Re: [us...@httpd] Re: apache httpd server 2.3.5 alpha configure fail,help
problem solved by run the command below: yum install expat-devel Best regards, Sharl.Jimh.Tsin - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] apache httpd server 2.3.5 alpha CAN NOT load the module libphp5.so,WHY?
hi,everyone. when I run the command "apachectl start",it will give a error message: httpd: Syntax error on line 64 of /usr/local/apache2/conf/httpd.conf: Cannot load /usr/local/apache2/modules/libphp5.so into server: /usr/local/apache2/modules/libphp5.so: undefined symbol: unixd_config Line 64 in httpd.conf is "LoadModule php5_module modules/libphp5.so". Is it a bug of 2.3.5 alpha? here is my php configure: $ ./configure --prefix=/usr/local/php --with-apxs2=/usr/local/sbin/apxs --enable-mod-charset --enable-fastcgi --with-config-file-path=/etc --enable-safe-mode --with-openssl --with-kerberos --with-zlib --with-bz2 --enable-calendar --with-curl --enable-exif --enable-ftp --with-gd --with-ttf --enable-mbstring --with-mcrypt --with-mhash --with-mysql=/usr/local/mysql --enable-embedded-mysqli --enable-sockets --enable-zip my apache httpd configure: $ ./configure --prefix=/usr/local/apache2 --bindir=/usr/local/bin --sbindir=/usr/local/sbin --enable-v4-mapped --enable-maintainer-mode --enable-file-cache --enable-cache --enable-disk-cache --enable-so --enable-echo --enable-charset-lite --enable-mime-magic --enable-expires --enable-headers --enable-usertrack --enable-session --enable-session-cookie -enable-ssl --enable-http --enable-dav --enable-info --enable-dav-fs --enable-vhost-alias --enable-imagemap --enable-rewrite --with-included-apr Waiting for your help,my dear friends Best regards, Sharl.Jimh.Tsin - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] getting x509 certificate user name
Hi to all, in ssl.conf file, i activated client verification as below.. SSLVerifyClient require Now what i want is that the user name in the certificate.. How can i get to this user name, in client certificate? Thanks in advance.. Dikkat: Bu elektronik posta mesaji kisisel ve ozeldir. Eger size gonderilmediyse lutfen gondericiyi bilgilendirip mesaji siliniz.Firmamiza gelen ve giden mesajlar virus taramasindan gecirilmektedir.Mesajdaki gorusler gondericiye ait olup HAVELSAN A.S. resmi gorusu olmak zorunda degildir. Attention: This e-mail message is private and privileged.If you are not the recipient for whom this e-mail message is intended, please notify the sender immediately and delete this e-mail message from your system.All sent and received e-mail messages go through a virus scan in our company. Any opinions presented in this e-mail message are solely those of the author and do not necessarily represent HAVELSAN A.S.`s formal and authorized views. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] Re: large amount of R in server-status
> Hi, > > I use since long time the apache in version 2.0 on windows 2000 (SP4). > Since 4 weeks I can see (some times per day) many R in server-status. > Sometimes so much that the server run full and stop working because all > threads are used. I search in web and generally the response is that it have > to do with dos but I'm not sure (or can't believe that) > > When I watch over some time the serverstatus I can see sometimes requests > staying in R status until the configparameter timeout=300 (default) kick the > request out. Sometimes this R staying requests use more then 50% from my > reads and then after timeout all works like expexcted. Sometimes the > complete webserver is blocked. > > Current I have 450 threads on apache and in background 2 clustered tomcats > with a 200 threads. > > Can anybody explain me how it is possible that some (?) can send a rq to a > webserver and don't finish the rq that the server wait for it? How can I > solve such situations? > > Further: how can I identify and/or analyze a problem like this. I have now a > situation where I have log the network trafik with wireshark. > > This problem start (about) at a time when we switch to a new provider. > > I have now version 2.0.57 but I have the problem also in the latest version > from the 2.0 tree. > > If someone has some hint and or experience how to identify the problem --> > thanks for any comment / hint > > regards Dietmar Hi, I found the problem :-) http://ha.ckers.org/slowloris /* for the archive */ to isolate the problem I write a small script which store every sec netstat -na and the after analyze it and search some hours in web I found the problem. Might after migration to an other os follow mod is a solution: http://mod-qos.sourceforge.net/ hope this help other people! If someone have any input about this pls let me know regards Dietmar
Re: [us...@httpd] Re: large amount of R in server-status
Dietmar Müller schrieb: Hi, I use since long time the apache in version 2.0 on windows 2000 (SP4). Since 4 weeks I can see (some times per day) many R in server-status. Sometimes so much that the server run full and stop working because all threads are used. I search in web and generally the response is that it have to do with dos but I'm not sure (or can't believe that) When I watch over some time the serverstatus I can see sometimes requests staying in R status until the configparameter timeout=300 (default) kick the request out. Sometimes this R staying requests use more then 50% from my reads and then after timeout all works like expexcted. Sometimes the complete webserver is blocked. Current I have 450 threads on apache and in background 2 clustered tomcats with a 200 threads. Can anybody explain me how it is possible that some (?) can send a rq to a webserver and don't finish the rq that the server wait for it? How can I solve such situations? Further: how can I identify and/or analyze a problem like this. I have now a situation where I have log the network trafik with wireshark. This problem start (about) at a time when we switch to a new provider. I have now version 2.0.57 but I have the problem also in the latest version from the 2.0 tree. If someone has some hint and or experience how to identify the problem --> thanks for any comment / hint regards Dietmar Hi, I found the problem :-) http://ha.ckers.org/slowloris /* for the archive */ to isolate the problem I write a small script which store every sec netstat -na and the after analyze it and search some hours in web I found the problem. Might after migration to an other os follow mod is a solution: http://mod-qos.sourceforge.net/ hope this help other people! If someone have any input about this pls let me know regards Dietmar And what is the root of your problem ? regards Hendrik - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] Re: large amount of R in server-status
