Re: [EMAIL PROTECTED] Binaries prepared for users@ win32 testing

2007-09-23 Thread William A. Rowe, Jr. 
Sander Temme wrote:
> 
> I have not tried mod_perl.  So far, I have only tried the default path
> through the installer, not more and not less than I describe.

Thanks Sander!  Since I had validated 1.3/2.0 several times and 2.2 once
in it's final iteration, I'll trust your double check of 2.2 (who's installer
had real changes in several respects) to be a green light.

These are up, but unlike most releases I won't move aside the 2.2.4/2.0.59
binaries; added a caveat that modperl was reported to have issues with this
along with other 3rdparty modules who rely on win32-specific behaviors.

Bill

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] http and https

2007-09-23 Thread edwardspl 
Dear All,

I just modify the config again, but it still problem ( can't open the
web page ) :

NameVirtualHost *:443


DocumentRoot "/home/itawm/html"
ServerName webmail.ita.org.mo:443
ErrorLog /var/log/httpd/itawm-ssl-error.log
TransferLog /var/log/httpd/itawm-ssl-access.log
LogLevel warn
SSLEngine on
SSLProtocol all -SSLv2
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW

SSLCertificateFile /etc/httpd/ssl/ita.server.crt
SSLCertificateKeyFile /etc/httpd/ssl/ita.server.key


SSLOptions +StdEnvVars


SSLOptions +StdEnvVars


SetEnvIf User-Agent ".*MSIE.*" \
nokeepalive ssl-unclean-shutdown \
downgrade-1.0 force-response-1.0

CustomLog logs/itawm-ssl_request_log \
"%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"



warning message :
[Sun Sep 23 17:09:20 2007] [warn] RSA server certificate is a CA
certificate (BasicConstraints: CA == TRUE !?)
[Sun Sep 23 17:09:20 2007] [warn] RSA server certificate is a CA
certificate (BasicConstraints: CA == TRUE !?)

[Sun Sep 23 17:09:20 2007] [warn] RSA server certificate is a CA
certificate (BasicConstraints: CA == TRUE !?)
[Sun Sep 23 17:09:20 2007] [warn] RSA server certificate CommonName (CN)
`localhost.localdomain' does NOT match server name!?
[Sun Sep 23 17:09:20 2007] [warn] RSA server certificate is a CA
certificate (BasicConstraints: CA == TRUE !?)
[Sun Sep 23 17:09:20 2007] [warn] RSA server certificate CommonName (CN)
`localhost.localdomain' does NOT match server name!?

Any more help ?

Thanks !

Edward.

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Binaries prepared for users@ win32 testing

2007-09-23 Thread Steffen 

Thanks Bill,

I posted your caveat too on http://www.apachelounge.com

Steffen

- Original Message - 
From: "William A. Rowe, Jr." <[EMAIL PROTECTED]>

To: 
Sent: Sunday, 23 September, 2007 09:57
Subject: Re: [EMAIL PROTECTED] Binaries prepared for users@ win32 testing



Sander Temme wrote:


I have not tried mod_perl.  So far, I have only tried the default path
through the installer, not more and not less than I describe.


Thanks Sander!  Since I had validated 1.3/2.0 several times and 2.2 once
in it's final iteration, I'll trust your double check of 2.2 (who's
installer
had real changes in several respects) to be a green light.

These are up, but unlike most releases I won't move aside the 2.2.4/2.0.59
binaries; added a caveat that modperl was reported to have issues with
this
along with other 3rdparty modules who rely on win32-specific behaviors.

Bill

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Apache 2.2, rotatelogs and Windows

2007-09-23 Thread Steffen 

There are other ways to do it.



You can use the Sambar Server (free version, http://www.sambarserver.info)
to automatically  rotate the logs without stopping/starting Apache. I am
running Sambar just for the very handy utilities in it and do not serve
sites with it.

