAIL PROTECTED]>, 1998 # Burchard Steinbild, 1998 # # /etc/init.d/halt.local # # script with local commands to be executed from init on system shutdown # # Here you should add things, that should happen directly before shuting # down. # stop the apache 2.2.0 web server /usr/local/apache-2.2.0/bin/apachectl stop # stop the MySQL 5.0.18 database server /usr/local/mysql-5.0.18/bin/stop-mysql-5.0.18 You also could post your original apache boot script to the list, for us to tell you where it needs editing, if you prefer to use that method. HTH Keith In theory, theory and practice are the same; In practice they are not. On Mon, 13 Mar 2006, Roger wrote: > To: users@httpd.apache.org, [EMAIL PROTECTED] > From: Roger <[EMAIL PROTECTED]> > Subject: [SPAM] Re: [EMAIL PROTECTED] Two versions of Apache > > Thanks again, but what do i edit in that httpd file > > On Mon, 2006-03-13 at 02:39 -0600, Graham Frank wrote: > > > Check for the file /etc/rc.d./init.d/httpd > > > > If it exists, then go ahead and edit it with any text editor and change the > > httpd path. That way, it will start your custom apache instead of the one > > which came with your os. > > > > -Graham > > > > -Original Message- > > > > From: Roger <[EMAIL PROTECTED]> > > Subj: [EMAIL PROTECTED] Two versions of Apache > > Date: Mon Mar 13, 2006 2:33 am > > Size: 670 bytes > > To: users@httpd.apache.org > > > >I installed Apache 2 on Fedora this Saturday.I have a problem, > > whenever i restart my machine, it starts up the default httpd service that > > comes with Fedora, meaning i have two versions running and i have to shut > > down the default httpd then go to > > > > /usr/local/apache2/bin/apachectl start. > > > > I find this very cumbersome to do, how can i remove the default httpd so > > that whenever i start or run Linux, it uses the newer version! > > > > > > - > > The official User-To-User support forum of the Apache HTTP Server Project. > > See http://httpd.apache.org/users
RE: [EMAIL PROTECTED] best practices - section or not?
> -Original Message- > From: Richard de Vries [mailto:[EMAIL PROTECTED] > Sent: Montag, 13. März 2006 14:59 > To: users@httpd.apache.org > Subject: [EMAIL PROTECTED] best practices - section or not? > > So I am trying to install this 3rd party application, > and it simply won't install without a "" > section in my httpd.conf. > > Since my web server is only running 1 > webserver/instance ... I did not define a > section. > > So, I am kinda curious. Is it strange to not define a > virtualhost section? Is it a "best practice" to define > one anyway? What does everybody think? If you don't *need* one, there's no reason to use one. Eg, if you have only one site. As soon as you have more than one site, you *need* VHs (be they name-based, port-based or IP based). Some people think it's tidier and more symmetric to have every site in a VH. Others think it's better to have a "main" or "default" site outside all the VHs so have N-1 VHs. It's up to you... Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > >Richard > > __ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam protection around > http://mail.yahoo.com > > - > The official User-To-User support forum of the Apache HTTP > Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > Diese E-mail ist eine private und persönliche Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. Geschäftstätigkeit der SWX Gruppe. This e-mail is of a private and personal nature. It is not related to the exchange or business activities of the SWX Group. Le présent e-mail est un message privé et personnel, sans rapport avec l'activité boursière du Groupe SWX. This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] SSL And Virtual Hosts
> -Original Message-
> From: David P. Donahue [mailto:[EMAIL PROTECTED]
> Sent: Montag, 13. März 2006 15:34
> To: users@httpd.apache.org
> Subject: [EMAIL PROTECTED] SSL And Virtual Hosts
>
> I've been using Apache 1.3 for a while now with several name-based
> virtual hosts (my server has only one IP). Recently, I have begun
> testing the use of SSL, which is entirely new territory for
> me. But I
> seem to be running into a couple problems.
I'll say...
The web (and this mailing list) is replete on subject of SSL and NBVHs. Most
recent: http://marc.theaimsgroup.com/?l=apache-httpd-users&m=114137608115220&w=2
Or search the archives and/or google for "SSL NBVH". Not to mention the docs:
http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2
Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.
>
> First thing I notice is that my ssl_engine log yells at me and says I
> should not use name-based virtual hosts with SSL. If this is
> the case,
> what would one recommend? What is the "right way" to do it?
>
> During testing of my name-based virtual hosts with SSL, I am
> using two
> of my hosted domains. One of them, the main default domain
> for my site,
> seems to work, except that in my browser (FireFox) the lock icon is
> broken, so it seems to not be working from the client side.
> But no more
> info is given as to why that is the case.