2010/3/12 Hendrik Schmieder > Dietmar Müller schrieb: > > Hi, >>> >>> I use since long time the apache in version 2.0 on windows 2000 (SP4). >>> Since 4 weeks I can see (some times per day) many R in server-status. >>> Sometimes so much that the server run full and stop working because all >>> >> >> threads are used. I search in web and generally the response is that it >>> have >>> to do with dos but I'm not sure (or can't believe that) >>> >>> When I watch over some time the serverstatus I can see sometimes >>> requests >>> >> >> staying in R status until the configparameter timeout=300 (default) kick >>> the >>> request out. Sometimes this R staying requests use more then 50% from my >>> reads and then after timeout all works like expexcted. Sometimes the >>> >> >> complete webserver is blocked. >>> >>> Current I have 450 threads on apache and in background 2 clustered >>> tomcats >>> with a 200 threads. >>> >>> Can anybody explain me how it is possible that some (?) can send a rq to >>> a >>> >> >> webserver and don't finish the rq that the server wait for it? How can I >>> solve such situations? >>> >>> Further: how can I identify and/or analyze a problem like this. I have >>> now a >>> situation where I have log the network trafik with wireshark. >>> >> >> >>> This problem start (about) at a time when we switch to a new provider. >>> >>> I have now version 2.0.57 but I have the problem also in the latest >>> version >>> from the 2.0 tree. >>> >>> If someone has some hint and or experience how to identify the problem >>> --> >>> >> >> thanks for any comment / hint >>> >>> regards Dietmar >>> >> >> Hi, >> I found the problem :-) >> >> http://ha.ckers.org/slowloris >> >> /* for the archive */ >> to isolate the problem I write a small script which store every sec >> netstat -na >> >> and the after analyze it and search some hours in web I found the problem. >> >> Might after migration to an other os follow mod is a solution: >> http://mod-qos.sourceforge.net/ >> >> >> hope this help other people! >> >> If someone have any input about this pls let me know >> >> regards Dietmar >> >> > And what is the root of your problem ? > > regards > > Hendrik > > The root problem is, that the apache webserver is susceptible for a small perl script what send incomplete / slow http requests and this cause that all threads from the httpd are in reading state. Dietmar
Re: [us...@httpd] apache httpd server 2.3.5 alpha CAN NOT load the module libphp5.so,WHY?
On Fri, Mar 12, 2010 at 4:11 AM, 夏蒸鑫 wrote: > hi,everyone. > > when I run the command "apachectl start",it will give a error message: > > httpd: Syntax error on line 64 of /usr/local/apache2/conf/httpd.conf: > Cannot load /usr/local/apache2/modules/libphp5.so into server: > /usr/local/apache2/modules/libphp5.so: undefined symbol: unixd_config your php isn't aware of changes in httpd 2.3.x, namely that "unixd_config" is renamed and moved into a module. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] How to Insert client cert attributes?
Hi, I need to generate client certs and include some information on them. How to do it? I inserted the following line in the [ req_attributes ] section of my /etc/ssl/openssl.cnf, just after the unstructuredName tag cpfNumber = CPF Number But when I generate the client request: openssl req -new -key privatekey_cl.pem -out subscription_cl.pem The field cpfNumber doesn´t show up. Any ideas? Thanks, André - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] getting x509 certificate user name
On Fri, Mar 12, 2010 at 4:23 AM, Nedim Ozan Tekin wrote: > Hi to all, > in ssl.conf file, i activated client verification as below.. > > SSLVerifyClient require > > > Now what i want is that the user name in the certificate.. > How can i get to this user name, in client certificate? > SSLoptions +ExportCertData Some example environment variables are listed inside the ssloptions doc: http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#ssloptions -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] Multiple Apache 2.2.8 installation on same redhat server, Error httpd (pid 3996) already running
On Fri, Mar 12, 2010 at 1:58 AM, Pramod Kumar wrote: > I think i need to change the installation dir details in the configure > script for the second configuration and pid file reference. No, it can simply be changed at runtime with the directive already mentioned here. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] mod_php script 'queue'
Hello, While performing some tests, I saw that: -When I run a PHP script with a infinite loop, the apache process(using mod_prefork) still busy (php.ini timeouts disabled) 'forever' (the obvious fact). -When I run again the same script with the same URL, apache seems to 'enqueue' the second request, because no other process seems to be running. -But if I send a SIGTERM to the apache process, it seems to begin processing the second script, and stop the first. -If I run the script using a different URL(just by changing the query string), it seems to run both process parallely. It's just the first step. I've done the same tests, but using mod_rewrite. It's different: even with different URL, the process get 'queued'. I just ask: is this the expected behaviour?? It's causing a little throuble for me. When a PHP script generates a bigger report(taking about ten minutes or more), the user seems to be impatient. They're doing refreshs on the page. So, for each refresh apache is queuing a new script, and just begin running this when the queue is empty again. What do you suggest me? Thank you, Bruno Moreira Guedes
Re: [us...@httpd] How to block IP addresses to the whole server?
On Thu, Mar 11, 2010 at 17:07, Philip Wigg wrote: > On 11 March 2010 14:42, Je suis la poubelle wrote: >> By going down all those conf files and reading from the web, I >> understand that I could write >> >> deny from a.b.c.d >> >> inside every section I could find in order to block >> access to IP address a.b.c.d >> >> However, there are quite a lot of sections in >> several conf files. Is there a way to block them all in *one single >> place/line*, ie to the whole server but not to every individual >> directory? > > Directives enclosed inside a block apply to that directory > and subdirectories too, so you don't need to change every single > section. See:- > > http://httpd.apache.org/docs/2.2/mod/core.html#directory That's the problem because I have virtual directories (aliases), and the "directory" it's talking about is, if I understand it correctly, directory in the disk, not directory in the URL. Am I correct? > Try it out and you have problems, clearly describe what you're trying > to do, what's not working, what your logs say and what configuration > you currently have. I have added an IP address (my home IP address and I'm testing at work) but it's not blocked. I've rebooted the whole computer but still not blocked. Really strange. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] How to block IP addresses to the whole server?