Sambar has a sophisticated log rotation feature. It empties the logs and
saves (daily, weekly, montly) the rotated logs compressed   in  folders like
..\log\2007\09\acces.log-23.gz and it can generate simple Log Reports (can
even be mailed to you). Also there is a web-interface to view logs, this
with a search facility.

Configuration in short: run Sambar on an other port and define in Sambar the
same logs (and log format) as in Apache, Sambar and Apache shares the same
logs (you can instruct Sambar not to log request). When you have logs for
your virtual hosts you can also share them as well as the error.log (define
in Apache the Sambar log location server.log).


Also you can use  Awstats a logfile analyzer http://awstats.sourceforge.net/
It has a option after you run the  statistics to clean the log and backup
the log file.


And final with no starting/stopping:  Just copy (not a move like in the
script below) the logs from an running Apache to an other location and
(g)zip it and copy emtpy logfiles over to the Apache logs.


Steffen



- Original Message - 
From: "Mark A. Craig" <[EMAIL PROTECTED]>

To: 
Sent: Thursday, 20 September, 2007 11:15
Subject: Re: [EMAIL PROTECTED] Apache 2.2, rotatelogs.exe, and Windows



In the meantime, I managed to find this, which I thought worth sharing in
spite of the bad English grammar:

AB's Useful Box - Apache for Win32 Log file Rotation

So you have finished installing Apache for Win32, one of the best web
servers you can get on your WinNT / Win2K / WinXP machine, but find that
it's log files, access.log and error.log just keep on growing !

Well fear not, it is possible to manage those log files, and automate the
process with out to much grief.

The following batch file, the was written and tested on WinXP, but should
just as well on WinNT and Win2K, should:

* store the current date and time into a varible
* stop the Apache web service
* move the log files, using the date/time as unique filename
* restart the Apache web service
* if prefered, use a command line zip utility to zip the logs
* keep only the last "x" logs, and delete old

@echo off
:: Name - svrlogmng.bat
:: Description - Server Log File Manager
::
:: History
:: Date Authory Change
:: 22-May-2005 AGButler Original
::

:: 
:: setup variables and parameters
:: 

:: generate date and time varibles
for /f "tokens=2,3,4 delims=/ " %%i in ('date /T') do set trdt=%%k%%j%%i
for /f "tokens=1,2 delims=: " %%i in ('time /T') do set trtt=%%i%%j
set nftu=%trdt%%trtt%

:: set the Number Of Archives To Keep
set /a noatk=7


:: 
:: turn over log files
:: 

:: change to the apacge log file direcoty
cd "c:\program files\apache group\apache\logs\"


:: stop Apache Service, Move log files and restart Apache Service
net stop apache

echo %nftu% >> access.log
move "c:\program files\apache group\apache\logs\access.log" "c:\program
files\apache group\apache\logs\%nftu%_access.log"

echo %nftu% >> error.log
move "c:\program files\apache group\apache\logs\error.log" "c:\program
files\apache group\apache\logs\%nftu%_error.log"

net start apache


:: 
:: zip todays Access and Error log files, then delete old logs
:: 

:: zip the files
7za a -tzip %nftu%_logs.zip %nftu%_access.log %nftu%_error.log

:: del the files
del /Q %nftu%_*.log


:: 
:: rotate the zip files
:: 

:: make list of archive zip files
type NUL > arclist.dat
for /F "tokens=1,2 delims=[] " %%i in ('dir /B *_logs.zip ^| find /N
"_logs.zip"') do echo %%i = %%j>> arclist.dat

:: count total number of files
for /F "tokens=1 delims=" %%i in ('type arclist.dat ^| find /C
"_logs.zip"') do
set tnof=%%i

:: setup for and create the deletion list
set /a negtk=%noatk%*-1
set /a tntd=%tnof% - %noatk%

type NUL>dellist.dat
for /L %%i in (%negtk%,1,%tntd%) do find " %%i = " arclist.dat >>
dellist.dat

:: del the old files
for /F "tokens=3 delims= " %%i in ('find "_logs.zip" dellist.dat') do del
/Q %%i

:: remove temp files
del /Q arclist.dat
del /Q dellist.dat


:end

The command line 7za zip utility is available from http://www.7-zip.org

The best method is to just put the 7za.exe file into your system32 folder.