>
> The second domain I'm testing seems to be encrypting fine between the
> client and server, but when it issues the self-signed cert it
> sends the
> wrong one (the one for the default domain).
>
> Can anyone explain to me what is probably wrong and what the
> right way
> to do things would be?
>
>
> For reference, here is the VirtualHosts section of my
> mod_ssl.conf file:
>
> NameVirtualHost *:443
>
>
>DocumentRoot "/home/www/.www"
>ServerName www.cyber0ne.com
>ServerAlias cyber0ne.com
>DirectoryIndex index.aspx index.asp index.html index.htm index.php
>HostnameLookups On
>ServerAdmin [EMAIL PROTECTED]
>ErrorLog /var/log/apache/ssl_error_log
>LogLevel warn
>TransferLog /var/log/apache/ssl_access_log
>SSLEngine on
>SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
>SSLCertificateFile /etc/apache/ssl.crt/cyber0ne.cert
>SSLCertificateKeyFile /etc/apache/ssl.key/cyber0ne.key
>
>SSLOptions +StdEnvVars
>
>SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
> downgrade-1.0 force-response-1.0
>LogFormat "%h %l %u %t \"%!414r\" %>s %b \"%{Referer}i\"
> \"%{User-Agent}i\"" combined
>CustomLog /var/log/apache/ssl_access_log combined
>
>
>
>DocumentRoot "/home/www/.www/webusers/newharvest"
>ServerName www.newharvestchristians.org
>ServerAlias newharvestchristians.org
>DirectoryIndex index.aspx index.asp index.html index.htm index.php
>HostnameLookups On
>ServerAdmin [EMAIL PROTECTED]
>ErrorLog /var/log/apache/www.newharvestchristians.org-ssl_error_log
>LogLevel warn
>TransferLog
> /var/log/apache/www.newharvestchristians.org-ssl_access_log
>SSLEngine on
>SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
>SSLCertificateFile /etc/apache/ssl.crt/newharvestchristians.cert
>SSLCertificateKeyFile /etc/apache/ssl.key/newharvestchristians.key
>
>SSLOptions +StdEnvVars
>
>SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
> downgrade-1.0 force-response-1.0
>LogFormat "%h %l %u %t \"%!414r\" %>s %b \"%{Referer}i\"
> \"%{User-Agent}i\"" combined
>CustomLog
> /var/log/apache/www.newharvestchristians.org-ssl_access_log
> combined
>
>
>
>DocumentRoot "/home/www/.www/webusers/newharvest/ftp"
>ServerName ftp.newharvestchristians.org
>DirectoryIndex index.aspx index.asp index.html index.htm index.php
>HostnameLookups On
>ServerAdmin [EMAIL PROTECTED]
>ErrorLog /var/log/apache/www.newharvestchristians.org-ssl_error_log
>LogLevel warn
>TransferLog
> /var/log/apache/www.newharvestchristians.org-ssl_access_log
>SSLEngine on
>SSLCipherSuite
> ALL:!ADH:!EXPORT56:RC4+RSA:+HIGH:+MEDIUM:+LOW:+SSLv2:+EXP:+eNULL
>SSLCertificateFile /etc/apache/ssl.crt/newharvestchristians.cert
>SSLCertificateKeyFile /etc/apache/ssl.key/newharvestchristians.key
>
>SSLOptions +StdEnvVars
>
>SetEnvIf User-Agent ".*MSIE.*" nokeepalive ssl-unclean-shutdown
> downgrade-1.0 force-response-1.0
>LogFormat "%h %l %u %t \"%!414r\" %>s %b \"%{Referer}i\"
> \"%{User-Agent}i\"" combined
>CustomLog
> /var/log/apache/www.newharvestchristians.org-ssl_access_log
> combined
>
>
> -
> The official User-To-User support forum of the Apache HTTP
> Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL
RE: [EMAIL PROTECTED] best practices - section or not?
