did it and reloaded ..
devs arse kicked, and tighter submission checking now in place to
error if that happens again :)
On 11/12/14, Jeff Trawick wrote:
> On Wed, Nov 12, 2014 at 5:05 AM, Nick Edwards
> wrote:
>
>> Hello,
>>
>> Have a problem on one server wh
Hello,
Have a problem on one server where SNI does not appear to work, the
only difference is the very first vhost is non SSL, the SSL is loaded
second - works, then it loads some more http vhosts, - they work,
then loads some SSL sites of same .domain - they work too, then it
tries to load SSL
Howdy,
I've sent this to the roundcube list few days ago, no-one replied so ,
since its also apache related, I'll ask here.
Trying to understand the new "security" rules in .htaccess
- deny access to files not containing a dot or starting with a dot
# in all locations except installer direct
On 4/26/13, Jeff Trawick wrote:
> On Fri, Apr 26, 2013 at 3:26 AM, Nick Edwards
> wrote:
>
>> bump:
>> and we also found it on a cgi file
>>
>> original:
>> As subject says, we are experiencing 100% utilization of some 2.4.4
>> servers
>>
>&g
bump:
and we also found it on a cgi file
original:
As subject says, we are experiencing 100% utilization of some 2.4.4 servers
this always results in error from mod_mime_magic
it happens on ISO files as well - the biggest issue on mirror server,
but an example is
mod_mime_magic: read failed from
As subject says, we are experiencing 100% utilization of some 2.4.4 servers
this always results in error from mod_mime_magic
it happens on ISO files as well - the biggest issueon mirror server,
but an example is
mod_mime_magic: read failed from uncompress of /ftpmirrors/bind/mkdir
tested this mys
Are there any known limits to the number of IP ranges in a "require
not" statement in 2.4.x?
eg: require not 1.1.1.x 1.1.4.x 1.1.5.x 1.1.9.x 2.0.0.x
and so forth, an ACL I'm consider using on a customers site at their
request would mean around 119 IP ranges :->
Just wonder if that hits any li
On 12/11/12, Igor Cicimov wrote:
>> Am I right in assuming the FD limits is about 20, or lets say 50 FD's
>> for apache internal,
>> plus 1 each for access/error/suexec logs per virtualhost,
>> TIMES number of daemons, using MPM event which seems to load 5 of them
>>
>
> I would say not right. E
On 10/24/12, Pete Houston wrote:
> On Tue, Oct 23, 2012 at 12:38:39PM +1000, Nick Edwards wrote:
>> was hoping for a general cgi solution tha works the same, perhaps its
>> there and my google fu is failing me today?
>
> Something like sbox? http://stein.cshl.org/software/sbo
Hi,
Is there a way to lock down httpd (2.4.3) similar to the way httpd
docs suggest using php flag for when using php module.
php_admin_value open_basedir
"/usr/local/lib/php/:/var/www/vhost/example.com/"
php_admin_value upload_tmp_dir /var/www/vhost/example.com/tmp/
php_a
Hello,
I have an issue where, apache is, when using graceful reload, setting
perms for domains as root
-rw--- 1 root root 44 Sep 1 05:59 somedomain
yet if I delete this and either click on URL, or, stop apache and
cleanly start apache it is recreated cleanly as:
-rw--- 1 apa
Know its author has insisted nobody use this anymore, will Apache
httpd soon support sha2 in its authentication dbd modules
-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@h
o that directory,
> check your permissions, set 1770 on /srv/foo.net/tmp/
>
>
> On Tue, 2012-05-15 at 17:26 +1000, Nick Edwards wrote:
>
>> Hi,
>>
>> Although I did not include it in my snippage, I already have
>> php_admin_value session.save_path /srv/foo.net/sess/
usr/local/lib/php/:/srv/foo.net/
> php_admin_value upload_tmp_dir /srv/foo.net/tmp/
> php_admin_value session.save_path /srv/foo.net/tmp/
>
> On Tue, May 15, 2012 at 9:46 AM, Nick Edwards
> wrote:
>> Hi,
>>
>> in httpd.conf each virtual host has
>> ...
>
Hi,
in httpd.conf each virtual host has
...
php_admin_value open_basedir "/usr/local/lib/php/:/srv/foo.net/"
php_admin_value upload_tmp_dir /srv/foo.net/tmp/
...