Yes, I had created hosts.deny as well (but I forgot to mention it) but it had no effect. On Thu, Mar 11, 2010 at 22:28, Igor Cicimov wrote: > You need to put the ip in the hosts.deny file > > On Mar 12, 2010 3:11 AM, "John Doe" wrote: > > From: Je suis la poubelle > >> Yeah, I want o blacklist some IP addresses. I don't have > iptables >> installed, and I don't w... > > Try this: > http://www.mkhelif.fr/2008/06/23/apache2-systeme-de-blacklist.html > > JD > > - The > official User-To... - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] How to block IP addresses to the whole server?
> That's the problem because I have virtual directories (aliases), > and the "directory" it's talking about is, if I understand it > correctly, directory in the disk, not directory in the URL. Am I > correct? You can use which is merged in afterwards as well. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] mod_php script 'queue'
On Fri, Mar 12, 2010 at 6:49 PM, Bruno - e-comBR wrote: > Hello, > > While performing some tests, I saw that: > > -When I run a PHP script with a infinite loop, the apache process(using > mod_prefork) still busy (php.ini timeouts disabled) 'forever' (the obvious > fact). > -When I run again the same script with the same URL, apache seems to > 'enqueue' the second request, because no other process seems to be running. > -But if I send a SIGTERM to the apache process, it seems to begin processing > the second script, and stop the first. > -If I run the script using a different URL(just by changing the query > string), it seems to run both process parallely. > > It's just the first step. I've done the same tests, but using mod_rewrite. > It's different: even with different URL, the process get 'queued'. > > I just ask: is this the expected behaviour?? > > It's causing a little throuble for me. When a PHP script generates a bigger > report(taking about ten minutes or more), the user seems to be impatient. > They're doing refreshs on the page. So, for each refresh apache is queuing a > new script, and just begin running this when the queue is empty again. > > What do you suggest me? > > Thank you, > Bruno Moreira Guedes > I don't use mod_php, so don't know about its behavior. But I recommend you inform the users that the report can take upto ten minutes to generate and to be patient. That's the only solution I see. -- Nilesh Govindarajan Site & Server Administrator www.itech7.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] mod_autoindex is hogging my CPU
Hi,
my http server has a directory with 250+ subdirectories. There is no
index.html, so mod_autoindex does the job. A reload takes about 40
seconds on a Xeon E3110 with 3 GHz, meanwhile one core is hit with 100%
load by a process named httpd2-prefork.
That is way. too. slow. :-)
The system runs openSUSE 11.0, the RPM is apache2-2.2.8-28.8.
The relevant parts of the configuration are:
=
IndexOptions +FoldersFirst
Options None
AuthDBMType DB
AuthDBMUserFile /www/auth/userbase_dbm
AuthzDBMType DB
AuthDBMGroupFile /www/auth/userbase_dbm
Require valid-user
DocumentRoot /www/htdocs
Options +FollowSymLinks
Options +Indexes
Require group myadmin
# FIXME: shall prevent users to put an index.html
# into a subdirectory which will be displayed by
# members of group myadmin.
# Need to find a better way to do this.
DirectoryIndex ..
=
I attached an strace of all the things httpd2-prefork does for each
subdirectory.
I looks like a lot of the load comes from reading userbase_dbm over and
over (8 times for each subdirectory). If that's correct: is there a way
to get httpd to cache the contents of AuthDBMUserFile/AuthDBMGroupFile?
Regards,
Robert
lstat64("/www/htdocs/transfer/levelA/levelB/user1234",
{st_mode=S_IFDIR|S_ISGID|0570, st_size=4096, ...}) = 0
lstat64("/www", {st_mode=S_IFDIR|0755, st_size=4096, ...}) = 0
lstat64("/www/htdocs", {st_mode=S_IFDIR|S_ISGID|0555, st_size=4096, ...}) = 0
stat64("/www/auth/userbase_dbm", {st_mode=S_IFREG|0640, st_size=49152, ...}) = 0
open("/www/auth/userbase_dbm", O_RDONLY|O_LARGEFILE) = 19
fcntl64(19, F_SETFD, FD_CLOEXEC)= 0
read(19,
"\0\0\0\0\1\0\0\0\0\0\0\0a\25\6\0\10\0\0\0\0\20\0\0\0\10\0\0\0\0\0\0"..., 512)
= 512
close(19) = 0
open("DB_CONFIG", O_RDONLY|O_LARGEFILE) = -1 ENOENT (No such file or directory)
stat64("/var/tmp", 0xbfb28adc) = -1 ENOENT (No such file or directory)
stat64("/usr/tmp", 0xbfb28adc) = -1 ENOENT (No such file or directory)
stat64("/temp", 0xbfb28adc) = -1 ENOENT (No such file or directory)
stat64("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=4096, ...}) = 0
time(NULL) = 1268410964
gettimeofday({1268410964, 209944}, NULL) = 0
open("/proc/stat", O_RDONLY)= 19
fstat64(19, {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0xb7011000
read(19, "cpu 169949 4550 15441 34352376 "..., 1024) = 967
read(19, "", 1024) = 0
close(19) = 0
munmap(0xb7011000, 4096)= 0
open("/www/auth/userbase_dbm", O_RDONLY|O_LARGEFILE) = 19
fcntl64(19, F_SETFD, FD_CLOEXEC)= 0
fstat64(19, {st_mode=S_IFREG|0640, st_size=49152, ...}) = 0
pread64(19,
"\0\0\0\0\1\0\0\0\0\0\0\0a\25\6\0\10\0\0\0\0\20\0\0\0\10\0\0\0\0\0\0"..., 4096,
0) = 4096
pread64(19,
"\0\0\0\0\1\0\0\0\2\0\0\0\0\0\0\0\7\0\0\0^\0\350\0\0\2\367\17\354\17\343\17"...,
4096, 8192) = 4096
close(19) = 0
stat64("/www/auth/userbase_dbm", {st_mode=S_IFREG|0640, st_size=49152, ...}) = 0
open("/www/auth/userbase_dbm", O_RDONLY|O_LARGEFILE) = 19
fcntl64(19, F_SETFD, FD_CLOEXEC)= 0
read(19,
"\0\0\0\0\1\0\0\0\0\0\0\0a\25\6\0\10\0\0\0\0\20\0\0\0\10\0\0\0\0\0\0"..., 512)
= 512
close(19) = 0
open("DB_CONFIG", O_RDONLY|O_LARGEFILE) = -1 ENOENT (No such file or directory)
stat64("/var/tmp", 0xbfb28b2c) = -1 ENOENT (No such file or directory)
stat64("/usr/tmp", 0xbfb28b2c) = -1 ENOENT (No such file or directory)
stat64("/temp", 0xbfb28b2c) = -1 ENOENT (No such file or directory)
stat64("/tmp", {st_mode=S_IFDIR|S_ISVTX|0777, st_size=4096, ...}) = 0
time(NULL) = 1268410964
gettimeofday({1268410964, 282090}, NULL) = 0
open("/proc/stat", O_RDONLY)= 19
fstat64(19, {st_mode=S_IFREG|0444, st_size=0, ...}) = 0
mmap2(NULL, 4096, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) =
0xb7011000
read(19, "cpu 169956 4550 15441 34352384 "..., 1024) = 967
read(19, "", 1024) = 0
close(19) = 0
munmap(0xb7011000, 4096)= 0