Thank you very much for your excellent reply. Glad to hear it is not at all unusual to not use VHs for the main/default site. I agree, adding additional hosts would definately require the use of VH blocks, unless each one would get their own httpd.conf and run as a seperate instance. --- Boyle Owen <[EMAIL PROTECTED]> wrote: > > -Original Message- > > From: Richard de Vries > [mailto:[EMAIL PROTECTED] > > Sent: Montag, 13. März 2006 14:59 > > To: users@httpd.apache.org > > Subject: [EMAIL PROTECTED] best practices - > section or not? > > > > So I am trying to install this 3rd party > application, > > and it simply won't install without a > "" > > section in my httpd.conf. > > > > Since my web server is only running 1 > > webserver/instance ... I did not define a > > section. > > > > So, I am kinda curious. Is it strange to not > define a > > virtualhost section? Is it a "best practice" to > define > > one anyway? What does everybody think? > > If you don't *need* one, there's no reason to use > one. Eg, if you have only one site. > > As soon as you have more than one site, you *need* > VHs (be they name-based, port-based or IP based). > Some people think it's tidier and more symmetric to > have every site in a VH. Others think it's better to > have a "main" or "default" site outside all the VHs > so have N-1 VHs. > > It's up to you... > > Rgds, > Owen Boyle > Disclaimer: Any disclaimer attached to this message > may be ignored. > > > > >Richard > > > > __ > > Do You Yahoo!? > > Tired of spam? Yahoo! Mail has the best spam > protection around > > http://mail.yahoo.com > > > > > - > > The official User-To-User support forum of the > Apache HTTP > > Server Project. > > See http://httpd.apache.org/userslist.html> > for more info. > > To unsubscribe, e-mail: > [EMAIL PROTECTED] > >" from the digest: > [EMAIL PROTECTED] > > For additional commands, e-mail: > [EMAIL PROTECTED] > > > > > Diese E-mail ist eine private und persönliche > Kommunikation. Sie hat keinen Bezug zur Börsen- bzw. > Geschäftstätigkeit der SWX Gruppe. This e-mail is of > a private and personal nature. It is not related to > the exchange or business activities of the SWX > Group. Le présent e-mail est un message privé et > personnel, sans rapport avec l'activité boursière du > Groupe SWX. > > > This message is for the named person's use only. It > may contain confidential, proprietary or legally > privileged information. No confidentiality or > privilege is waived or lost by any mistransmission. > If you receive this message in error, please notify > the sender urgently and then immediately delete the > message and any copies of it from your system. > Please also immediately destroy any hardcopies of > the message. You must not, directly or indirectly, > use, disclose, distribute, print, or copy any part > of this message if you are not the intended > recipient. The sender's company reserves the right > to monitor all e-mail communications through their > networks. Any views expressed in this message are > those of the individual sender, except where the > message states otherwise and the sender is > authorised to state them to be the views of the > sender's company. > > - > The official User-To-User support forum of the > Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for > more info. > To unsubscribe, e-mail: > [EMAIL PROTECTED] >" from the digest: > [EMAIL PROTECTED] > For additional commands, e-mail: > [EMAIL PROTECTED] > > __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] SSL And Virtual Hosts
The web (and this mailing list) is replete on subject of SSL and NBVHs. Most recent: http://marc.theaimsgroup.com/?l=apache-httpd-users&m=114137608115220&w=2 Or search the archives and/or google for "SSL NBVH". Not to mention the docs: http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2 Hmm. It would seem that I'm SOL for running true SSL then? My router (until I can budget a more professional one) can only forward so many ports making using other ports not a scalable solution, and I'm NATing behind a single IP so there's no way I can just assign more IPs to my web server. I suppose for now I can forgo the authentication and just settle for encryption, leaving my other domains with warning messages that the certificate is for the default domain. It's not pretty, but it's still better than no encryption at all, right? My searches aren't turning up any more creative solutions to this problem. But if anyone has any I'd love to hear them. Regards, David P. Donahue [EMAIL PROTECTED] http://www.cyber0ne.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Apache
I had two versions of Apache, one came with the default installation of Fedora Core and i recently installed Apache, the latest stable version to /usr/local/apache2/. i used
[EMAIL PROTECTED] Running Apache 2.0.NN
I recently installed the latest stable version of Apache onto my machine running Fedora Core Linux. I then had two versions of Apache running, i.e the one that comes with the Operating System by default and the latest version. To reduce conflicts i was doing : service httpd stop and then i would do : /usr/local/apache2/bin/apachectl start. I have now disabled httpd permanently using : chkconfig --del httpd. what i would like is now to make sure that /usr/local/apache2/bin/apachectl start , starts up automatically whenever i restart my machine, as i have disabled httpd, i dont want to start Apache Manually. Can someone please explain to me in clear steps as i am also new to Linux and am starting to really find my way around it. Thanks. Roger
Re: [EMAIL PROTECTED] modjk two-way
On Monday 13 March 2006 14:19, Chris Pat wrote: > Hello > Is it possible/how to create a page that displays a > jsp within an html page that is served by apache in an > apache-tomcat deployment? I dont want to use frames > in the technical sense but in a pictorial sense. I > want the header/footer, left and right to be displayed > by apache and the "center" to be provided by tomcat. Erm, that looks like a very confused question. > To my understanding this is not possible in an > apache-tomcat deployment, b/c any *.jsp is going to > given entirely over to tomcat. Any enlightment would > be greately appreciated. Something has to generate the page, and that something is either apache or tomcat. Or an extension of one of them. Do you mean you want a page assembled on apache but including some contents from tomcat? If so, you could use mod_publisher to assemble the contents, or (if it's JSP2) use the XMLNS framework and write a provider for JSP to query tomcat. -- Nick Kew - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] SSL And Virtual Hosts
