[EMAIL PROTECTED] Apache 2.0.59 with SSL installation issue.
I was able to install Apache 2.0.59 without SSL on this server but we need SSL support now. I've tried to re-compile Apache without any luck. I can configure it just fine but I run "make" that's when I get an error. I'm getting this: modules/ssl/.libs/mod_ssl.a(ssl_engine_kernel.o): In function `ssl_hook_Access': /home/tech/upgrades/httpd-2.0.59/modules/ssl/ssl_engine_kernel.c:619: undefined reference to `X509_STORE_CTX_set_depth' collect2: ld returned 1 exit status make[1]: *** [httpd] Error 1 make[1]: Leaving directory `/home/tech/upgrades/httpd-2.0.59' make: *** [all-recursive] Error 1 I'm trying to install Apache 2.0.59 with Openssl 0.9.8b my configure command is: ./configure --prefix=/usr/local/apachessl2 --enable-so --enable-ssl --with-ssl=/usr/local/ssl Any help would be greatly appreciated. TIA - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Apache 2.2.3 - Virtual Host
Hi to all, i want only for a specific virtual host to give the authority to one user - group . in apache 1.3.x was User - Group Directive [0] in apache 2.0.x wan't support User-Group in VH [1] and was (is) the AssignUserId [2] Is there something like this (User - Group, or alike) in apache 2.2.x. I use the SuExecUserGroup directive [3] but i want the user to write file without executing cgi scripts. Any help would be great. Best regards. -ebal [0] : http://httpd.apache.org/docs/1.3/mod/core.html#user [1] : http://httpd.apache.org/docs/2.0/mod/mpm_common.html#user [2] : http://httpd.apache.org/docs/2.0/mod/perchild.html#assignuserid [3] : http://httpd.apache.org/docs/2.2/mod/mod_suexec.html#suexecusergroup - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] A NetHack-esque Journey of the dark arts for DBD(mysql) under httpd-2.2.3
Nice to hear you got it working, though you seem to have gone the long way round. You say I went the 'long way round', well other than using a package, is there a shorter way to install dbd(mysql) into a custom directory? Would you like to write out the steps in a complete and unambiguous manner? Regarding package installation, I am wondering if I would have got a useful error message when the mysqlclient_r library wouldn't have been found. I don't see anything here that we can use. Your account seems to boil down to a call for better packaging, and we could use some expertise in that area Interesting spin. Maybe you are unclear about the differences between QA, CCM, and packaging? I don't think so really - I have read your bio. But most end-users who don't want to concern themselves with that will use their distro's packages, so (arguably) that's what really matters. I disagree [so yes! it is arguable :-) ]. Packaging is not what 'really' matters when it comes to applications like httpd. In my opinion, for enterprise software such as httpd what really matters is: up-to-date source distribution comprehensive, organised and up-to-date documentation unit tests built in useful (unambiguous, informative) debugging and error messages throughout centralised patch distribution a working, centralised code update system full backward-compatibility (regarding interfacing third party applications) Also, your statement implicitly suggests to me that the source distribution of 2.2.3 is not really ready for production use, just the packages. For example, it seems to be really odd - seriously - that there have been patches for the "myql" typo in dbd.m4 for several months, and yet it is still found in the 2.2.3 source distribution. That's not packaging - that's a lack of change/control management. There are some major issues with the current build - as I mentioned there is a bug somewhere that causes a massive bloat of httpd forks - I don't know where, but it's to do with dbd. As for whether or not I am a module developer - I could be - but a management that has no control over it's software tends to lead to dead software. I am seriously wondering if Apache 2.x will ever become as popular as it's more robust 1.3x sibling: it's my belief that if it doesn't get to work clean, out of the box (or from a compile) it will end up being a dead branch. Until I feel confident in the Apache 2.x codebase, why should I be interested in developing modules for it? The lack of relevant error messages in mod_authn_dbd and mod_dbd is a major concern also. Here is a (non-exclusive) list of some that could be added at little cost to the development team: DBD Driver xxx not found. It should be at yyy. See http:// dbddriversupportpage for more DBD Driver xxx file found but it is not linked correctly. See http:// dbddriverpage for more DBD Driver xxx found but not loaded. (Reason) DBD connection failure for driver xxx - no sql server found at yyy DBD connection failure for driver xxx - authentication failed for uuu for server found at yyy DBD connection failure for driver xxx - (other reasons / results) DBD Driver xxx handle creation failed (Reason) DBD connection failure for driver xxx - database yyy was not found DBD connection failure for driver xxx - database yyy was found but authentication failed with sqlserver message "E" DBD Driver xxx sql query creation failed for query = "x" (Reasons) DBD Driver xxx sql query "qqq" returned the message "EE" DBD Driver xxx sql query "qqq" failed due to lack of privileges with message "E" And mod_authn_dbd: DBD Driver xxx authentication failed matching "" with "" (with sqlserver message "E") (obviously showing the encrypted match) Some LogDebug messages: DBD Driver xxx successfully connected to address yyy DBD Driver xxx successfully connected to sql server DBD Driver xxx successfully authenticated with sql server DBD Driver xxx successfully executed query "q" with nnn results So maybe 50 lines of code, which will significantly reduce the headaches involved for end-users with DBD/driver connection or authentication issues. None of these are to do with packaging - they serve a major purpose - which is to inform the enduser and the developers of where something is failing. More importantly to the development team, they reduce the support time for the software and improve the signal/noise ratio. They help with the process of QA. Now I could possibly add all those messages into the code base (I could also help with other issues) - but last time I contributed, nothing happened - the code remains untouched even though the relevant bugs have been present in Apache 2.x since 2003. So I've lost some will regarding contributing to the code base. --