open("/www/auth/userbase_dbm", O_RDONLY|O_LARGEFILE) = 19
fcntl64(19, F_SETFD, FD_CLOEXEC)= 0
fstat64(19, {st_mode=S_IFREG|0640, st_size=49152, ...}) = 0
pread64(19,
"\0\0\0\0\1\0\0\0\0\0\0\0a\25\6\0\10\0\0\0\0\20\0\0\0\10\0\0\0\0\0\0"..., 4096,
0) = 4096
pread64(19,
"\0\0\0\0\1\0\0\0\2\0\0\0\0\0\0\0\7\0\0\0^\0\350\0\0\2\367\17\354\17\343\17"...,
4096, 8192) = 4096
pread64(19,
"\0\0\0\0\1\0\0\0\7\0\0\0\2\0\0\0\0\0\0\0N\0\"\3\0\2\367\17\252\17\241\17"...,
4096, 28672) = 4096
close(19)
RE: [us...@httpd] Number of https virtual hosts support under v2.0.59
Hi, Krist I tested with Apache 2.2.15 reverse proxy with two certs on the Apache, one is real cert and the other is self-signed. The configuration is virtualhosts for ssl. The results that I got are: On PC client: Firefox v3.5.8 showed correct certs, one real and the other is not. IE 8 showed incorrect when I viewed the certs. The self-signed cert site used the real cert. On MAC client: Both Safari 4.0.4 and Firefox 3.5.2 showed correctly, one real and one self-signed cert. My question is eventually both sites will have real certs when I am done testing. Will IE 6 and above uses the correct certs or only uses one cert, may be the first virtual host listed in ssl configuration file of Apache? Thanks. Ryan -Original Message- From: Krist van Besien [mailto:krist.vanbes...@gmail.com] Sent: Wednesday, March 03, 2010 5:36 AM To: users@httpd.apache.org Subject: Re: [us...@httpd] Number of https virtual hosts support under v2.0.59 On Mon, Mar 1, 2010 at 4:30 PM, Ruiyuan Jiang wrote: > Thanks for the response, Krist. > The version of openssl that I am using is good 0.98l. The problem is the > Apache since I can't use 2.2.14 because the bug it has. See my another post > about the page does not refresh automatically after user logs in. I guess I > have to try to use work around. > By the way, you stated "only works with recent browsers though." What > browsers and versions work with that, Firefox or IE or both? (from wikipedia) Browsers Browsers with support for TLS server name indication: * Mozilla Firefox 2.0 or later * Opera 8.0 or later (the TLS 1.1 protocol must be enabled) * Internet Explorer 7 (Vista or higher, not XP) or later * Google Chrome (Vista or higher, not XP) * Safari Safari 3.2.1 and newer on Mac OS X 10.5.6 and Windows Vista or higher, not XP Krist -- krist.vanbes...@gmail.com kr...@vanbesien.org Bremgarten b. Bern, Switzerland -- A: It reverses the normal flow of conversation. Q: What's wrong with top-posting? A: Top-posting. Q: What's the biggest scourge on plain text email discussions? - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org This message (including any attachments) is intended solely for the specific individual(s) or entity(ies) named above, and may contain legally privileged and confidential information. If you are not the intended recipient, please notify the sender immediately by replying to this message and then delete it. Any disclosure, copying, or distribution of this message, or the taking of any action based on it, by other than the intended recipient, is strictly prohibited. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] Number of https virtual hosts support under v2.0.59
On 12 March 2010 16:43, Ruiyuan Jiang wrote: > Hi, Krist > > I tested with Apache 2.2.15 reverse proxy with two certs on the Apache, one > is real cert and the other is self-signed. The configuration is virtualhosts > for ssl. > The results that I got are: > > On PC client: > > Firefox v3.5.8 showed correct certs, one real and the other is not. > IE 8 showed incorrect when I viewed the certs. The self-signed cert site used > the real cert. > > On MAC client: > > Both Safari 4.0.4 and Firefox 3.5.2 showed correctly, one real and one > self-signed cert. > > My question is eventually both sites will have real certs when I am done > testing. Will IE 6 and above uses the correct certs or only uses one cert, > may be the first virtual host listed in ssl configuration file of Apache? Presuming you've configured SNI correctly, what operating system are you using? Note that SNI only works with IE 7 and 8 only work when running on Vista or higher, not with Windows XP. IE6 doesn't support SNI at all and never will to my knowledge. Are you putting this on a live site to be accessed by unknown users on the internet? If so, basically, don't. Most users on the internet will not be running an SNI-capable browser. -- Phil. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] mod_autoindex is hogging my CPU
On Fri, Mar 12, 2010 at 10:07 PM, Robert Dahlem wrote: > Hi, > > my http server has a directory with 250+ subdirectories. There is no > index.html, so mod_autoindex does the job. A reload takes about 40 > seconds on a Xeon E3110 with 3 GHz, meanwhile one core is hit with 100% > load by a process named httpd2-prefork. > > That is way. too. slow. :-) > > The system runs openSUSE 11.0, the RPM is apache2-2.2.8-28.8. > > The relevant parts of the configuration are: > > = > IndexOptions +FoldersFirst > Options None > > AuthDBMType DB > AuthDBMUserFile /www/auth/userbase_dbm > AuthzDBMType DB > AuthDBMGroupFile /www/auth/userbase_dbm > Require valid-user > > > DocumentRoot /www/htdocs > > Options +FollowSymLinks > > > > Options +Indexes > Require group myadmin > > # FIXME: shall prevent users to put an index.html > # into a subdirectory which will be displayed by > # members of group myadmin. > # Need to find a better way to do this. > DirectoryIndex .. > > = > > I attached an strace of all the things httpd2-prefork does for each > subdirectory. > > I looks like a lot of the load comes from reading userbase_dbm over and > over (8 times for each subdirectory). If that's correct: is there a way > to get httpd to cache the contents of AuthDBMUserFile/AuthDBMGroupFile? > > Regards, > Robert > > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > " from the digest: users-digest-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > If a file is accessed frequently, the kernel automatically caches it. But this doesn't seem to work in your case (maybe SuSe has disabled it ?). Another option is that, you run a script which will generate an index.html periodically as per the change frequency. -- Nilesh Govindarajan Site & Server Administrator www.itech7.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] mod_php script 'queue'