> -Original Message- > From: David P. Donahue [mailto:[EMAIL PROTECTED] > Sent: Montag, 13. März 2006 16:21 > To: users@httpd.apache.org > Subject: Re: [EMAIL PROTECTED] SSL And Virtual Hosts > > > The web (and this mailing list) is replete on subject of > SSL and NBVHs. Most recent: > http://marc.theaimsgroup.com/?l=apache-httpd-users&m=114137608 115220&w=2 > > > > Or search the archives and/or google for "SSL NBVH". Not to > mention the docs: > http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2 > > Hmm. It would seem that I'm SOL for running true SSL then? > My router > (until I can budget a more professional one) can only forward so many > ports making using other ports not a scalable solution, and > I'm NATing > behind a single IP so there's no way I can just assign more IPs to my > web server. > > I suppose for now I can forgo the authentication and just settle for > encryption, leaving my other domains with warning messages that the > certificate is for the default domain. It's not pretty, but > it's still > better than no encryption at all, right? For most serious applications of SSL, not really... Imagine you went to buy a book at Amazon and when you clicked on "checkout", you got a warning saying, "we're having a problem with our server and so you might get a browser warning about site name not matching certificate. Don't worry, just carry on and type in your credit card number anyway..." - would you? I guess if you have a limited application where the server holds the confidential data and the clients are just browsing it and there's no conceivable risk of anyone impersonating the server to serve up false data, then maybe it would be enough. But if the clients have anything confidential to submit, you really need authentication as much as encryption - put it another way, if you send your money off in an armoured car, you'd better make sure the driver really goes to the bank. Rgds, Owen Boyle Disclaimer: Any disclaimer attached to this message may be ignored. > > My searches aren't turning up any more creative solutions to this > problem. But if anyone has any I'd love to hear them. > > > Regards, > David P. Donahue > [EMAIL PROTECTED] > http://www.cyber0ne.com > > - > The official User-To-User support forum of the Apache HTTP > Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > This message is for the named person's use only. It may contain confidential, proprietary or legally privileged information. No confidentiality or privilege is waived or lost by any mistransmission. If you receive this message in error, please notify the sender urgently and then immediately delete the message and any copies of it from your system. Please also immediately destroy any hardcopies of the message. You must not, directly or indirectly, use, disclose, distribute, print, or copy any part of this message if you are not the intended recipient. The sender's company reserves the right to monitor all e-mail communications through their networks. Any views expressed in this message are those of the individual sender, except where the message states otherwise and the sender is authorised to state them to be the views of the sender's company. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] SSL And Virtual Hosts
For most serious applications of SSL, not really... Imagine you went to buy a book at Amazon and when you clicked on "checkout", you got a warning saying, "we're having a problem with our server and so you might get a browser warning about site name not matching certificate. Don't worry, just carry on and type in your credit card number anyway..." - would you? I guess if you have a limited application where the server holds the confidential data and the clients are just browsing it and there's no conceivable risk of anyone impersonating the server to serve up false data, then maybe it would be enough. But if the clients have anything confidential to submit, you really need authentication as much as encryption - put it another way, if you send your money off in an armoured car, you'd better make sure the driver really goes to the bank. The most we're talking about here is a username/password for forums/ftp/webmail. I definitely don't have the infrastructure in place for any serious e-commerce sites, nor would I want that kind of responsibility placed on my home business at this stage. I'm curious, though, about your cautionary statements. In what way could this setup potentially be abused? Assume that the only people who use any SSL-encrypted services on my secondary domains are fully aware of my primary domain and know that I am the one handling their hosting. Thus, when they receive a warning message about their certificate, they'd see my name and know it's OK. Is there a way for a 3rd party to abuse this and hijack their data? The only thing I can think of is if someone messed with their DNS so that they go to another server pretending to be me. But, even with authentication, the only way to truly prevent that would be to use "trusted" certs, which cost, what, $200? (something I don't have at the moment) As long as I'm self-signing, anyone can self-sign and pretend to be me. Regards, David P. Donahue [EMAIL PROTECTED] http://www.cyber0ne.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] modjk two-way
Hi Nick Sorry for the confusion, however you understand it perfectly. It is as you restated it. I was not aware of those technologies and how they interact with apache-tomcat. That is precisely the architecture I need. I will now pursue them. Anything else you can provide for my, necessary grin, clarification would be even more greately appreciated. Thank you.Nick Kew <[EMAIL PROTECTED]> wrote: On Monday 13 March 2006 14:19, Chris Pat wrote:> Hello> Is it possible/how to create a page that displays a> jsp within an html page that is served by apache in an> apache-tomcat deployment? I dont want to use frames> in the technical sense but in a pictorial sense. I> want the header/footer, left and right to be displayed> by apache and t he "center" to be provided by tomcat.Erm, that looks like a very confused question.> To my understanding this is not possible in an> apache-tomcat deployment, b/c any *.jsp is going to> given entirely over to tomcat. Any enlightment would> be greately appreciated.Something has to generate the page, and that somethingis either apache or tomcat. Or an extension of one of them.Do you mean you want a page assembled on apache butincluding some contents from tomcat? If so, you could usemod_publisher to assemble the contents, or (if it's JSP2)use the XMLNS framework and write a provider for JSPto query tomcat.-- Nick Kew-The official User-To-User support forum of the Apache HTTP Server Project.See for more info.To unsubscribe, e-mail: [EMAIL PROTECTED] " from the diges t: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED] Yahoo! Mail Use Photomail to share photos without annoying attachments.