[EMAIL PROTECTED] SarPplot
dear friends ; recently i was looking for a tool that generate Exact system statistics on Graphical diagrams , unfortunately i was never able to find that kind of tool , by the way i have found atsar very helpful , Atsar gives me the idea to make a combination with GnuPlot , SarPplot is the result ; http://sarpplot.berlios.de/ i believe this simple work can be real useful is some situations , please test and let me know what you think about it :) sorry if it is off topic . -- Q: How do you save a drowning lawyer? A: Throw him a rock. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Virtual hosts question - permission denied error httpd version 2.2.3
hello: i'm experimenting name based virtual hosts and i have the following apache setup /opt/apache2/htdocs/index.html /opt/apache2/htdocs2/index2.html Now i have the following entry in my /opt/apache2/conf/extra/httpd-vhosts.conf == NameVirtualHost 192.168.1.3:80 DocumentRoot "/opt/apache2/htdocs" DocumentRoot "/opt/apache2/htdocs2" == the syntax check passes [EMAIL PROTECTED] apache2]# apachectl -t Syntax OK After restarting when i check the url http://192.168.1.3/ it gives content of htdocs/index.html however when i do http://127.0.0.1/ it gives me an error Forbidden You don't have permission to access / on this server. The file permissions look ok to me.. out of ls -al /opt/apache2/ is below [EMAIL PROTECTED] apache2]# ls -al total 128 drwxr-xr-x 17 root root 4096 Aug 31 15:44 . drwxr-xr-x 6 root root 4096 Aug 31 16:21 htdocs drwxr-xr-x 2 root root 4096 Aug 31 16:12 htdocs2 drwxr-xr-x 2 root root 4096 Aug 31 16:12 htdocs3 and [EMAIL PROTECTED] apache2]# ls -l htdocs/index.html htdocs2/index.html htdocs3/index.html -rw-r--r-- 1 root root 23 Aug 31 15:47 htdocs2/index.html -rw-r--r-- 1 root root 23 Aug 31 15:47 htdocs3/index.html -rw-r--r-- 1 root root 44 Nov 21 2004 htdocs/index.html on checking the error log i see the message [Thu Aug 31 16:29:46 2006] [error] [client 127.0.0.1] client denied by server configuration: /opt/apache2/htdocs2/ Any reason why the documentroot of /opt/apache2/htdocs2 does not work fine. Thanks.. Yashesh - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Virtual hosts question - permission denied error httpd version 2.2.3
hi, try-out with "NameVirtualHost *:80" or "NameVirtualHost *" Best Regards Ashutosh SynaptiCAD Inc. - Original Message - From: "Yashesh Bhatia" <[EMAIL PROTECTED]> To: Sent: Thursday, August 31, 2006 4:35 PM Subject: [EMAIL PROTECTED] Virtual hosts question - permission denied error httpd version 2.2.3 > hello: > >i'm experimenting name based virtual hosts and i have the following > apache setup > > /opt/apache2/htdocs/index.html > /opt/apache2/htdocs2/index2.html > > > Now i have the following entry in my /opt/apache2/conf/extra/httpd-vhosts.conf > > == > NameVirtualHost 192.168.1.3:80 > > DocumentRoot "/opt/apache2/htdocs" > > > > DocumentRoot "/opt/apache2/htdocs2" > > == > > the syntax check passes > [EMAIL PROTECTED] apache2]# apachectl -t > Syntax OK > > After restarting when i check the url > http://192.168.1.3/ > it gives content of htdocs/index.html > > however when i do http://127.0.0.1/ > it gives me an error > Forbidden You don't have permission to access / on this server. > > The file permissions look ok to me.. out of ls -al /opt/apache2/ is below > > [EMAIL PROTECTED] apache2]# ls -al > total 128 > drwxr-xr-x 17 root root 4096 Aug 31 15:44 . > drwxr-xr-x 6 root root 4096 Aug 31 16:21 htdocs > drwxr-xr-x 2 root root 4096 Aug 31 16:12 htdocs2 > drwxr-xr-x 2 root root 4096 Aug 31 16:12 htdocs3 > > and [EMAIL PROTECTED] apache2]# ls -l htdocs/index.html htdocs2/index.html > htdocs3/index.html > -rw-r--r-- 1 root root 23 Aug 31 15:47 htdocs2/index.html > -rw-r--r-- 1 root root 23 Aug 31 15:47 htdocs3/index.html > -rw-r--r-- 1 root root 44 Nov 21 2004 htdocs/index.html > > on checking the error log i see the message > [Thu Aug 31 16:29:46 2006] [error] [client 127.0.0.1] client denied by > server configuration: /opt/apache2/htdocs2/ > > > Any reason why the documentroot of /opt/apache2/htdocs2 does not work fine. > > Thanks.. > > Yashesh > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Virtual hosts question - permission denied error httpd version 2.2.3
hi ashutosh: thx for the tip.. tried NameVirtualHost *:80 it did not work. gives the same error and also the syntax check gives a warning [EMAIL PROTECTED] htdocs]# apachectl -t [Thu Aug 31 17:18:03 2006] [warn] NameVirtualHost *:80 has no VirtualHosts Syntax OK tried with NameVirtualHost * does not work [EMAIL PROTECTED] htdocs]# apachectl -t [Thu Aug 31 17:21:06 2006] [warn] NameVirtualHost *:0 has no VirtualHosts Syntax OK thanks. yashesh On 8/31/06, Ashutosh Mohanty <[EMAIL PROTECTED]> wrote: hi, try-out with "NameVirtualHost *:80" or "NameVirtualHost *" Best Regards Ashutosh SynaptiCAD Inc. - Original Message - From: "Yashesh Bhatia" <[EMAIL PROTECTED]> To: Sent: Thursday, August 31, 2006 4:35 PM Subject: [EMAIL PROTECTED] Virtual hosts question - permission denied error httpd version 2.2.3 > hello: > >i'm experimenting name based virtual hosts and i have the following > apache setup > > /opt/apache2/htdocs/index.html > /opt/apache2/htdocs2/index2.html > > > Now i have the following entry