user-specific content. It's not just your caching server, there are ISPs
that will cache your pages that have no caching directives too, exposing
sessions to other users who use the same ISP. We saw it on our website
until we added the correct directives to block caching.
Cheers,
Nicholas She
6, so a mere 2% of our total users use IE6.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe
illa.org/listinfo
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr...@httpd
. A
large proportion of users use the same password for everything online.
You don't want a login sniffed from your site to be used to breach the
user's bank account.
Cheers,
Nicholas Sherlock
-
The official User-To-U
stop people from
monopolizing their child, and to give other people a chance to connect.
So is there any Apache module or settings which dynamically tune the KeepAlive
settings based on the current load situation?
Cheers,
Nicholas Sherlock
words, it's a DoS
attack originating from a single client host.
This is called 'slow loris' attack. That'll give you something to Google
for :)
Cheers,
Nicholas Sherlock
-
The official User-To-User support
ASF and companies producing our conferences, and spamassassin.org
and myfaces.org, for historical reasons."
Looks like they ripped the whole thing from Apache's site. They even
reference this address:
http://apache-project.webs.com/center.jpg
I'm pretty sure Apache doesn't hos
(this server will server reverse proxy
requests). I intend to configure it for around 400 requests per second
and i'm not sure if prefork will do.
How many CPUs? How much RAM?
Cheers,
Nicholas Sherlock
-
The official User-To
s the error log say?
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr..
n port 443 is working just fine. I can see your SugarCRM
login page at https://fyrenice.com. There's nothing listening on port
80, though.
You should check your Apache error log, and double check your
port-forwarding configuration.
achine through my Linksys WRTP54G router. I can
ssh in to my server no problem, but I can't access the admin pages for
SugarCRM or for Mailman.
Server running Windows? Go into the firewall settings and add entries to
allow traffic on those ports from the Internet.
Cheers,
Nichol
#x27;s one hit every four minutes. From the log
snippet posted, it seems to be a simple mixture of blogs and forums.
Hardly supercomputer stuff. A slow single-core would serve it just fine.
Cheers,
Nicholas Sherlock
-
The offi
ts have to wait for the lock.
Load skyrockets.
Connect to MySQL when something like this happens and run SHOW FULL
PROCESSLIST. Look for long-running queries.
Cheers,
Nicholas Sherlock
-
The official User-To-User support fo
protection-in-mod.html
Sounds very promising.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe,
"s1" to
your "server1" host definition.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
Nicholas Sherlock wrote:
Toomas Aas wrote:
Say, I open a browser and enter request for
http://mysite.com/LargeTextFile.txt
The file begins to load in the browser window.
While the file is loading, I open another browser tab and enter the
same request there.
The file in second tab doesn&#
eaders are you sending? Check with
something like the "Live HTTP Headers" plugin for Firefox.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apach
ventually, the
bad query times out and everything goes back to normal.
On MySQL, this would be diagnosed with a quick "SHOW PROCESSLIST", I'm
not sure about PostgreSQL though.
Cheers,
Nicholas Sherlock
-
The of
Silvio Siefke wrote:
Error:
it comes a window what say "The requested operation has failed".
No log entry.
Check the "applications" section of the windows Event Viewer. Startup
errors can end up there in some situations.
Cheer
ze
my configuration?
1000 hits per minute is not all that much, but your hardware plays a big
role in choosing a good configuration. How much memory do you have
available? What CPU are you running on?
Cheers,
Nicholas Sh
location of your script.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsub
g file. But got not change in
outcome.
It's also missing a slash after C: (what the heck generated that broken
path?)
LoadModule php5_module
"C:/john/documents/php-5.2.10-Win32/php5apache2_2.dll"
Cheers,
Nicholas Sherlock
--
rs is the maximum number of *spare* servers, that is,
servers that are not serving clients but are instead sitting there doing
nothing. MaxClients is the parameter which controls the maximum number
of (busy or idle) Apache processes.
Cheers,
Nicholas She
mation from their requests for images embedded in your
webpages. For instance, I think one of the popular Norton security
programs does this, many visitors probably don't even know it's on their
computer.
So if you solve your problem, those clients will never be able to see
the im
Check your mailreader.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-
ive applies to the URL, and IS
case-sensitive. In that case, "/public" and "/PUBLIC" are 2 different
URLs.
Ah, thanks for pointing that out! My only Windows Apache server is my
development machine, but that little bit of information could be really
c
e. Your website will have carefully trained the user in
advance to ignore all security warnings and accept the rogue
certificate. What a waste of time. The only thing you're protecting
against is a passive attacker.
Cheers,
Nicholas Sherlock
and not widely recognized,
http://cacert.org/
Won't certificates signed by them be only useful for internally-deployed
apps? They're not a trusted root on Windows so random browsers on the
web will just get an "UNTRUSTED SITE! Get me out of here!" message.
Cheer
d average of 2!
I'm making do with a slow single-core machine at the moment, with a lot
of very persistent site visitors, and our load average rarely drops
below 50.. :).