Re: [EMAIL PROTECTED] Two versions of Apache
SuSE has a runlevel editor, where you use a GUI to edit which services are activated or not. This also seems to pick up any scripts found in /etc/init.d/, as some home made scripts of mine appeared in the RLE, which was unexpected. I tried deactivating the default RPM for Apache in the RLE, and this did the job. Only thing was, when I did an online update, because the Apache RPM was still on the system, I still found it was being updated, even though I was not going to use that any more. So, I just uninstalled it via YaST, which is the system administration tool in SuSE. BTWFYI - SuSE uses the Redhat Package Manager from RedHat software from within YaST, as it's package management tool. Keith In theory, theory and practice are the same; In practice they are not. On Mon, 13 Mar 2006, ryan punt wrote: > To: users@httpd.apache.org > From: ryan punt <[EMAIL PROTECTED]> > Subject: [EMAIL PROTECTED] Re: [SPAM] Re: [EMAIL PROTECTED] Two versions of > Apache > > I don't have a Fedora install available right now, but I know that RedHat > includes a util called chkconfig. This program allows you to deactivate > daemons while leaving the init-script in place. > > For example, if you wanted to leave the original version of apache installed, > but didn't want it to start on boot, you could run the following: > > # chkconfig --del apache > > This will remove an run-level-specific links to /etc/rc.d/init.d/apache, > which will keep the script from being executed on boot or halt. However, > since the actual script is left in /etc/rc.d/init.d, it can be reactivated > later by running: > > # chkconfig --add apache > > If you installed apache2 from a Fedora repository, I'd be very surprised if > the init-script wasn't written to handle chkconfig, so the same rules should > apply; if you run: > > # chkconfig --add apache2 > > it should add the run-level-links for apache2 and apache2 should then start > on boot. [replace apache2 with the name if your actual init script] > > I'm pretty sure that SuSE also includes chkconfig, and Debian has > update-rc.d. They're great tools, I'd definitely look into using them. > > ~rlp > > >>> [EMAIL PROTECTED] 3/13/2006 5:01 AM >>> > > You might like to make a copy of your original boot script > that is used to start apache. Then you can edit that, as > already mentioned, and then uninstall the default apache > that comes with your distro. > > (It is also a good idea save/backup any altered system > scripts like this in a safe place, so you can reinstall > them if you do an OS reinstall or upgrade later.) > > If you are not using the default apache, and it is still > installed, you will find it is updated when you do a > security update, which is a waste of time. > > The same applies to other services that you install > along side default installations, such as php or mysql. > > An alternative way to start apache would be to add something > like this to your boot.local script, but you will not get > the nice information messages to say apache, mysql or > whatever has started up at boot time. > > Don't forget to add entries to your halt.local script to > shut down the services that you start from boot.local. > > contents of my boot.local script: > > #! /bin/sh > # > # Copyright (c) 2002 SuSE Linux AG Nuernberg, Germany. All rights reserved. > # > # Author: Werner Fink <[EMAIL PROTECTED]>, 1996 > # Burchard Steinbild <[EMAIL PROTECTED]>, 1996 > # > # /etc/init.d/boot.local > # > # script with local commands to be executed from init on system startup > # > # Here you should add things, that should happen directly after booting > # before we're going to the first run level. > > # start the MySQL 5.0.18 server > /usr/local/mysql-5.0.18/bin/start-mysql-5.0.18 > > # start apache 2.2.0 web server > /usr/local/apache-2.2.0/bin/apachectl start > > > contents of halt.local: > > #! /bin/sh > # > # Copyright (c) 2002 SuSE Linux AG Nuernberg, Germany. All rights reserved. > # > # Author: Werner Fink <[EMAIL PROTECTED]>, 1998 > # Burchard Steinbild, 1998 > # > # /etc/init.d/halt.local > # > # script with local commands to be executed from init on system shutdown > # > # Here you should add things, that should happen directly before shuting > # down. > > # stop the apache 2.2.0 web server > /usr/local/apache-2.2.0/bin/apachectl stop > > # stop the MySQL 5.0.18 database server > /usr/local/mysql-5.0.18/bin/stop-mysql-5.0.18 > > You also could post your original apache boot script to the > list, for us to tell you where it needs editing, if you > prefer to use that method. > > HTH > > Keith > > > In theory, theory and practice are the same; > In practice they are not. > > On Mon, 13 Mar 2006, Roger wrote: > > > To: users@httpd.apache.org, [EMAIL PROTECTED] > > From: Roger <[EMAIL PROTECTED]> > > Subject: [SPAM] Re: [EMAIL PROTECTED] Two versions of Apache > > > > Thanks again, but what do i edit in that httpd file
RE: [EMAIL PROTECTED] Running Apache 2.0.NN
You merely need to change the path to your apachectl of your 2nd
httpd in the init script.