in my /opt/apache2/conf/extra/httpd-vhosts.conf > > == > NameVirtualHost 192.168.1.3:80 > > DocumentRoot "/opt/apache2/htdocs" > > > > DocumentRoot "/opt/apache2/htdocs2" > > == > > the syntax check passes > [EMAIL PROTECTED] apache2]# apachectl -t > Syntax OK > > After restarting when i check the url > http://192.168.1.3/ > it gives content of htdocs/index.html > > however when i do http://127.0.0.1/ > it gives me an error > Forbidden You don't have permission to access / on this server. > > The file permissions look ok to me.. out of ls -al /opt/apache2/ is below > > [EMAIL PROTECTED] apache2]# ls -al > total 128 > drwxr-xr-x 17 root root 4096 Aug 31 15:44 . > drwxr-xr-x 6 root root 4096 Aug 31 16:21 htdocs > drwxr-xr-x 2 root root 4096 Aug 31 16:12 htdocs2 > drwxr-xr-x 2 root root 4096 Aug 31 16:12 htdocs3 > > and [EMAIL PROTECTED] apache2]# ls -l htdocs/index.html htdocs2/index.html > htdocs3/index.html > -rw-r--r-- 1 root root 23 Aug 31 15:47 htdocs2/index.html > -rw-r--r-- 1 root root 23 Aug 31 15:47 htdocs3/index.html > -rw-r--r-- 1 root root 44 Nov 21 2004 htdocs/index.html > > on checking the error log i see the message > [Thu Aug 31 16:29:46 2006] [error] [client 127.0.0.1] client denied by > server configuration: /opt/apache2/htdocs2/ > > > Any reason why the documentroot of /opt/apache2/htdocs2 does not work fine. > > Thanks.. > > Yashesh > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Virtual hosts question - permission denied error httpd version 2.2.3
On Thu, Aug 31, 2006 at 04:35:21PM +0530, Yashesh Bhatia wrote: > [Thu Aug 31 16:29:46 2006] [error] [client 127.0.0.1] client denied by > server configuration: /opt/apache2/htdocs2/ Show us your settings for the above, do the look somewhat like: AllowOverride None Order Allow,Deny Allow from all -- Riemer PalstraAmsterdam, The Netherlands [EMAIL PROTECTED]http://www.palstra.com/ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] SSL negotiation fails
Is there any way to redirect user to some HTML page if HTTPS (SSL) negotiation fails (e.g. user press CANCEL button on "Select Certificate" dialog)? At present generic "The page can not be found" message shows. I think this is IE's built-in message. __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.0.59 with SSL installation issue.
I remember seeing a similiar thread somewhere and I seem to recall it had to do with openssl 0.9.8b. Is openssl 0.9.8b a bugfix release over 0.9.8a, or a security fix? If 0.9.8b is only a bug fix, you could try it with 0.9.8a? --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> wrote: > I was able to install Apache 2.0.59 without SSL on > this server but we > need SSL support now. I've tried to re-compile > Apache without any luck. > I can configure it just fine but I run "make" that's > when I get an > error. I'm getting this: > > modules/ssl/.libs/mod_ssl.a(ssl_engine_kernel.o): In > function > `ssl_hook_Access': > /home/tech/upgrades/httpd-2.0.59/modules/ssl/ssl_engine_kernel.c:619: > > undefined reference to `X509_STORE_CTX_set_depth' > collect2: ld returned 1 exit status > make[1]: *** [httpd] Error 1 > make[1]: Leaving directory > `/home/tech/upgrades/httpd-2.0.59' > make: *** [all-recursive] Error 1 > > I'm trying to install Apache 2.0.59 with Openssl > 0.9.8b my configure > command is: > > ./configure --prefix=/usr/local/apachessl2 > --enable-so --enable-ssl > --with-ssl=/usr/local/ssl > > Any help would be greatly appreciated. > > TIA > > - > The official User-To-User support forum of the > Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for > more info. > To unsubscribe, e-mail: > [EMAIL PROTECTED] >" from the digest: > [EMAIL PROTECTED] > For additional commands, e-mail: > [EMAIL PROTECTED] > > __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] SSL negotiation fails
To my knowledge this is not possible. Don't forget, the SSL HandShake needs to be completed BEFORE your client can successfully retrieve any data from your webserver. So, if this handshake fails for whatever reason (including cancelation by the user), the connection is being torn down. i.e. Even if you could configure something on the webserver, it wouldn't matter because the client wishes to not proceed. If anyone disagrees with me, I would love to hear because I've had the need for something similiar. R --- Milan Tomic <[EMAIL PROTECTED]> wrote: > > Is there any way to redirect user to some HTML page > if HTTPS (SSL) negotiation fails (e.g. user > press CANCEL button on "Select Certificate" dialog)? > At present generic "The page can not be > found" message shows. I think this is IE's built-in > message. > > __ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam > protection around > http://mail.yahoo.com > > - > The official User-To-User support forum of the > Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for > more info. > To unsubscribe, e-mail: > [EMAIL PROTECTED] >" from the digest: > [EMAIL PROTECTED] > For additional commands, e-mail: > [EMAIL PROTECTED] > > __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Virtual hosts question - permission denied error httpd version 2.2.3
reimer, i did not have a container for /opt/apache2/htdocs2 ... added it in the section DocumentRoot "/opt/apache2/htdocs2" AllowOverride All Order allow,deny Allow from all and it works fine now. thx for pointing it out. yashesh On 8/31/06, Riemer Palstra <[EMAIL PROTECTED]> wrote: On Thu, Aug 31, 2006 at 04:35:21PM +0530, Yashesh Bhatia wrote: > [Thu Aug 31 16:29:46 2006] [error] [client 127.0.0.1] client denied by > server configuration: /opt/apache2/htdocs2/ Show us your settings for the above, do the look somewhat like: AllowOverride None Order Allow,Deny Allow from all -- Riemer PalstraAmsterdam, The Netherlands [EMAIL PROTECTED] http://www.palstra.com/ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Do KeepAlive options have a problem with counting ?