On 12-Mar-10 11:31, Nilesh Govindarajan wrote: On Fri, Mar 12, 2010 at 6:49 PM, Bruno - e-comBR wrote: It's causing a little throuble for me. When a PHP script generates a bigger report(taking about ten minutes or more), the user seems to be impatient. They're doing refreshs on the page. So, for each refresh apache is queuing a new script, and just begin running this when the queue is empty again. What do you suggest me? Thank you, Bruno Moreira Guedes I don't use mod_php, so don't know about its behavior. But I recommend you inform the users that the report can take upto ten minutes to generate and to be patient. That's the only solution I see. Else, if you can make the PHP script 'smart' in some way so that a popup or other visual indicator will give constant, visual feedback on the progress of the request. With a "Cancel" button that functions to kill the original request while blocking page refreshes. They can start over from scratch if they like. Reese - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] mod_php script 'queue'
On Fri, Mar 12, 2010 at 11:06 PM, Reese wrote: > On 12-Mar-10 11:31, Nilesh Govindarajan wrote: >> >> On Fri, Mar 12, 2010 at 6:49 PM, Bruno - e-comBR >> wrote: > >>> It's causing a little throuble for me. When a PHP script generates a >>> bigger >>> report(taking about ten minutes or more), the user seems to be impatient. >>> They're doing refreshs on the page. So, for each refresh apache is >>> queuing a >>> new script, and just begin running this when the queue is empty again. >>> >>> What do you suggest me? >>> >>> Thank you, >>> Bruno Moreira Guedes >>> >> >> I don't use mod_php, so don't know about its behavior. But I recommend >> you inform the users that the report can take upto ten minutes to >> generate and to be patient. That's the only solution I see. > > Else, if you can make the PHP script 'smart' in some way so that a > popup or other visual indicator will give constant, visual feedback > on the progress of the request. With a "Cancel" button that functions > to kill the original request while blocking page refreshes. They can > start over from scratch if they like. > > Reese > > > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > " from the digest: users-digest-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > > I think that's possible with AJAX-JSON combination. But the cronjob solution will be best if he doesn't know PHP (an administrator's job is not to tweak the web-interface!) -- Nilesh Govindarajan Site & Server Administrator www.itech7.com - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] connections monitor
I am wondering if there is a way some of you are aware of to monitor concurrent connections to the Apache server, that does not include counting all the IP's in the access log at one point in time? Thanks, Brent
Re: [us...@httpd] connections monitor
On 12-Mar-10 13:01, Brent Davidson wrote: I am wondering if there is a way some of you are aware of to monitor concurrent connections to the Apache server, that does not include counting all the IP's in the access log at one point in time? Do you have shell access? Investigate the ps command, then investigate piping the top command through grep to isolate the processes you are interested in. Reese - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
RE: [us...@httpd] connections monitor
> -Message d'origine- > De : Reese [mailto:howel...@inkworkswell.com] > Envoyé : vendredi 12 mars 2010 19:17 > À : users@httpd.apache.org > Objet : Re: [us...@httpd] connections monitor > > On 12-Mar-10 13:01, Brent Davidson wrote: > > I am wondering if there is a way some of you are aware of to monitor > concurrent connections to the Apache server, that does not include > counting all the IP's in the access log at one point in time? > > Do you have shell access? Investigate the ps command, then investigate > piping the top command through grep to isolate the processes you are > interested in. > > Reese > Hi, Why not have a look at mod_status : http://httpd.apache.org/docs/2.2/mod/mod_status.html and use it with some rrdtool based tool like collectd for ex. : http://collectd.org/wiki/index.php/Plugin:Apache Regards Emmanuel - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
RE: [us...@httpd] Number of https virtual hosts support under v2.0.59
Hi, Philip I don't know how to configure SNI on Apache since I don't see anything from mod_ssl's document that Krist replied to me before. I assume it automatically works. I just configured ssl virtualhost the same way as http virtualhost plus ssl's unique requirements. I use Windows XP. I tested IE 8 with Vista on a MacBook and it works since that is what I have at the moment. I was planning to have live sites on the internet by unknown users. Now I guess I need to have second thought. I tested on v2.0.59. It needs a lot of IPs for certs that I'd like to migrate to. Ryan -Original Message- From: Philip Wigg [mailto:p...@philipwigg.co.uk] Sent: Friday, March 12, 2010 11:58 AM To: users@httpd.apache.org Subject: Re: [us...@httpd] Number of https virtual hosts support under v2.0.59 On 12 March 2010 16:43, Ruiyuan Jiang wrote: > Hi, Krist > > I tested with Apache 2.2.15 reverse proxy with two certs on the Apache, one > is real cert and the other is self-signed. The configuration is virtualhosts > for ssl. > The results that I got are: > > On PC client: > > Firefox v3.5.8 showed correct certs, one real and the other is not. > IE 8 showed incorrect when I viewed the certs. The self-signed cert site used > the real cert. > > On MAC client: > > Both Safari 4.0.4 and Firefox 3.5.2 showed correctly, one real and one > self-signed cert. > > My question is eventually both sites will have real certs when I am done > testing. Will IE 6 and above uses the correct certs or only uses one cert, > may be the first virtual host listed in ssl configuration file of Apache? Presuming you've configured SNI correctly, what operating system are you using? Note that SNI only works with IE 7 and 8 only work when running on Vista or higher, not with Windows XP. IE6 doesn't support SNI at all and never will to my knowledge. Are you putting this on a live site to be accessed by unknown users on the internet? If so, basically, don't. Most users on the internet will not be running an SNI-capable browser. -- Phil. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org This message (including any attachments) is intended solely for the specific individual(s) or entity(ies) named above, and may contain legally privileged and confidential information. If you are not the intended recipient, please notify the sender immediately by replying to this message and then delete it. Any disclosure, copying, or distribution of this message, or the taking of any action based on it, by other than the intended recipient, is strictly prohibited. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] How to disable built-in modules at runtime?