e.g. here I have a Fedora 3 where httpd was installed from an FC3
RPM
# rpm -qf /etc/init.d/httpd
httpd-2.0.52-3
In this init script a variable apachectl is set as
# grep ^apachectl /etc/init.d/httpd
apachectl=/usr/sbin/apachectl
Unless you need very unusual starting parameters (e.g. -DSUEXEC
or similar own extensions)
I would say all you need to do is set the apachectl variable to
point to your second apachectl beneath /usr/local
It's probably safe to also change the paths of the following var
definitions to refer to your other httpd
# grep -B2 -A5 ^apachectl /etc/init.d/httpd
# Path to the apachectl script, server binary, and short-form for
messages.
apachectl=/usr/sbin/apachectl
httpd=${HTTPD-/usr/sbin/httpd}
prog=httpd
pidfile=${PIDFILE-/var/run/httpd.pid}
lockfile=${LOCKFILE-/var/lock/subsys/httpd}
RETVAL=0
Then reactivate through chkconfig (since you deleted the
symlinks)
# chkconfig --add httpd
# chkconfig httpd on
# chkconfig --list httpd
and finally try to start your 2nd server
# service httpd start
Hope I haven't forgotten bits.
-Original Message-
From: Roger [mailto:[EMAIL PROTECTED]
Sent: Monday, March 13, 2006 4:22 PM
To: users@httpd.apache.org
Subject: [EMAIL PROTECTED] Running Apache 2.0.NN
I recently installed the latest stable version of Apache onto my
machine running Fedora Core Linux.
I then had two versions of Apache running, i.e the one that comes
with the Operating System by default and the latest version.
To reduce conflicts i was doing : service httpd stop and then i
would do : /usr/local/apache2/bin/apachectl start.
I have now disabled httpd permanently using : chkconfig --del
httpd.
what i would like is now to make sure that
/usr/local/apache2/bin/apachectl start , starts up automatically
whenever i restart my machine, as i have disabled httpd, i dont
want to start Apache Manually.
Can someone please explain to me in clear steps as i am also new
to Linux and am starting to really find my way around it.
Thanks.
Roger
[EMAIL PROTECTED] password protected dir with unprotected subdir
I've set up one directory to be password protected. Alias /work "/work1/" Options Indexes MultiViews AllowOverride None Order allow,deny AuthUserFile /etc/httpd/htpasswords AuthType Basic AuthName "Work1" require user strycat Allow from all This is great and works like it should Now I want another alias to point to the /work1/open subdir and to be unprotected. Alias /demo "/work1/open/" Options Indexes MultiViews AllowOverride None Order allow,deny Allow from all As I feared the first directory (/work1) kicks in and requires a user. Is there something I can do to unprotect just that one subdir or will I need to move it? Thanks in advance. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Log entries missing some data
I've been beating this up for some time, so any hints/ideas anyone has would
be great.
Basically, I have certain requests from a small number of specific
requestors that don't log all of the data in the access_log.
My log format is:
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I
%O TIME: %T"
Basicalloy pretty standard - with the addition of the time it took to
process the request (%T)
However, I get some requests logged in this format:
10.10.10.10 - - [10/Mar/2006:10:00:34 -0800] "GET
/web/document/requested/index.html HTTP/1.1" 200 386
Only requested URI, return code and size.
I've not been able to identify any common item that may be causing the rest
of the information to not be logged. This happens for both GETs and POSTs.
Anyone seen this before? Know of a reason?
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] password protected dir with unprotected subdir
Tom Cat wrote: Alias /demo "/work1/open/" Options Indexes MultiViews AllowOverride None Order allow,deny Allow from all As I feared the first directory (/work1) kicks in and requires a user. Is there something I can do to unprotect just that one subdir or will I need to move it? use Satisfy any in your section. -- Robert - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Re: What EnvVars are available?