Hello again > I suspect there is a problem with counting > MaxKeepAliveRequests counter :/ Please tell me if I'm wrong ... (...) > KeepAlive on > MaxKeepAliveRequests 2 > KeepAliveTimeout 130 (..) > So there were three HTTP request with 12 bytes response :/ > It seems like problem with counting from 0 not from 1 (loop programing > problem?) Any suggestion :/ Because there was no reply I've checked source and I've found it :) --- apache_1.3.37/src/main/http_protocol.c 2006-07-12 10:16:05.0 +0200 +++ apache_1.3.37_correct/src/main/http_protocol.c 2006-08-31 14:22:34.0 +0200 @@ -431,7 +431,7 @@ r->server->keep_alive && (r->server->keep_alive_timeout > 0) && ((r->server->keep_alive_max == 0) || - (r->server->keep_alive_max > r->connection->keepalives)) && + (r->server->keep_alive_max > r->connection->keepalives + 1)) && !ap_status_drops_connection(r->status) && !wimpy && !ap_find_token(r->pool, conn, "close") && This quick fix corrects problem. I belive that is will be correct in nexts apache verions in more clear form (keepalives should be started with 1 value, not zero). Regards Andrzej Wisniewski - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.2.3 - Virtual Host
On 8/31/06, Evaggelos Balaskas <[EMAIL PROTECTED]> wrote: Hi to all, i want only for a specific virtual host to give the authority to one user - group . in apache 1.3.x was User - Group Directive [0] in apache 2.0.x wan't support User-Group in VH [1] and was (is) the AssignUserId [2] Is there something like this (User - Group, or alike) in apache 2.2.x. I use the SuExecUserGroup directive [3] but i want the user to write file without executing cgi scripts. This never really did what you want in any version of Apache httpd. User/Group in 1.3 have exactly the same effect as SuExecUserGroup in 2.x. It was renamed to avoid the confusion that you seem to have (ie, that User/Group has any effect beyond CGI scripts). The perchild mpm and AssignUserId did try to do what you want, but they never really worked and there is no active development to make them work at the moment. The reason this isn't supported in any version of apache httpd is because it is extremely difficult to accomplish without severe compromises given the unix permissions model. One alternative is to run each vhost as a separate apache httpd instance and then use a reverse proxy in front of them to forward requests. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] apr-config
On Fri, Aug 25, 2006 at 10:00:40PM +0100, David Link wrote: > I have installed Apache 2.2.3 on a RedHat Linux Enterprise 4ES system > and am trying to install mod_perl 2. The installation of mod_perl > insists on apr-config being somewhere on the system but the install of > Apache 2.2.3 does not seem to have installed a new apr-config (I > cannot find it in /usr/bin, /usr/sbin or anywhere else). Is this an installation from a package, or from source? You might be looking for apr-1-config, by the way. -- Riemer PalstraAmsterdam, The Netherlands [EMAIL PROTECTED]http://www.palstra.com/ - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Running http under a regular user id
All, We installed apache 2.0.59.Our requirement is to start/stop this server using a regular id other than root.We changed the installation directory permissions and also set the User and Group in httpd.conf to the required user and group permissions , but still we can't get it start/stop by regular user.It works fine with root id. Error we are seeing is "(13)Permission denied: mod_weblogic: could not create lockConfiguration Failed" Any help is highly appreciated. Thanks -Lakshmi
Re: [EMAIL PROTECTED] Running http under a regular user id
On 8/31/06, KURUGANTI, LAKSHMI, INFOT <[EMAIL PROTECTED]> wrote: All, We installed apache 2.0.59.Our requirement is to start/stop this server using a regular id other than root.We changed the installation directory permissions and also set the User and Group in httpd.conf to the required user and group permissions , but still we can't get it start/stop by regular user.It works fine with root id. Error we are seeing is "(13)Permission denied: mod_weblogic: could not create lock Configuration Failed" If you run your server on the standard port (80; or, in fact, any port below 1024), then you must have root permissions to start it. This is a basic unix permissions constraint and has nothing to do with apache in particular. It also appears in your case that mod_weblogic has a separate need for root permissions someplace; I don't anything about that. If you need to start apache httpd from non-root and still use port 80, you can try using sudo. But be aware that the apache configuration is flexible enough that anyone allowed to monkey with it can probably obtain root on the system if apache is started as root. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Re: Apache 2.2.3 - Virtual Host
Joshua Slive wrote: > The reason this isn't supported in any version of apache httpd is > because it is extremely difficult to accomplish without severe > compromises given the unix permissions model. One alternative is to > run each vhost as a separate apache httpd instance and then use a > reverse proxy in front of them to forward requests. > > Joshua. thanks for your anwser Joshua, the reverse proxy is a good solution. qa: If i use a cgi script to write files in my folder isn't better? -ebal - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Running http under a regular user id
Hello > Error we are seeing is "(13)Permission denied: mod_weblogic: could not > create lock Configuration Failed" You have no permission (for your user) to directory where lock file must be create. Don't forget also change port for starting apache without root user (it can not be port lower than 1024). User from configuration file is not this same what user used to start server. Apache is started usually as root (bind to port 80) and then (because of apache configuration) it starts few other processes with lower privileges (that is your User from config file). Regards. -- AndY - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Re: Apache 2.2.3 - Virtual Host
On 8/31/06, Evaggelos Balaskas <[EMAIL PROTECTED]> wrote: Joshua Slive wrote: > The reason this isn't supported in any version of apache httpd is > because it is extremely difficult to accomplish without severe > compromises given the unix permissions model. One alternative is to > run each vhost as a separate apache httpd instance and then use a > reverse proxy in front of them to forward requests. > > Joshua. thanks for your anwser Joshua, the reverse proxy is a good solution. qa: If i use a cgi script to write files in my folder isn't better? It's certainly much easier to do with cgi scripts and suexec. The only reason to consider the multi-apache-with-proxy approach is if you have very specific needs, like very high performance. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.0.59 with SSL installation issue.