Hi, Is there a way to disable built-in modules at runtime? I don't want to re-compile Apache because I'm using a packaged version. My problem is that the package have digest auth enabled and Apache takes 1 minute to start.(Generating secret for digest authentication ...). Regards, Diego -- Diego Woitasen XTECH - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
RE: [us...@httpd] Number of https virtual hosts support under v2.0.59
> -Message d'origine- > De : Ruiyuan Jiang [mailto:ruiyuan_ji...@liz.com] > Envoyé : vendredi 12 mars 2010 19:40 > À : users@httpd.apache.org > Objet : RE: [us...@httpd] Number of https virtual hosts support under > v2.0.59 > > Hi, Philip > > I don't know how to configure SNI on Apache since I don't see anything > from mod_ssl's document that Krist replied to me before. I assume it > automatically works. I just configured ssl virtualhost the same way as > http virtualhost plus ssl's unique requirements. > I use Windows XP. I tested IE 8 with Vista on a MacBook and it works since > that is what I have at the moment. > I was planning to have live sites on the internet by unknown users. Now I > guess I need to have second thought. > I tested on v2.0.59. It needs a lot of IPs for certs that I'd like to > migrate to. > > Ryan > > > > -Original Message- > From: Philip Wigg [mailto:p...@philipwigg.co.uk] > Sent: Friday, March 12, 2010 11:58 AM > To: users@httpd.apache.org > Subject: Re: [us...@httpd] Number of https virtual hosts support under > v2.0.59 > > On 12 March 2010 16:43, Ruiyuan Jiang wrote: > > Hi, Krist > > > > I tested with Apache 2.2.15 reverse proxy with two certs on the Apache, > one is real cert and the other is self-signed. The configuration is > virtualhosts for ssl. > > The results that I got are: > > > > On PC client: > > > > Firefox v3.5.8 showed correct certs, one real and the other is not. > > IE 8 showed incorrect when I viewed the certs. The self-signed cert site > used the real cert. > > > > On MAC client: > > > > Both Safari 4.0.4 and Firefox 3.5.2 showed correctly, one real and one > self-signed cert. > > > > My question is eventually both sites will have real certs when I am done > testing. Will IE 6 and above uses the correct certs or only uses one cert, > may be the first virtual host listed in ssl configuration file of Apache? > > Presuming you've configured SNI correctly, what operating system are > you using? Note that SNI only works with IE 7 and 8 only work when > running on Vista or higher, not with Windows XP. IE6 doesn't support > SNI at all and never will to my knowledge. > > Are you putting this on a live site to be accessed by unknown users on > the internet? If so, basically, don't. Most users on the internet will > not be running an SNI-capable browser. > > -- Phil. > Hi, You have a short desc here : http://wiki.apache.org/httpd/NameBasedSSLVHostsWithSNI and indeed, it should "just work". You also have interesting test sites here : https://sni.velox.ch/ Regards Emmanuel - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] mod_php script 'queue'
On Fri, Mar 12, 2010 at 9:36 AM, Reese wrote: > On 12-Mar-10 11:31, Nilesh Govindarajan wrote: > >> On Fri, Mar 12, 2010 at 6:49 PM, Bruno - e-comBR >> wrote: >> > > It's causing a little throuble for me. When a PHP script generates a >>> bigger >>> report(taking about ten minutes or more), the user seems to be impatient. >>> They're doing refreshs on the page. So, for each refresh apache is >>> queuing a >>> new script, and just begin running this when the queue is empty again. >>> >>> What do you suggest me? >>> >>> Thank you, >>> Bruno Moreira Guedes >>> >>> >> I don't use mod_php, so don't know about its behavior. But I recommend >> you inform the users that the report can take upto ten minutes to >> generate and to be patient. That's the only solution I see. >> > > Else, if you can make the PHP script 'smart' in some way so that a > popup or other visual indicator will give constant, visual feedback > on the progress of the request. With a "Cancel" button that functions > to kill the original request while blocking page refreshes. They can > start over from scratch if they like. > > Reese > > > > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > " from the digest: users-digest-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > > Is there any way to cache the report? Maybe for that specific page (or the reports pages in general) you should institute a process whereby the webpage doesn't run the report itself but acts an an interface to a CLI task that generates the report. When you hit the webpage, it attempts to obtain a "report lock", at which point the report begins to run, once the report is generated the lock can be released, and the web page can retrieve and report the results. The lock can be implemented any number of ways, I've done it in the past by simply touching and then deleting a file in the /tmp folder. To eventually ensure the user sees the report when it's done being generated, you could do some fancy Keep-alive with the http request, or just have some javascript on the page that automatically reloads it, and upon reload the script will check to see if there's a report built for that user, otherwise it checks to see if there's a lock. If there's a lock, it stops and waits to try again soon. If there is no lock, it starts a new report. Just some thoughts! Good luck with your problem, I don't think it's really an apache problem.