Then it is just a matter of calling the batch file from the windows
scheduler. On WinNT this is done on the commen

[EMAIL PROTECTED] https function ( default ) of Linux FC6

2007-09-23 Thread edwardspl 

Dear All,

Just found the https can't be good for work...

#
# This is the Apache server configuration file providing SSL support.
# It contains the configuration directives to instruct the server how to
# serve pages over an https connection. For detailing information about 
these

# directives see http://httpd.apache.org/docs/2.2/mod/mod_ssl.html>
#
# Do NOT simply read the instructions in here without understanding
# what they do.  They're here only as hints or reminders.  If you are unsure
# consult the online docs. You have been warned. 
#


LoadModule ssl_module modules/mod_ssl.so

#
# When we also provide SSL we have to listen to the
# the HTTPS port in addition.
#
Listen 443
NameVirtualHost *:443
##
##  SSL Global Context
##
##  All SSL configuration in this context applies both to
##  the main server and all SSL-enabled virtual hosts.
##

#
#   Some MIME-types for downloading Certificates and CRLs
#
AddType application/x-x509-ca-cert .crt
AddType application/x-pkcs7-crl.crl

#   Pass Phrase Dialog:
#   Configure the pass phrase gathering process.
#   The filtering dialog program (`builtin' is a internal
#   terminal dialog) has to provide the pass phrase on stdout.
SSLPassPhraseDialog  builtin

#   Inter-Process Session Cache:
#   Configure the SSL Session Cache: First the mechanism
#   to use and second the expiring timeout (in seconds).
#SSLSessionCachedc:UNIX:/var/cache/mod_ssl/distcache
SSLSessionCache shmcb:/var/cache/mod_ssl/scache(512000)
SSLSessionCacheTimeout  300

#   Semaphore:
#   Configure the path to the mutual exclusion semaphore the
#   SSL engine uses internally for inter-process synchronization.
SSLMutex default

#   Pseudo Random Number Generator (PRNG):
#   Configure one or more sources to seed the PRNG of the
#   SSL library. The seed data should be of good random quality.
#   WARNING! On some platforms /dev/random blocks if not enough entropy
#   is available. This means you then cannot use the /dev/random device
#   because it would lead to very long connection times (as long as
#   it requires to make more entropy available). But usually those
#   platforms additionally provide a /dev/urandom device which doesn't
#   block. So, if available, use this one instead. Read the mod_ssl User
#   Manual for more details.
SSLRandomSeed startup file:/dev/urandom  256
SSLRandomSeed connect builtin
#SSLRandomSeed startup file:/dev/random  512
#SSLRandomSeed connect file:/dev/random  512
#SSLRandomSeed connect file:/dev/urandom 512

#
# Use "SSLCryptoDevice" to enable any supported hardware
# accelerators. Use "openssl engine -v" to list supported
# engine names.  NOTE: If you enable an accelerator and the
# server does not start, consult the error logs and ensure
# your accelerator is functioning properly.
#
SSLCryptoDevice builtin
#SSLCryptoDevice ubsec

##
## SSL Virtual Host Context
##



# General setup for the virtual host, inherited from global configuration
#DocumentRoot "/var/www/html"
#ServerName www.example.com:443

# Use separate log files for the SSL virtual host; note that LogLevel
# is not inherited from httpd.conf.
ErrorLog logs/ssl_error_log
TransferLog logs/ssl_access_log
LogLevel warn

#   SSL Engine Switch:
#   Enable/Disable SSL for this virtual host.
SSLEngine on

#   SSL Protocol support:
# List the enable protocol levels with which clients will be able to
# connect.  Disable SSLv2 access by default:
SSLProtocol all -SSLv2

#   SSL Cipher Suite:
# List the ciphers that the client is permitted to negotiate.
# See the mod_ssl documentation for a complete list.
SSLCipherSuite ALL:!ADH:!EXPORT:!SSLv2:RC4+RSA:+HIGH:+MEDIUM:+LOW