0.9.8a was the security fix and 0.9.8b was a compatibility fix. The problem is, I had 0.9.8a already installed on the machine and I had the same exact error. I thought upgrading to 0.9.8b would fix the problem, but it didn't. And I couldn't find anything really detailed when I Googled the error. Do you remember how long ago that thread was, I can go and sift through the archives. I remember seeing a similiar thread somewhere and I seem to recall it had to do with openssl 0.9.8b. Is openssl 0.9.8b a bugfix release over 0.9.8a, or a security fix? If 0.9.8b is only a bug fix, you could try it with 0.9.8a? --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> wrote: I was able to install Apache 2.0.59 without SSL on this server but we need SSL support now. I've tried to re-compile Apache without any luck. I can configure it just fine but I run "make" that's when I get an error. I'm getting this: modules/ssl/.libs/mod_ssl.a(ssl_engine_kernel.o): In function `ssl_hook_Access': /home/tech/upgrades/httpd-2.0.59/modules/ssl/ssl_engine_kernel.c:619: undefined reference to `X509_STORE_CTX_set_depth' collect2: ld returned 1 exit status make[1]: *** [httpd] Error 1 make[1]: Leaving directory `/home/tech/upgrades/httpd-2.0.59' make: *** [all-recursive] Error 1 I'm trying to install Apache 2.0.59 with Openssl 0.9.8b my configure command is: ./configure --prefix=/usr/local/apachessl2 --enable-so --enable-ssl --with-ssl=/usr/local/ssl Any help would be greatly appreciated. TIA - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.0.59 with SSL installation issue.
Hey, have a look at this thread. Maybe some of the suggestions will work for you ... keep us posted: http://www.howtoforge.com/forums/archive/index.php/t-1557.html --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> wrote: > 0.9.8a was the security fix and 0.9.8b was a > compatibility fix. The > problem is, I had 0.9.8a already installed on the > machine and I had the > same exact error. I thought upgrading to 0.9.8b > would fix the problem, > but it didn't. And I couldn't find anything really > detailed when I > Googled the error. > > Do you remember how long ago that thread was, I can > go and sift through > the archives. > > I remember seeing a similiar thread somewhere and > I > > seem to recall it had to do with openssl 0.9.8b. > > > > Is openssl 0.9.8b a bugfix release over 0.9.8a, or > a > > security fix? If 0.9.8b is only a bug fix, you > could > > try it with 0.9.8a? > > > > --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> > wrote: > > > > > >> I was able to install Apache 2.0.59 without SSL > on > >> this server but we > >> need SSL support now. I've tried to re-compile > >> Apache without any luck. > >> I can configure it just fine but I run "make" > that's > >> when I get an > >> error. I'm getting this: > >> > >> modules/ssl/.libs/mod_ssl.a(ssl_engine_kernel.o): > In > >> function > >> `ssl_hook_Access': > >> > >> > > > /home/tech/upgrades/httpd-2.0.59/modules/ssl/ssl_engine_kernel.c:619: > > > >> undefined reference to `X509_STORE_CTX_set_depth' > >> collect2: ld returned 1 exit status > >> make[1]: *** [httpd] Error 1 > >> make[1]: Leaving directory > >> `/home/tech/upgrades/httpd-2.0.59' > >> make: *** [all-recursive] Error 1 > >> > >> I'm trying to install Apache 2.0.59 with Openssl > >> 0.9.8b my configure > >> command is: > >> > >> ./configure --prefix=/usr/local/apachessl2 > >> --enable-so --enable-ssl > >> --with-ssl=/usr/local/ssl > >> > >> Any help would be greatly appreciated. > >> > >> TIA > >> > >> > >> > > > - > > > >> The official User-To-User support forum of the > >> Apache HTTP Server Project. > >> See http://httpd.apache.org/userslist.html> > for > >> more info. > >> To unsubscribe, e-mail: > >> [EMAIL PROTECTED] > >>" from the digest: > >> [EMAIL PROTECTED] > >> For additional commands, e-mail: > >> [EMAIL PROTECTED] > >> > >> > >> > > > > > > __ > > Do You Yahoo!? > > Tired of spam? Yahoo! Mail has the best spam > protection around > > http://mail.yahoo.com > > > > > - > > The official User-To-User support forum of the > Apache HTTP Server Project. > > See http://httpd.apache.org/userslist.html> > for more info. > > To unsubscribe, e-mail: > [EMAIL PROTECTED] > >" from the digest: > [EMAIL PROTECTED] > > For additional commands, e-mail: > [EMAIL PROTECTED] > > > > > > > - > The official User-To-User support forum of the > Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for > more info. > To unsubscribe, e-mail: > [EMAIL PROTECTED] >" from the digest: > [EMAIL PROTECTED] > For additional commands, e-mail: > [EMAIL PROTECTED] > > __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] require group posixGroup (LDAP)
I have LDAP directory with groups of class posixGroup (to do /etc/groups functionality on servers ). I want LDAP to take over Apache2.2 authentification also. It's important to me that i can restrict access to resorces by "require group" directive. However i'm having problems, as it seems to me that mod_auth_ldap doesn't "understand" groups of class posixGroup. When i create group of class groupOfUniqueNames everything works fine, but again i can not do Posix group accounting. Is there any way to make Apache look at my posixGroup objects? begin:vcard fn;quoted-printable:Rolands Mek=C5=A1s n;quoted-printable:Mek=C5=A1s;Rolands org:SIA Solcraft email;internet:[EMAIL PROTECTED] tel;work:+371 7277708 x-mozilla-html:TRUE version:2.1 end:vcard - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] mod_proxy and unwanted decoding of URLs (related to bug 15207)
Hello, I'm using Apache (2.0.59) and mod_proxy as reverse proxy and want the remote server pass URLs like http://foo.com/bar/black%26white Unfortunately, when using mod_proxy with ProxyPass and ProxyPassReverse, this URL is rewritten to http://foo.com/bar/black&white which is bad (since on the remote server it is rewritten to http://foo.com/bar?q=black&white instead of http://foo.com/bar?q=black%26white - you see the problem?) So how can I advise mod_proxy to not touch my URLs and just pass them as they are? I think this is closely related to this Bug: http://issues.apache.org/bugzilla/show_bug.cgi?id=15207 There Zvi Har'El says, that behaviour seems to be OK. Is there a way to prevent it? Thanks a lot, Robert Jäschke - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.0.59 with SSL installation issue.