Re: [us...@httpd] mod_php script 'queue'
On 12-Mar-10 13:49, Jonathan Zuckerman wrote: On Fri, Mar 12, 2010 at 9:36 AM, Reese wrote: On 12-Mar-10 11:31, Nilesh Govindarajan wrote: On Fri, Mar 12, 2010 at 6:49 PM, Bruno - e-comBR wrote: It's causing a little throuble for me. When a PHP script generates a bigger report(taking about ten minutes or more), the user seems to be impatient. They're doing refreshs on the page. So, for each refresh apache is queuing a new script, and just begin running this when the queue is empty again. What do you suggest me? Thank you, Bruno Moreira Guedes I don't use mod_php, so don't know about its behavior. But I recommend you inform the users that the report can take upto ten minutes to generate and to be patient. That's the only solution I see. Else, if you can make the PHP script 'smart' in some way so that a popup or other visual indicator will give constant, visual feedback on the progress of the request. With a "Cancel" button that functions to kill the original request while blocking page refreshes. They can start over from scratch if they like. Reese - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org Is there any way to cache the report? You could get the parameters sorted out, then create a cron job from it and feed it to a .log file. This log file could be made available to administrators only, the world or something in between, depending on where in the file system it is located and the associated permissions. To eventually ensure the user sees the report when it's done being generated, you could do some fancy Keep-alive with the http request, or just have some javascript on the page that automatically reloads it, and upon reload the script will check to see if there's a report built for that user, otherwise it checks to see if there's a lock. If there's a lock, it stops and waits to try again soon. If there is no lock, it starts a new report. Or compress and store or mail it to them (and others?), starting a new log file after each clock cycle. This is starting to feel like reinventing HTTP access logs. We got off track somewhere. Reese - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
RE: [us...@httpd] Number of https virtual hosts support under v2.0.59
Thanks, Emmanuel. Interesting test site. Ryan -Original Message- From: Emmanuel Bailleul [mailto:emmanuel.baill...@telindus.fr] Sent: Friday, March 12, 2010 1:49 PM To: users@httpd.apache.org Subject: RE: [us...@httpd] Number of https virtual hosts support under v2.0.59 > -Message d'origine- > De : Ruiyuan Jiang [mailto:ruiyuan_ji...@liz.com] > Envoyé : vendredi 12 mars 2010 19:40 > À : users@httpd.apache.org > Objet : RE: [us...@httpd] Number of https virtual hosts support under > v2.0.59 > > Hi, Philip > > I don't know how to configure SNI on Apache since I don't see anything > from mod_ssl's document that Krist replied to me before. I assume it > automatically works. I just configured ssl virtualhost the same way as > http virtualhost plus ssl's unique requirements. > I use Windows XP. I tested IE 8 with Vista on a MacBook and it works since > that is what I have at the moment. > I was planning to have live sites on the internet by unknown users. Now I > guess I need to have second thought. > I tested on v2.0.59. It needs a lot of IPs for certs that I'd like to > migrate to. > > Ryan > > > > -Original Message- > From: Philip Wigg [mailto:p...@philipwigg.co.uk] > Sent: Friday, March 12, 2010 11:58 AM > To: users@httpd.apache.org > Subject: Re: [us...@httpd] Number of https virtual hosts support under > v2.0.59 > > On 12 March 2010 16:43, Ruiyuan Jiang wrote: > > Hi, Krist > > > > I tested with Apache 2.2.15 reverse proxy with two certs on the Apache, > one is real cert and the other is self-signed. The configuration is > virtualhosts for ssl. > > The results that I got are: > > > > On PC client: > > > > Firefox v3.5.8 showed correct certs, one real and the other is not. > > IE 8 showed incorrect when I viewed the certs. The self-signed cert site > used the real cert. > > > > On MAC client: > > > > Both Safari 4.0.4 and Firefox 3.5.2 showed correctly, one real and one > self-signed cert. > > > > My question is eventually both sites will have real certs when I am done > testing. Will IE 6 and above uses the correct certs or only uses one cert, > may be the first virtual host listed in ssl configuration file of Apache? > > Presuming you've configured SNI correctly, what operating system are > you using? Note that SNI only works with IE 7 and 8 only work when > running on Vista or higher, not with Windows XP. IE6 doesn't support > SNI at all and never will to my knowledge. > > Are you putting this on a live site to be accessed by unknown users on > the internet? If so, basically, don't. Most users on the internet will > not be running an SNI-capable browser. > > -- Phil. > Hi, You have a short desc here : http://wiki.apache.org/httpd/NameBasedSSLVHostsWithSNI and indeed, it should "just work". You also have interesting test sites here : https://sni.velox.ch/ Regards Emmanuel - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org This message (including any attachments) is intended solely for the specific individual(s) or entity(ies) named above, and may contain legally privileged and confidential information. If you are not the intended recipient, please notify the sender immediately by replying to this message and then delete it. Any disclosure, copying, or distribution of this message, or the taking of any action based on it, by other than the intended recipient, is strictly prohibited. - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] How to block IP addresses to the whole server?