But a phpmailer script is complain
PHP Warning: Unknown: open_basedir restriction in effect. File(/tmp)
is not within the allowed pat
[lbmethod_heartbeat:notice] [pid 16542:tid 3068393232] AH02282: No
slotmem from mod_heartmonitor
This constantly appears in our error logs, i have built apache using mod options
--enable-so
--enable-modules=all
--enable-mods-static=all <-- this is to get same method as 2.2 and earlier
--disable
On 3/15/12, Anam Ali Khan wrote:
> Yes, Apache access.htaccess only at that point where you inserted
> AllowOverride in the directory container.
>
> It also saves a little disk io load on web server :)
>
>
> -Anam
>
Thanks for confirming my suspicions - busy day ahead :->
---
On 3/11/12, Lester Caine wrote:
> - Original message -
>> [Sun Mar 11 08:19:40.020588 2012] [core:notice] [pid 25207:tid
>> 3069507888] AH00052: child pid 25295 exit signal Segmentation fault
>> (11)
>>
>> Is that to be worried about?
> At last someone reporting segfaults ...
> I'm getting
Hi,
Just trying to clarify it is best to allow these in the virtualhost
root on a per domain
For instance at present we have
AllowOverride None
Options None
Require all denied
I know this is good :)
But then we have
AllowOverride AuthConfig
Options +Indexes
now assume ea
I have loglevel set to error, but I seems to get a lot of crap sent to logs
[Sat Mar 10 20:41:26.266513 2012] [auth_digest:notice] [pid 25207:tid
3069507888] AH01757: generating secret for digest authentication ...
[Sat Mar 10 20:41:27.156969 2012] [lbmethod_heartbeat:notice] [pid
25207:tid 30695
Hi,
With a lot of virtual hosts, is it possible to have a sort of global
( /admin ) directory, which uses a specific dir elsewhere, that
everyone is referenced to when they type their.domain/admin
Trying to avoid a mass change of thousands of files, if I can get them
all to go to one physical /
I note that the allow/deny old method is deprecated, but I find the
lack of examples problemsome in trying to convert to the newer method,
which I guess we should be doing to avoid bad habbits.
DIR
Order allow,deny
Allow from 1.2.0 127.0.0.1
Satisfy any
...auth DB stuf
On 2/23/12, Rainer Jung wrote:
> On 23.02.2012 01:25, Eric Covener wrote:
>> On Wed, Feb 22, 2012 at 6:52 PM, Nick Edwards
>> wrote:
>>> Hi,
>>> I know this may be a little off-topic, but am asking here because mod
>>> cband has it seems been aba
Awesome, thank you!
On 2/23/12, Rainer Jung wrote:
> On 23.02.2012 01:25, Eric Covener wrote:
>> On Wed, Feb 22, 2012 at 6:52 PM, Nick Edwards
>> wrote:
>>> Hi,
>>> I know this may be a little off-topic, but am asking here because mod
>>> cband has it
Hi,
I know this may be a little off-topic, but am asking here because mod
cband has it seems been abandon-ware for few years now, even half the
authors I contacted have no idea about the main developers
whereabouts.
mod_cband works fantastic, except in trying 2.4.1 of apache httpd it
no longer bui
On 2/13/12, Noel Butler wrote:
> On Sun, 2012-02-12 at 13:14 +, Steve Swift wrote:
>
>>
>>
>>
>> One caveat: Don't ever rely on a a wildcard INCLUDE for the order of
>> your vhosts. This probably only matters for the first vhost, which is
>> the default for any request which doesn't match any
On 2/12/12, Steve Swift wrote:
> I don't think it would make a significant difference if you had a single
> file with 2000 vhosts, or 2000 files with one vhost each.
>
I think you're right, I added half a dozen test domains and checked
lsof, no apparent extra file handles. Just if I have to rebu
Hi,
Is it more efficient for all virtualhost blocks to be in a single
file, eg httpd-vhosts.conf, or for each of them to be in their own
"one file per domain" via an include hosts.d/*.conf
We are talking a minimum of 2000 hosts per machine.
Memory I assume would be the same since it needs to know
Hi,
Is there a way I can stop apache from accessing any file on system
that is world readable, like etc/passwd and so on.
suexec works to the point that the cgi called must be inside the
doc-root (or at least seems to), but if I call an open on say var log
daemon.log or etc passwd, it opens and
Hello,
I was not sure if I should subscribe to dev list to send this, but, I
guess here is better?
Trying out 2.4.0 from 2.2.21
Well, the config file from 2.2.21 is not going to work, fine, I'll
deal with that in time, obviously things that were defaulted to under
some IFs are no longer so a full
30 matches
Mail list logo