Thanks for that, I did some digging and it turns out an old version of Openssl is on the server and it looks like there's a conflict even after I put in --with-ssl=/usr/local/ssl (where 0.9.8b is and where 0.9.8.a was). I'm going to re-compile Openssl to use the paths of the old version. Hey, have a look at this thread. Maybe some of the suggestions will work for you ... keep us posted: http://www.howtoforge.com/forums/archive/index.php/t-1557.html --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> wrote: 0.9.8a was the security fix and 0.9.8b was a compatibility fix. The problem is, I had 0.9.8a already installed on the machine and I had the same exact error. I thought upgrading to 0.9.8b would fix the problem, but it didn't. And I couldn't find anything really detailed when I Googled the error. Do you remember how long ago that thread was, I can go and sift through the archives. I remember seeing a similiar thread somewhere and I seem to recall it had to do with openssl 0.9.8b. Is openssl 0.9.8b a bugfix release over 0.9.8a, or a security fix? If 0.9.8b is only a bug fix, you could try it with 0.9.8a? --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> wrote: I was able to install Apache 2.0.59 without SSL on this server but we need SSL support now. I've tried to re-compile Apache without any luck. I can configure it just fine but I run "make" that's when I get an error. I'm getting this: modules/ssl/.libs/mod_ssl.a(ssl_engine_kernel.o): In function `ssl_hook_Access': /home/tech/upgrades/httpd-2.0.59/modules/ssl/ssl_engine_kernel.c:619: undefined reference to `X509_STORE_CTX_set_depth' collect2: ld returned 1 exit status make[1]: *** [httpd] Error 1 make[1]: Leaving directory `/home/tech/upgrades/httpd-2.0.59' make: *** [all-recursive] Error 1 I'm trying to install Apache 2.0.59 with Openssl 0.9.8b my configure command is: ./configure --prefix=/usr/local/apachessl2 --enable-so --enable-ssl --with-ssl=/usr/local/ssl Any help would be greatly appreciated. TIA - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] How to Monitor Apache Win32?
I have Apache 1.3.34 installed on Windows 2000 boxes and was wondering if there was anyway to monitor Apache for stuff like current requests and accesses? I want to go beyond monitoring on port 80. Has anyone been successful in implementing network management solutions with Apache Win32 such as SNMP or WMI? What I am trying to accomplish is for Apache to somehow make meaningful web server data available for collection. That way I can implement a centralized network management solution that is able to collect server status stats from Apache Win32. I know this is somewhat of an off topic question but I can only find solutions for Apache on Linux or IIS on Windows. Thanx in advance. Christian Toledo Web Administrator WebCollage Inc. W: 646.827.2579 C: 908.307.6241
Re: [EMAIL PROTECTED] Running http under a regular user id
Hi, On Don 31.08.2006 09:53, KURUGANTI, LAKSHMI, INFOT wrote: We installed apache 2.0.59.Our requirement is to start/stop this server using a regular id other than root.We changed the installation directory permissions and also set the User and Group in httpd.conf to the required user and group permissions , but still we can't get it start/stop by regular user.It works fine with root id. Error we are seeing is "(13)Permission denied: mod_weblogic: could not create lock Configuration Failed" Any help is highly appreciated. Due the fact that you don't have said on whic OS you run your apache here the doc for the wl-plugin: http://edocs.bea.com/wls/docs81/plugins/plugin_params.html You could also look with strace/truss/ktrace/ in which dir wl want to make the lock file. Hth && regards Alex - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.0.59 with SSL installation issue.
One Guess ... did you actually blast config.cache and rerun your ./config.nice or did you simply try installing over 0.9.8b ... one trouble is that httpd's configure will remember the original openssl and it's discovered options. Richard de Vries wrote: > I remember seeing a similiar thread somewhere and I > seem to recall it had to do with openssl 0.9.8b. > > Is openssl 0.9.8b a bugfix release over 0.9.8a, or a > security fix? If 0.9.8b is only a bug fix, you could > try it with 0.9.8a? > > --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> wrote: > >> I was able to install Apache 2.0.59 without SSL on >> this server but we >> need SSL support now. I've tried to re-compile >> Apache without any luck. >> I can configure it just fine but I run "make" that's >> when I get an >> error. I'm getting this: >> >> modules/ssl/.libs/mod_ssl.a(ssl_engine_kernel.o): In >> function >> `ssl_hook_Access': >> > /home/tech/upgrades/httpd-2.0.59/modules/ssl/ssl_engine_kernel.c:619: >> undefined reference to `X509_STORE_CTX_set_depth' >> collect2: ld returned 1 exit status >> make[1]: *** [httpd] Error 1 >> make[1]: Leaving directory >> `/home/tech/upgrades/httpd-2.0.59' >> make: *** [all-recursive] Error 1 >> >> I'm trying to install Apache 2.0.59 with Openssl >> 0.9.8b my configure >> command is: >> >> ./configure --prefix=/usr/local/apachessl2 >> --enable-so --enable-ssl >> --with-ssl=/usr/local/ssl >> >> Any help would be greatly appreciated. >> >> TIA >> >> > - >> The official User-To-User support forum of the >> Apache HTTP Server Project. >> See http://httpd.apache.org/userslist.html> for >> more info. >> To unsubscribe, e-mail: >> [EMAIL PROTECTED] >>" from the digest: >> [EMAIL PROTECTED] >> For additional commands, e-mail: >> [EMAIL PROTECTED] >> >> > > > __ > Do You Yahoo!? > Tired of spam? Yahoo! Mail has the best spam protection around > http://mail.yahoo.com > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: [EMAIL PROTECTED] >" from the digest: [EMAIL PROTECTED] > For additional commands, e-mail: [EMAIL PROTECTED] > > > - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache 2.0.59 with SSL installation issue.