#   Server Certificate:
# Point SSLCertificateFile at a PEM encoded certificate.  If
# the certificate is encrypted, then you will be prompted for a
# pass phrase.  Note that a kill -HUP will prompt again.  A new
# certificate can be generated using the genkey(1) command.
SSLCertificateFile /etc/pki/tls/certs/localhost.crt

#   Server Private Key:
#   If the key is not combined with the certificate, use this
#   directive to point at the key file.  Keep in mind that if
#   you've both a RSA and a DSA private key you can configure
#   both in parallel (to also allow the use of DSA ciphers, etc.)
SSLCertificateKeyFile /etc/pki/tls/private/localhost.key

#   Server Certificate Chain:
#   Point SSLCertificateChainFile at a file containing the
#   concatenation of PEM encoded CA certificates which form the
#   certificate chain for the server certificate. Alternatively
#   the referenced file can be the same as SSLCertificateFile
#   when the CA certificates are directly appended to the server
#   certificate for convinience.
#SSLCertificateChainFile /etc/pki/tls/certs/server-chain.crt

#   Certificate Authority (CA):
#   Set the CA certificate verification path where to find CA
#   certificates for client authentication or alternatively one
#   huge file containing all of them (file must be PEM encoded)
#SSLCACertificateFile /e

[EMAIL PROTECTED] Question about proxy_ajp, sessions and paths...

2007-09-23 Thread Haim Ashkenazi 
Hi

I'm trying to reverse proxy a tomcat server with proxy_ajp.


If The path of the URL is identical to the path of ajp, sessions are
kept without a problem:
ProxyPass /abc/ ajp://localhost:8009/abc/

But if I do it like this:
ProxyPass / ajp://localhost:8009/abc/
sessions are not kept in tomcat. every request is like a new one.

Is this a normal behavior? Is there a workaround for that?

Please help
--
Haim

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Help for first time user

2007-09-23 Thread Judy Hulsey 


I am an Information Technology student and I am taking PHP this semester. I 
have downloaded and installed Apache and when I test it I get the messageIt 
works!  But when I try to open a page with Apache I get 
   
  HTTP 403 (Forbidden)
  Forbidden  You don't have permission to access 
/PHP_Projects/Chapter.01/Chapter/DessertShop.html on this server.
   I get this error in my log files:
  [Sun Sep 23 10:06:45 2007] [error] [client 127.0.0.1] client denied by server 
configuration: C:/Course Technology/1687-5/Chapter.01/Chapter/DessertShop.html
[Sun Sep 23 10:10:09 2007] [error] [client 127.0.0.1] File does not exist: 
C:/Program Files/Apache Software Foundation/Apache2.2/htdocs/favicon.ico.
   
  Please someone help me


   
-
Shape Yahoo! in your own image.  Join our Network Research Panel today!

Re: [EMAIL PROTECTED] Help for first time user

2007-09-23 Thread edwardspl 
Hello Judy,

What is your environment ?

Edward.

Judy Hulsey wrote:

>
>
> I am an Information Technology student and I am taking PHP this
> semester. I have downloaded and installed Apache and when I test it I
> get the message
>
>
>   It works!
>
> But when I try to open a page with Apache I get
> HTTP 403 (Forbidden)
>
>
>   Forbidden
>
> You don't have permission to access
> /PHP_Projects/Chapter.01/Chapter/DessertShop.html on this server.
> I get this error in my log files:
> [Sun Sep 23 10:06:45 2007] [error] [client 127.0.0.1] client denied by
> server configuration: C:/Course
> Technology/1687-5/Chapter.01/Chapter/DessertShop.html
> [Sun Sep 23 10:10:09 2007] [error] [client 127.0.0.1] File does not
> exist: C:/Program Files/Apache Software
> Foundation/Apache2.2/htdocs/favicon.ico.
> Please someone help me
>
> 
> Shape Yahoo! in your own image. Join our Network Research Panel today!
>

Re: [EMAIL PROTECTED] Help for first time user

2007-09-23 Thread Andrew WC Brown 
I'm guessing your developing on a windows machine since I see C:/
What did you do to launch apache?
Did you change your conf file? If so what did you change? was it your
DirectoryRoot?