-- From: "Je suis la poubelle" Sent: 12 March, 2010 13:27 To: Subject: Re: [us...@httpd] How to block IP addresses to the whole server? Yes, I had created hosts.deny as well (but I forgot to mention it) but it had no effect. On Thu, Mar 11, 2010 at 22:28, Igor Cicimov wrote: You need to put the ip in the hosts.deny file On Mar 12, 2010 3:11 AM, "John Doe" wrote: From: Je suis la poubelle Yeah, I want o blacklist some IP addresses. I don't have > iptables installed, and I don't w... Try this: http://www.mkhelif.fr/2008/06/23/apache2-systeme-de-blacklist.html JD - The official User-To... - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org Lapsap7, What you want is a .htaccess file that blocks the IP addresses from browsing your site. Please follow the below link. You will then want to upload the generated .htaccess to your DocumentRoot to block the IP addresses. Here is a great site: http://www.blockacountry.com/ It automatically generates a .htaccess file that you can use to block entire nations. I use it, and it works great. Thanks, Daniel - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
RE: [us...@httpd] connections monitor
> -Message d'origine- > De : Reese [mailto:howel...@inkworkswell.com] > Envoyé : vendredi 12 mars 2010 19:17 > À : users@httpd.apache.org > Objet : Re: [us...@httpd] connections monitor > > On 12-Mar-10 13:01, Brent Davidson wrote: > > I am wondering if there is a way some of you are aware of to monitor > concurrent connections to the Apache server, that does not include > counting all the IP's in the access log at one point in time? > > Do you have shell access? Investigate the ps command, then investigate > piping the top command through grep to isolate the processes you are > interested in. > > Reese > Hi, Why not have a look at mod_status : http://httpd.apache.org/docs/2.2/mod/mod_status.html and use it with some rrdtool based tool like collectd for ex. : http://collectd.org/wiki/index.php/Plugin:Apache Regards Emmanuel Thanks, I may need to get into this info down the road, but what I am looking for now is just a head count for the users coming to site. It is a dsl line so nothing to work with on ISP side. And I am not looking for "real-time", I am looking for maximum at any point in time. I also do not have Apache installed yet. It is running on Xampp that someone else installed for production (bad idea!). Thanks, Brent - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] apache on windows
Can anyone out there tell me if is workable or not to install Apache(most current version) on a Windows Web server? I am trying to pick up the pieces of a not-so-clean website installation. (Bear with me please- to say I am green is an understatement. More like not sprouted yet!) Here is what I have: Website was built on Linux box using php. Site was moved to Windows Web server box with IIS, Mysql, PHP. New webdesigner said it did not "work" right, due to transition from Linux to Windows. They removed Mysql & PHP, turned off IIS, and installed Xampp. (bad idea for production) Still numerous problems. (They are off the project now.) Last night I migrated website to virtual server with Standard edition (not webserver) of Windows server, with Xampp, and everything seems to work correctly. I am going to install full versions of Apache, Mysql, and PHP. Before I go thru all that, I want to find out, if possible, if it is a compatibility issue with webserver version, or just screwed up install due to too many hands in cookie jar. Thanks, Brent
Re: [us...@httpd] apache httpd server 2.3.5 alpha CAN NOT load the module libphp5.so,WHY?
thanks for response. what should I do now? update httpd or update php? Best regards, Sharl.Jimh.Tsin - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org " from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] apache httpd server 2.3.5 alpha CAN NOT load the module libphp5.so,WHY?
On Mar 12, 2010, at 9:08 PM, 夏蒸鑫 wrote: > what should I do now? update httpd or update php? PHP will need to be updated to support Apache HTTP Server 2.3 and 2.4. This is why we release Alphas, so module developers have an opportunity to catch up. S. -- Sander Temme scte...@apache.org PGP FP: 51B4 8727 466A 0BC3 69F4 B7B8 B2BE BC40 1529 24AF smime.p7s Description: S/MIME cryptographic signature
RE: [us...@httpd] Multiple Apache 2.2.8 installation on same redhat server, Error httpd (pid 3996) already running
Dear Eric Where is the directive . Which file/entry i need to change. There is no such entry in the httpd.conf for pid file in apache 2.2.8 . Regards PRAMOD KUMAR > Date: Fri, 12 Mar 2010 06:25:39 -0500 > From: cove...@gmail.com > To: users@httpd.apache.org > Subject: Re: [us...@httpd] Multiple Apache 2.2.8 installation on same redhat > server, Error httpd (pid 3996) already running > > On Fri, Mar 12, 2010 at 1:58 AM, Pramod Kumar wrote: > > I think i need to change the installation dir details in the configure > > script for the second configuration and pid file reference. > > No, it can simply be changed at runtime with the directive already > mentioned here. > > -- > Eric Covener > cove...@gmail.com > > - > The official User-To-User support forum of the Apache HTTP Server Project. > See http://httpd.apache.org/userslist.html> for more info. > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org >" from the digest: users-digest-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > _ What does Budget 2010 mean for you? Catch all the latest news, updates and analysis on MSN Budget Special http://news.in.msn.com/moneyspecial/budget2010