Well the server was originally running 1.3.33, so I was just installing 2.0.59 in a completely different location. But I did manage to find a fix for it all. It appears that 0.6.3 was installed on the server (or something close to that I can't recall the exact version) and it was installed in /usr/bin/, /usr/local/, and /usr/includes. The 0.9.8a and 0.9.8b where/are installed in /usr/local/ssl. When I just ran >openssl from the command line and typed in "version" it kept giving me the 0.6.3 version. So I just did this: rm /usr/bin/openssl ln -s /usr/local/ssl/bin/openssl /usr/bin/openssl make clean ./configure --prefix=/usr/local/apachessl2 --enable-ssl --enable-so I was able to fully install Apache 2.0.59 with the above steps and I'm now running it with PHP 4.4.2 with mcrypt so the goal was achieved. Thanks for all the help everyone! William A. Rowe, Jr. wrote: One Guess ... did you actually blast config.cache and rerun your ./config.nice or did you simply try installing over 0.9.8b ... one trouble is that httpd's configure will remember the original openssl and it's discovered options. Richard de Vries wrote: I remember seeing a similiar thread somewhere and I seem to recall it had to do with openssl 0.9.8b. Is openssl 0.9.8b a bugfix release over 0.9.8a, or a security fix? If 0.9.8b is only a bug fix, you could try it with 0.9.8a? --- "Tom Ray [Lists]" <[EMAIL PROTECTED]> wrote: I was able to install Apache 2.0.59 without SSL on this server but we need SSL support now. I've tried to re-compile Apache without any luck. I can configure it just fine but I run "make" that's when I get an error. I'm getting this: modules/ssl/.libs/mod_ssl.a(ssl_engine_kernel.o): In function `ssl_hook_Access': /home/tech/upgrades/httpd-2.0.59/modules/ssl/ssl_engine_kernel.c:619: undefined reference to `X509_STORE_CTX_set_depth' collect2: ld returned 1 exit status make[1]: *** [httpd] Error 1 make[1]: Leaving directory `/home/tech/upgrades/httpd-2.0.59' make: *** [all-recursive] Error 1 I'm trying to install Apache 2.0.59 with Openssl 0.9.8b my configure command is: ./configure --prefix=/usr/local/apachessl2 --enable-so --enable-ssl --with-ssl=/usr/local/ssl Any help would be greatly appreciated. TIA - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] redhat enterprise 4 / mod_ssl issue
Hi,
I suppose this may be more of a mod_ssl question but I thought I would
post here as well in hopes of more help.
I have a working install that I use for redhat enterprise linux 3:
(from my .spec file)
cd mod_ssl-2.8.28-1.3.37
./configure \
--with-perl=/usr/bin/perl \
--with-apache=../apache_%{apversion} \
cd apache_%{apversion}
SSL_BASE="/usr/" \
./configure \
--with-perl=/usr/bin/perl \
--enable-shared=max \
--enable-suexec \
--suexec-caller=nobody \
--suexec-docroot="/home" \
--suexec-userdir="www" \
--enable-module=ssl \
--enable-module=rewrite
This works fine on RHEL3, but when I try to use the same config on
redhat enterprise 4 I get the following behavior.
All SSL hits return a blank page.
ssl_engine_log shows:
[31/Aug/2006 17:26:07 12662] [info] Connection to child 28
established (server myserver.com:443, client 192.168.1.100)
[31/Aug/2006 17:26:07 12662] [info] Seeding PRNG with 1160 bytes of entropy
access_log shows nothing.
selinux is not on.
I can't seem to find what is wrong.
ssl is :
openssl-devel-0.9.7a-43.8
openssl-0.9.7a-43.8
mod_ssl is mod_ssl-2.8.28-1.3.37.tar.gz
apache is apache_1.3.37.tar.gz
I'm stumped. Any ideas?
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] How do I determine my server's name?
This is probably a dumb question, but how do I determine the name of my server (local and online)? I have a PHP script that's supposed to modify a value depending on whether a file is online or local, and it requires the name of my local server. I'm using Apache in both my PC and my Apple laptop, but I wasn't aware that my local server had a name.Thanks. Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls. Great rates starting at 1¢/min.
Re: [EMAIL PROTECTED] How do I determine my server's name?
What a silly app... the right test is to see if the request came in through
127.0.0.1 (al la localhost loopback) and distrust the rest :)
ipconfig should tell you your IP, maybe your name on win32. Try ifconfig
on Mac. Then nslookup {your ip} to see if it is known, otherwise your
server's 'name' is really it's IP.
David Blomstrom wrote:
> This is probably a dumb question, but how do I determine the name of my
> server (local and online)? I have a PHP script that's supposed to modify
> a value depending on whether a file is online or local, and it requires
> the name of my local server. I'm using Apache in both my PC and my Apple
> laptop, but I wasn't aware that my local server had a name.
>
> Thanks.
>
>
> Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls. Great
> rates starting at 1¢/min.
>
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] How do I determine my server's name?