Cheers,
Nicholas Sherlock
-
The official User-To-
27;top' because it used almost no CPU time. I diagnosed the problem
with 'iotop' - it gives per-process IO stats.
This is probably not the same problem you're having, but iotop is still
a useful tool to identify IO competition when you can&#
-generated image pages all the time and I need to
reduce bandwidth in this usecase.
My Apache is:
Apache/2.2.11 (Win32) DAV/2 mod_ssl/2.2.11 OpenSSL/0.9.8i SVN/1.6.3
PHP/5.3.0
Cheers,
Nicholas Sherlock
-
The official
ay be able
to find ways to exploit it more easily.
Being in the document root does not imply that people will be able to
read your code. If they browse to the file, they'll just see the output
from the script, not the source itself.
Cheers,
Nichola
will only block this _specific_ infection, and won't
patch the gaping holes in your server that are letting it through in the
first place. Secure your FTP credentials and update the PHP packages you
are using.
Cheers,
Nicholas She
possibly assist in such a transaction?
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: us
ports 8080 or 8085.
What's your firewall and routing configuration like? Have you opened
and/or forwarded those extra ports?
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Pr
de, because
the custom header "X-CS-Caught-Late: yes" is not in the response.
Why is this happening? You can try it out on my live server, using the
same URL as I did.
Cheers,
Nicholas Sherlock
-
The official User-To
fore any script in the directory
you set it for is run. It will only work for documents which PHP is set
to parse, of course, so it won't help out for requests for other objects
like images.
Cheers,
Nicholas Sherlock
-
e versa. If the client closes the connection, the
proxy disconnects from the web server, and vice versa. The only thing
that the proxy gets to see is the call to "CONNECT", everything else it
cannot view because it is encrypted and it does not have the
ld cause a site slowdown even
with low CPU usage.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
too. I could find plenty of solutions which
could profile a given PHP file for me if I manually run it as a test.
But I'm far more interested in the actual stats observed with real data
on the live server.
Cheers,
Nicholas She
orked much
better. I have had good luck with:
http://www.dyndns.com/
We've already established that his domain name is correctly resolving to
his IP address. If his IP address is dynamic he may also want to look
into a dynamic DNS solution.
Cheers,
Nichola
efused" as of now - what's the exact
configuration that you have for your port forwarding? To have the domain
name resolve to your local IP address on your network, you'll need to
add it as an entry in your HOST file.
, that's the wrong tab. You want the settings in "Applications and
Gaming". The first page there is "Single port forwarding".
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache
ss
of the router) and "Subnet mask". Your computer needs to be configured
to have the same subnet mask. Use the same IP address as the router, but
change the last digit to something else, (like 40), so that you aren't
in con
to be in. It
is configured from the TCP/IP settings for your network adapter.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.htm
from outside your network?
One thing is I am not understanding the "your host" does this mean "me"
as in my computer or the ISPs computer where the names server is?
I was talking about your computer, the one that Apa
Nicholas Sherlock wrote:
Michael Rogers wrote:
HI!
For the last 6 months I have fiddled around trying to make Apache
connect to the web or the web connect to Apache. It does just fine on
my home network when I type in localhost! But if I type in
www.michaelsrogers.com <h
it doesn't know which one is which by default).
This is called "port forwarding". Your router manual or Google will tell
you more, or poke around in the administration panel for it.
Cheers,
Nicholas Sherlock
-
J. Bakshi wrote:
Nicholas Sherlock wrote:
If you were running a SOCKS proxy in Germany, you could use that
successfully (I presume that the transfer happens over HTTPS). Not
sure how to accomplish the task with Apache.
Thanks Nicholas,
I can install the proxy on my dedicated linux server in
ver HTTPS). Not sure
how to accomplish the task with Apache.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
Nicholas Sherlock wrote:
However, some new pages I am now developing are cache-aware, and supply
their own Cache-Control headers which should not include the "private"
modifier. Is it possible for mod_headers to not create this header if
the response (from PHP) already includes a Cac
eaders to not create this header if
the response (from PHP) already includes a Cache-Control header? I could
not work anything out with the conditional controls that the
documentation mentions for the 'Header' directive, but perhaps I&#
e), it just
presents a window where you can examine every request along with the
request and response headers.
Cheers,
Nicholas Sherlock
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://h
Nicholas Sherlock wrote:
I've recently set up a 32-bit Apache 2.2 server on Ubuntu sitting on an
Amazon small instance (1.7GB of memory, single core, 1.2GHz Opteron
equivalent).
While re-reading my post I noticed that I have no clear idea about the
performance metrics that I am tryi
ion:
StartServers 5
MinSpareServers 5
MaxSpareServers 10
MaxClients 120
MaxRequestsPerChild 0
We also have these settings enabled:
KeepAlive On
KeepAliveTimeout 15
MaxKeepAliveRequests 100
Timeout 300
Cheers,
Nicholas Sherlock
-
The offi
55 matches
Mail list logo