I managed to get something working. I'm just not sure if it's the best way to solve the problem. I've also noticed that on some of my systems REMOTE_PORT is blank. Has anyone else run into this?Here's the working config:
RewriteEngine on RewriteCond %{REMOTE_ADDR} (.*) RewriteRule .* - [E=REMOTE_ADDR:%1] RewriteCond %{REMOTE_PORT} (.*) RewriteRule .* - [E=REMOTE_PORT:%1] RewriteCond %{SERVER_ADDR} (.*)
RewriteRule .* - [E=SERVER_ADDR:%1] RewriteCond %{SERVER_ADDR} (.*) RewriteRule .* - [E=SERVER_ADDR:%1] RewriteCond %{SERVER_PORT} (.*) RewriteRule .* - [E=SERVER_PORT:%1] Header set ServerID testcase_1
Header set SERVER_ADDR %{SERVER_ADDR}e Header set SERVER_PORT %{SERVER_PORT}e Header set REMOTE_ADDR %{REMOTE_ADDR}e Header set REMOTE_PORT %{REMOTE_PORT}e
On 3/11/06, SixArm <[EMAIL PROTECTED]> wrote:
I'm trying to add server reply headers to describe the connection to Apache for tesing purposes.This is on Apache/2.0.52 on RedHat EL3.
DocumentRoot /doc_root
PassEnv SERVER_ADDR PassEnv SERVER_PORT PassEnv REMOTE_ADDR PassEnv REMOTE_PORT PassEnv PATH Header set SERVER_ADDR %{SERVER_ADDR}e Header set SERVER_PORT %{SERVER_PORT}e
Header set REMOTE_ADDR %{REMOTE_ADDR}e Header set REMOTE_PORT %{REMOTE_PORT}e Header set PATH %{PATH}eThe Env Vars are not defined but I can insert a header for PATH. I can view all these variable in a simple phpinnfo() call. I've also written an Apache
1.3 module which accomplishes the same thing. I was hoping I could accomplish without an additional module or php.Can anyone explain why these variable are not available? Or how I can see what variables are available. From what I've read in the Apache docs they should be available.
Thanks for any help,-Sixarm
Re: [EMAIL PROTECTED] Log entries missing some data
On 3/13/06, Ross A. Del Duca <[EMAIL PROTECTED]> wrote:
> I've been beating this up for some time, so any hints/ideas anyone has would
> be great.
>
> Basically, I have certain requests from a small number of specific
> requestors that don't log all of the data in the access_log.
>
> My log format is:
>
> LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I
> %O TIME: %T"
The LogFormat directive on its own doesn't do anything if you are
using the CustomLog directive. You need to use LogFormat to define a
nickname (such as "combined" in the default config) and then use this
nickname in your CustomLog directive.
Joshua.
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Log entries missing some data
Sorry - I missed that on the cut-n-paste operation. More complete is:
LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I
%O TIME: %T" resptrack
CustomLog /var/log/httpd/access_log resptrack
The problem I'm having is that the vast majority of the requests logged do
follow the format as defined. However, some (say, 1 out of every 100 or so)
do not. And the ones that do not consistently come from the same requestor.
I'd understand if I had hyphens for the missing fields - but the logger just
doesn't seem to even recognize the format string at all.
On 3/13/06 12:33 PM, "Joshua Slive" <[EMAIL PROTECTED]> wrote:
> On 3/13/06, Ross A. Del Duca <[EMAIL PROTECTED]> wrote:
>> I've been beating this up for some time, so any hints/ideas anyone has would
>> be great.
>>
>> Basically, I have certain requests from a small number of specific
>> requestors that don't log all of the data in the access_log.
>>
>> My log format is:
>>
>> LogFormat "%h %l %u %t \"%r\" %>s %b \"%{Referer}i\" \"%{User-Agent}i\" %I
>> %O TIME: %T"
>
> The LogFormat directive on its own doesn't do anything if you are
> using the CustomLog directive. You need to use LogFormat to define a
> nickname (such as "combined" in the default config) and then use this
> nickname in your CustomLog directive.
>
> Joshua.
>
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>" from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
--
Ross A. Del Duca
Security Officer
Infrastructure Architect
[EMAIL PROTECTED]
(916)438-1139
---
This message contains confidential information intended only for the use of
the addressee named above and may contain information that is legally
privileged. If you are not the addressee, or the person responsible for
delivering it to the addressee, you are hereby notified that reading,
disseminating, distributing or copying this message is strictly prohibited.