On 9/23/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
>
>  Hello Judy,
>
> What is your environment ?
>
> Edward.
>
> Judy Hulsey wrote:
>
>
>
> I am an Information Technology student and I am taking PHP this semester.
> I have downloaded and installed Apache and when I test it I get the message
> It works! But when I try to open a page with Apache I get
>
> HTTP 403 (Forbidden)
> Forbidden You don't have permission to access
> /PHP_Projects/Chapter.01/Chapter/DessertShop.html on this server.
>  I get this error in my log files:
> [Sun Sep 23 10:06:45 2007] [error] [client 127.0.0.1] client denied by
> server configuration: C:/Course
> Technology/1687-5/Chapter.01/Chapter/DessertShop.html
> [Sun Sep 23 10:10:09 2007] [error] [client 127.0.0.1] File does not exist:
> C:/Program Files/Apache Software Foundation/Apache2.2/htdocs/favicon.ico.
>
> Please someone help me
>
>  --
> Shape Yahoo! in your own image. Join our Network Research Panel 
> today!
>
>
>

Re: [EMAIL PROTECTED] Help for first time user

2007-09-23 Thread Judy Hulsey 
I am working from home with no network.

[EMAIL PROTECTED] wrote:  Hello Judy,

What is your environment ?

Edward.

Judy Hulsey wrote:   

I am an Information Technology student and I am taking PHP this semester. I 
have downloaded and installed Apache and when I test it I get the messageIt 
works!  But when I try to open a page with Apache I get 
   
  HTTP 403 (Forbidden)
  Forbidden  You don't have permission to access 
/PHP_Projects/Chapter.01/Chapter/DessertShop.html on this server.
   I get this error in my log files:
  [Sun Sep 23 10:06:45 2007] [error] [client 127.0.0.1] client denied by server 
configuration: C:/Course Technology/1687-5/Chapter.01/Chapter/DessertShop.html
[Sun Sep 23 10:10:09 2007] [error] [client 127.0.0.1] File does not exist: 
C:/Program Files/Apache Software Foundation/Apache2.2/htdocs/favicon.ico.
   
  Please someone help me

  
  
-
  Shape Yahoo! in your own image. Join our Network Research Panel today! 


   
-
Fussy? Opinionated? Impossible to please? Perfect.  Join Yahoo!'s user panel 
and lay it on us.

Re: [EMAIL PROTECTED] SSL server IP/port conflict

2007-09-23 Thread Matus UHLAR - fantomas 
On 21.09.07 16:33, Axel-Stéphane  SMORGRAV wrote: HTTPS and NameVirtualHost
> do not go well together. NVH is based on the Host header. However Apache
> cannot read the Host header before the SSL session has been established.
> But in order to establish the SSL session, Apache needs to know what
> virtual host it is for to determine what certificate to use. This is catch
> 20...
> 
> Add another IP to the server.

wildcard certificates can help in some situations, but many ppl don't
recommend them...
-- 
Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
"They say when you play that M$ CD backward you can hear satanic messages."
"That's nothing. If you play it forward it will install Windows."

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] FastCGI

2007-09-23 Thread Octavian Rasnita 

Hi,

I've downloaded mod_fastcgi-2.4.2-AP20.dll, I renamed it and put it in the 
modules directory.


Then I put in httpd.conf:

LoadModule fastcgi_module modules/mod_fastcgi.dll

But if I try to start the server, it doesn't start because it says that the 
module cannot be found. I also tried to use:


LoadFile "e:/apache/modules/mod_fastcgi.dll"

But it gives the same error (just on a different line):

httpd: Syntax error on line 72 of E:/apache/conf/httpd.conf: Cannot load 
e:/apache/modules/mod_fastcgi.dll into server: The specified module could 
not be found.