William Rowe wrote, "What a silly app... the right test is to see if the request came in through127.0.0.1 (al la localhost loopback) and distrust the rest :)ipconfig should tell you your IP, maybe your name on win32."Sorry, I'm a little confused. It sounds like you're suggesting I'm using the wrong script to begin with? This is it:if ($_SERVER['SERVER_NAME'] == 'your local name') { // config options for local host } else { // config options for online host }If I understand correctly, you're suggesting I use IP
address in lieu of server name - right?I Googled for IPConfig, found this page:http://www.microsoft.com/resources/documentation/windows/xp/all/proddocs/en-us/ipconfig.mspx?mfr=true...and followed some instructions which revealed my local IP address is 192.168.0.2 (I think). So now I need to somehow change my PHP script so that it works with IP address, rather than SERVER_NAME?I think I've discovered one advantage to using server name - I would assume it's stable. It looks like my IP address may have changed when I canceled my dial up account and went with DSL and thence to wireless.At any rate, thanks for the feedback. I'm getting closer - I think? :)"William A. Rowe, Jr." <[EMAIL PROTECTED]> wrote: What a silly app... the right
test is to see if the request came in through127.0.0.1 (al la localhost loopback) and distrust the rest :)ipconfig should tell you your IP, maybe your name on win32. Try ifconfigon Mac. Then nslookup {your ip} to see if it is known, otherwise yourserver's 'name' is really it's IP.David Blomstrom wrote:> This is probably a dumb question, but how do I determine the name of my> server (local and online)? I have a PHP script that's supposed to modify> a value depending on whether a file is online or local, and it requires> the name of my local server. I'm using Apache in both my PC and my Apple> laptop, but I wasn't aware that my local server had a name.> > Thanks.> > > Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls. Great> rates starting at 1¢/min.> -The official User-To-User support forum of the Apache HTTP Server Project.See for more info.To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED]For additional commands, e-mail: [EMAIL PROTECTED]
Yahoo! Messenger with Voice. Make PC-to-Phone Calls to the US (and 30+ countries) for 2¢/min or less.
Re: [EMAIL PROTECTED] Rewriting for Reverse proxy style setups
Any ideas about a list for proxy_html module? On 8/31/06, Joshua Slive <[EMAIL PROTECTED]> wrote: On 8/30/06, Devraj Mukherjee <[EMAIL PROTECTED]> wrote: > I have nailed it down to two problems. > > 1. All elements (scripts, etc) have absolute references to others so > the documents always need to be relative to the root > > 2. There are various absolute references in the HTML specially in the > form of tags. They need to be re-written. > > If I point the root of the reverse proxy to the Domino web access root > then everything works like a dream. However I wish to provide a > virtual URL such as http://revproxy/domino/ > > Has anyone dealt with this before? Any resources will be helpful. mod_proxy_html is the only way to deal with this as far as I know. Google for it. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Rewriting for Reverse proxy style setups
On 8/31/06, Devraj Mukherjee <[EMAIL PROTECTED]> wrote: Any ideas about a list for proxy_html module? It's author can sometimes be found on this list. Joshua. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Apache won't install as Service on Windows XP pro
I get an error message saying that only one service can connect to an address or port and that the installer could not connect to 0.0.0.0:80. I think get a message saying that Apache2 was not installed. Here is a screen shot of the first message: http://www.paulmcelligott.com/images/apache.JPG -- Paul McElligott [EMAIL PROTECTED] begin:vcard fn:Paul McElligott n:McElligott;Paul email;internet:[EMAIL PROTECTED] tel;cell:949-292-2510 x-mozilla-html:FALSE version:2.1 end:vcard - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache won't install as Service on Windows XP pro
On 8/31/06, Paul McElligott <[EMAIL PROTECTED]> wrote: I get an error message saying that only one service can connect to an address or port and that the installer could not connect to 0.0.0.0:80. I think get a message saying that Apache2 was not installed. Here is a screen shot of the first message: http://www.paulmcelligott.com/images/apache.JPG -- Paul McElligott [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Paul, From a console run the following command: netstat -a -b -n Look to see what executable is listening on 0.0.0.0:80 Chris - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Reverse SSL Proxy on multiple ports
For security reasons, I am running a reverese proxy in front of my WebSphere App server. The WAS App Server only listens to 127.0.0.1, and the ports that should be exposed externally (ie. 9080, 9443 etc) are proxied thru the proxy server that runs on the same machine. So basically the proxy is taking requests on the public IP addresses, and proxies them to 127.0.0.1:xxx Now my developers felt it was suddenly necesarry to have two application profiles that are esentially clones of eachother. So, in it's simplest terms, we now have the Application Server respond to 2 HTTP and 2 HTTPs ports. Getting the proxy to proxy two regular HTTP ports is easy; but how can I configure my proxy to also handle two HTTPS ports, without having to create new certificates for each? So, I want my SSL proxy to proxy HTTPS port 1000 to 127.0.0.1:1000, and HTTPS port 1001 to 127.0.0.1:1001. Unfortunately I don't seem to be able to use multiple named virtual hosts in the Proxy SSL Config with all the same SSL settings. (I get an error stating SSL can not be re-initialized from within the same config). Any feedback would be appreciated. Thanks :) R __ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] SSO
Hello, I have a requirement as followed. 1) I have 2 different applications to be installed in apache named app1 and app2. 2) app1 is installed in apache directly 3) app2 is intalled in OC4J application server, where apache is configured to redirect requests to oc4j 4) app1 uses basic authentication and app2 uses it's own authentication technique 5) Now i have a portal kind of an application called app3 that has links to call app01, app02 6)Authentication should be done in app03 and the same needs to be passed on to the other application during the invocation How to acheive this kind of SSO Thanks in Advance, Parimala -- View this message in context: http://www.nabble.com/SSO-tf2200773.html#a6093178 Sent from the Apache HTTP Server - Users forum at Nabble.com. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] LAMP Experts Needed
I am looking for some serious coders that want to make a name for themselves and/or a lot of money. I need to talk to any one who is considered an Expert with any of these: Linux Apache MySQL or PostgreSQL PHP, Perl, Python HTML CSS XML XSL I am going to convince my employer to replace a very expensive package that they are using right now. This project will take several months to complete and then will be on going with a monthly maintenance and service. If you have any interest at all and want to know the details contact me. Send what you can and will do for this project to me at [EMAIL PROTECTED] It is going to be a web interface interacting with a very large database. -- Jack Gates http://www.morningstarcom.net - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