-BEGIN PGP PUBLIC KEY BLOCK-
Version: GnuPG v1.4.1 (Darwin)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=yWc6
-END PGP PUBLIC KEY BLOCK-
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] keep-alive and SCGI to process on another server
any suggestions for increasing the number of keep-alive connections with this configuration: - web server accessed via ssl - web server accesses host/port on a separate physical app server via SCGI, or mod_python i use this command for testing: ab2 -k -n 100 https://myhost.tld/appname/action location "/appname/" is mapped to another server/port via SCGI ab2 tells me i get 0 keep-alive connections out of the 100. the result is that i'm only getting about 15 requests per second. log files tell me that there is a separate "Seeding PRNG with 272 bytes of entropy" message for each request, instead of only once as with successful keep-alive requests. any suggestions? - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] undefined symbol: %b_module
Hello, If I compile a module that uses external library the output is this: > ... > [activating module `server_form' in /usr/local/apache2/conf/httpd.conf] > Syntax error on line 337 of /usr/local/apache2/conf/httpd.conf: > Can't locate API module structure `%b_module' in file > /usr/local/apache2/modules/mod_xxx.so: /usr/local/apache2/modules/mod_xxx.so: > undefined symbol: %b_module Anyone can say me where is the problem? I am using this. /usr/local/apache2/bin/apxs -c -Wc,$COMP_FLAGS mod_xxx.c CUT=`basename mod_xxx.la` /usr/local/apache2/bin/apxs -i -a -n xxx $CUT Thanks in advance. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] DMZ and Port Forward
>>> The web server will then receive everything that isn't assigned to >>> port-forward. This includes worms and such that prey on the >>> weaknesses of whatever machine they can reach, including the hapless >>> MSIE-enabled Windows machine that the DMZ entry might point to. This >>> just seems unnecessary considering your typical webserver usually >>> requires just one port coming in. >>> >>> If you absolutely, positively need a DMZ host, it's because you ran >>> out of slots for port-forwarding on your router, and just need enough >>> things on one machine that you just set the entire thing as a DMZ. If >>> you need a DMZ and you can help it, use a Linux box. >>> >>> Dustin >>> >>> >>> Michael Louie Loria wrote: >>> Hello, What is the difference if I place the web server in DMZ or behind the router via Port forward? What are the security, performance ... issues between the 2? Thanks, Michael Louie Loria LoRz Technology Solutions http://www.lorztech.com Ok got it. Thanks. probably DMZ would be a last resort for a webserver. Michael Louie Loria LoRz Technology Solutions http://www.lorztech.com signature.asc Description: OpenPGP digital signature
[EMAIL PROTECTED] 403 error (script alias directive involved?)
Hello, I am having a problem with a 403 error that I can't solve. I am trying to set up a stats package on a server hosting about 30 different websites. The stats package is in a sub folder of the htdocs folder. It is accessed through a scriptAlias directive on all the websites. e.g. www.foo.com/stats/. or www.bar.com/stats/.. the stats package is run by a perl script with a complicated (to the average customer) argument, so I want to do an auto redirect to it. e.g. www.foo.com/stats/filename.pl?config=[..] so I want to redirect to it automatically by using www.foo.com/stats/index.php (which is a very simple script which just calls the perl script) The problem is that entering the URL www.foo.com/stats/ gives a 403 access forbidden error. however,www.foo.com/stats/index.php works perfectly. System specs are: Apache 2 Triad with SSL on win 2003. I have full console and admin access, but I can't make major changes. (such as dump M$) I thought that the problem might be windows folder permissions, but I duplicated permissions for a working website. no change. More than happy to read the manual if I could figure out which part. Any help or sugestions appreciated Ray - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] DMZ and Port Forward
Actually, the reason you use a DMZ is because if a vulnerability is found in you web server and you box gets taken over, the hacker doesn't have access to your entire LAN, only stuff that is sitting in your DMZ (DeMilitarised Zone). You still firewall your DMZ, and usually have a 2nd firewall between your DMZ and your LAN. Phoenix Dustin Oprea wrote: The web server will then receive everything that isn't assigned to port-forward. This includes worms and such that prey on the weaknesses of whatever machine they can reach, including the hapless MSIE-enabled Windows machine that the DMZ entry might point to. This just seems unnecessary considering your typical webserver usually requires just one port coming in. If you absolutely, positively need a DMZ host, it's because you ran out of slots for port-forwarding on your router, and just need enough things on one machine that you just set the entire thing as a DMZ. If you need a DMZ and you can help it, use a Linux box. Dustin Michael Louie Loria wrote: Hello, What is the difference if I place the web server in DMZ or behind the router via Port forward? What are the security, performance ... issues between the 2? Thanks, Michael Louie Loria LoRz Technology Solutions http://www.lorztech.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