Do you have any idea what could be wrong?

I use Apache on NTFS and I didn't change any permissions. I've just 
downloaded that .dll file and I clicked on "Unblock" button in the file 
properties, because I've seen a message telling that this file is from 
another computer and it might be blocked...


Is there something else I need to do in order to be able to use that Apache 
module?


Thank you.

Octavian


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Help for first time user

2007-09-23 Thread Joshua Slive 
On 9/23/07, Judy Hulsey <[EMAIL PROTECTED]> wrote:

>  I get this error in my log files:
> [Sun Sep 23 10:06:45 2007] [error] [client 127.0.0.1] client denied by
> server configuration: C:/Course
> Technology/1687-5/Chapter.01/Chapter/DessertShop.html

This means you have Allow/Order/Deny directives in httpd.conf that
prevent access to the relevant directory/files. Some debugging help is
here:
http://wiki.apache.org/httpd/ClientDeniedByServerConfiguration

Joshua.

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Upgrade 2.0 to 2.2 on Gentoo - apache won't start...

2007-09-23 Thread Charles Marcus 

Hello,

I'm in a bit of a bind... the consultant I normally use is unavailable, 
and I did something dumb... I upgraded apache from 2.0.58 to 2.2.6 
without him being available, and now it won't start...


It was working fine before, so this is hopefully just a config issue, 
and I'd appreciate any help anyone can offer...


First, my box:

AMD Dual Opteron, Tyasn S2895 MB, 2GB RAM
Gentoo, kernel 2.6.17 (yes, I'm planning on updating it soon)

When I upgraded, it also updated PHP from 5.2.4_pre200708051230-r2 to 
5.2.4_p20070914-r2, and installed apache-tools...


I'm using SSL only, and vhosts. I did opt to use the new config files, 
so if someone could point me to a HowTo for setting up SSL and vhosts, 
maybe that would be enough... anyway...


When I try to start it via the init script, I'm getting this error:

* Starting apache2 ...
apache2: Could not reliably determine the server's fully qualified 
domain name, using m.y.i.p for ServerName
[Sun Sep 23 19:45:50 2007] [warn] NameVirtualHost m.y.i.p:443 has no 
VirtualHosts


I have my hostname correctly set in /etc/hosts - remember, it was 
working fine before...


netstat -tapn definitely shows it is NOT running...

I only want SSL (443) running, and want any requests to port 80 
redirected to 443. I do remember seeing something about SSL being 
started a bit differently...


Anyway, any pointers would be much appreciated!

Thanks,

--

Charles

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Upgrade 2.0 to 2.2 on Gentoo - apache won't start...

2007-09-23 Thread Nick Kew 
On Sun, 23 Sep 2007 19:59:55 -0400
Charles Marcus <[EMAIL PROTECTED]> wrote:

> Hello,
> 
> I'm in a bit of a bind... the consultant I normally use is
> unavailable, and I did something dumb... I upgraded apache from
> 2.0.58 to 2.2.6 without him being available, and now it won't start...

Upgrading to 2.0.60 should be trivial, but 2.0 -> 2.2 is likely
to require (minor) configuration changes.

If the error log + TFM doesn't help, reinstall 2.0 until your consultant
returns.  The upgrade might be ten minutes or an hours work for your
consultant, but anyone else has a much bigger job familiarising
themselves with your needs.

> [Sun Sep 23 19:45:50 2007] [warn] NameVirtualHost m.y.i.p:443 has no 
> VirtualHosts

You don't want NameVirtualHost with https.  But that's just a warning.

> I only want SSL (443) running, and want any requests to port 80 
> redirected to 443. I do remember seeing something about SSL being 
> started a bit differently...

Then just don't listen on port 80 at all.  Links to your site
should refer to https://your.domain/, not http://your.domain/.

-- 
Nick Kew

Application Development with Apache - the Apache Modules Book
http://www.apachetutor.org/

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Question about proxy_ajp, sessions and paths...

2007-09-23 Thread Haim Ashkenazi 
Hi

I'm trying to reverse proxy a tomcat server with proxy_ajp.


If The path of the URL is identical to the path in ajp, sessions are
kept without a problem:
ProxyPass /abc/ ajp://localhost:8009/abc/

But if I do it like this:
ProxyPass / ajp://localhost:8009/abc/
sessions are not kept in tomcat. every request is like a new one.

Is this a normal behavior? Is there a workaround for that?

Please help
--
Haim

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Re: Apache 2.2, rotatelogs.exe, and Windows

2007-09-23 Thread Sander Temme 


On Sep 15, 2007, at 8:30 AM, Mark A. Craig wrote:

Nothing?  No one has ever used rotatelogs.exe?  Well, surely all  
you pros out there are rotating your companies' logs somehow...  
what and how are you doing it, and is it something I can use?


Rotatelogs should once again be usable as of 2.2.7.  Before, the  
brokenness lay in the fact that it would leak stale rotatelogs.exe  
processes and cmd.exe shells upon server stop, start, restart or  
child process recycling (like crashes).  Your config file problem is  
likely just that: a config file problem.  Your config files should be  
ASCII, and there should be no need to edit them with anything more  
sophisticated than Notepad.


I have the following invocation of rotatelogs commented out in one of  
my configurations:


CustomLog "|d:/httpd-2.2.3-ssl/bin/rotatelogs.exe d:/cedserver/logs/ 
access-%Y-%m-%d.log 86400 -420" common


Note 1) forward slashes 2) no spaces in the paths (perhaps you can do  
that with careful quoting but I didn't have the patience" 3) 24 * 60  
* 60 == 86400 seconds in a day (not a week like another respondent  
seems to think) and -420 is 7 timezones west of GMT, your mileage may  
vary.


The above is commented out though because I haven't upgraded to 2.2.7  
yet.  At this point I have a Perl script that I need to hang in the  
Windows Scripting Host, that does the following:


1) Move the old log out of the way
2) Give httpd a soft restart by calling:

   my $command = "\"$httpd\" -d \"$ServerRoot\" -n $servicename -k  
restart";

   my $out = `$command`;

3) Zip up the old logfiles

Of course I have set $httpd, $ServerRoot and $servicename  
beforehand.  The script also performs log analysis, but that's  
outside the scope of this discussion.


This approach has the following advantages over other procedures  
suggested in this thread:


1) No service interruption: net stop Apache2.2 causes the server to
   become unavailable (obviously) becasuse the process is shut down.
   This also happens ungracefully, so anyone currently accessing your
   server is confronted with errors
2) No lost log entries: by moving the log files out of the way, Apache
   will keep writing to the open filehandles.  Only when it is  
restarted

   will it open its new log files, without interruption in logging.
   Zipping up the logfiles and overwriting them with empty files leaves
   a hiatus in which you may lose log entries.

Determining the name of the old logfiles, and the archived files, is  
left as an exercise for the reader.  Of course you can do this in any  
scripting language as long as you can call a command line program.


S.

--
Sander Temme
[EMAIL PROTECTED]
PGP FP: 51B4 8727 466A 0BC3 69F4  B7B8 B2BE BC40 1529 24AF





smime.p7s
Description: S/MIME cryptographic signature

Re: [EMAIL PROTECTED] Question about proxy_ajp, sessions and paths...

2007-09-23 Thread Sander Temme 


On Sep 23, 2007, at 5:13 AM, Haim Ashkenazi wrote:


ProxyPass / ajp://localhost:8009/abc/
sessions are not kept in tomcat. every request is like a new one.

Is this a normal behavior? Is there a workaround for that?


Yes, because Tomcat will set a JSESSIONID cookie for path /abc, and  
the browser will not send that back because it's going to path / 
foo.jsp and not /abc/foo.jsp.


You need to have mod_proxy munge the cookie path on the way out.  It  
has a directive for that, but I'm too tired to look that up right now.


S.

--
Sander Temme
[EMAIL PROTECTED]
PGP FP: 51B4 8727 466A 0BC3 69F4  B7B8 B2BE BC40 1529 24AF





smime.p7s
Description: S/MIME cryptographic signature

Re: [EMAIL PROTECTED] wrong apache version shown from $_SERVER['SERVER_SOFTWARE'] on Fedora 7

2007-09-23 Thread Zen Kato 
Hi,

I checked apache environment variables using cgi script.

env-test.pl

#!/usr/bin/perl

print "Content-type: text/html\n\n";
foreach $key(keys %ENV) {
print "$key --> $ENV{$key}";
}

http://localhost/cgi-bin/env-test.pl
-
GEOIP_COUNTRY_CODE --> --
SCRIPT_NAME --> /cgi-bin/env-test.pl
SERVER_NAME --> localhost
GEOIP_COUNTRY_NAME --> N/A
SERVER_ADMIN --> [EMAIL PROTECTED]
HTTP_ACCEPT_ENCODING --> gzip,deflate
HTTP_CONNECTION --> keep-alive
REQUEST_METHOD --> GET
HTTP_ACCEPT --> 
text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,*/*;q=0.5
SCRIPT_FILENAME --> /var/www/cgi-bin/env-test.pl
SERVER_SOFTWARE --> Apache/2.2.0 (Fedora)
HTTP_ACCEPT_CHARSET --> Shift_JIS,utf-8;q=0.7,*;q=0.7
QUERY_STRING -->
REMOTE_PORT --> 37747
HTTP_USER_AGENT --> Mozilla/5.0 (X11; U; Linux i686; ja; rv:1.8.1.5) 
Gecko/20070718 Fedora/2.0.0.5-1.fc7 Firefox/2.0.0.5
SERVER_PORT --> 80
SERVER_SIGNATURE -->
Apache/2.2.0 (Fedora) Server at localhost Port 80

HTTP_ACCEPT_LANGUAGE --> ja,en-us;q=0.7,en;q=0.3
REMOTE_ADDR --> 127.0.0.1
HTTP_KEEP_ALIVE --> 300
SERVER_PROTOCOL --> HTTP/1.1
PATH --> /sbin:/usr/sbin:/bin:/usr/bin
REQUEST_URI --> /cgi-bin/env-test.pl
GATEWAY_INTERFACE --> CGI/1.1
SERVER_ADDR --> 127.0.0.1
DOCUMENT_ROOT --> /var/www/html
HTTP_HOST --> localhost
UNIQUE_ID --> [EMAIL PROTECTED]


SERVER_SOFTWARE shows: Apache/2.2.0 (Fedora)

I'm  completely confusing now.
 
--
Zen

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Question on need to restart Apache after adding/modifying module

2007-09-23 Thread Pravin 
>
> apache just doed not have functionality of runtime re-configuration without
> restarting. Some of the functionality can be done through mod_perl, and
> surely most of the functionality can be done with addon module.
>
> However adding or removing of module usually causes reconfiguration of
> config file (directives the module implements arte being added/removed), so
> it mostly requires rebuilding of configuration in memory.
>
> This is called restart, although you can use graceful restart for more
> smooth reconfiguration (not killing child processes)
>
Well, I was more concerned with avoiding loss of temporary  data (eg.
may be sessions created)
If one can add new modules without restarting apache,
then may be he can maintain all data and can continue working as if it
was never restarted ( atleast from user perspective, eg. if user has
logged in on one of the site on server, then he may not need to
re-login after server restart )

> > I am not very clear about this trade off involved between speed/memory
> > and flexibility.
> > First I would like to be clear on whether its possible or not to have
> > kernel like modules
> > in userspace.
>
> In fact, apache modules are the same thing as kernel modules. Note the
> above.
>
> --
> Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/
> Warning: I wish NOT to receive e-mail advertising to this address.
> Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
> Boost your system's speed by 500% - DEL C:\WINDOWS\*.*
>
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>"   from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>


-- 
Regards,
Pravin Shinde

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]