On 2/6/07, Joshua Slive <[EMAIL PROTECTED]> wrote:
On 2/6/07, Coach-X <[EMAIL PROTECTED]> wrote:
> Just updated apache from 2.0.59 to 2.2.4. Server is running fine but
> the log file shows hundreds of request like the following in the main
> access log:
>
> 127.0.0.1 - - [06/Feb/2007:14:33:29 -0
http://tomcat.apache.org/connectors-doc/index.html
On 2/15/07, Tracy12 <[EMAIL PROTECTED]> wrote:
Hi,
Can somebody point out a documentation to install mod_jk on apache 2.2.
What are the dependencies? and pre requists that I should have
Thanks
--
View this message in context:
http://www.n
May be you shouldn't use mod_jk at all? I'd configure HTTPS connector
in Tomcat and use mod_proxy between Apache and Tomcat. In this case
the channel will be encrypte with standard SSL.
On 2/19/07, AFrieze <[EMAIL PROTECTED]> wrote:
Hi everyone
I am using Apache to serve static content and to a
On 2/27/07, Mark Lavi <[EMAIL PROTECTED]> wrote:
Apache is not a load balancer.
http://httpd.apache.org/docs/2.2/mod/mod_proxy_balancer.html
I am not aware of a third party module that adds balancing functionality
(try searching the web or http://modules.apache.org/).
You may wish to look a
mod_jk isn't deprecated and currently is actively developed.
To get apxs install httpd-devel rpm
On 2/28/07, Mike VanHorn <[EMAIL PROTECTED]> wrote:
On 2/28/07 11:31 AM, "Nick Kew" <[EMAIL PROTECTED]> wrote:
> On Wed, 28 Feb 2007 11:22:40 -0500
> Mike VanHorn <[EMAIL PROTECTED]> wrote:
>
>>
On 3/12/07, Thomas Blanchin <[EMAIL PROTECTED]> wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi all,
I have a problem getting some httpd servers displaying russians characters.
I have different machines serving the same content (mounted via nfs).
- - All servers run httpd 2.0.52 and php
On 3/20/07, Charles Michener <[EMAIL PROTECTED]> wrote:
Hi - I'm trying to create a mod_rewrite solution to the following problem:
I want to enter http://www.myvirtualdomain.com/1234abc.htm
and have mod_rewrite translate that URL to
http://www.myvirtualdomain.com/index.php?SKU=1234abc
Also,
I'm affraid you are mixing up 2 different things: control of user
access to the site and control type of access to your site.
SSLRequireSSL can't control what users can get access to the
particular directory but it can control that access to that directory
will be provided through SSL enabled conn
A simple JavaScript serving as a main page and redirecting users to a
random URI from your site would do. I don't think that it would be
possible to do on Apache configuration level
On 4/18/07, mraible <[EMAIL PROTECTED]> wrote:
Is it possible for Apache to randomly select different URLs to ser
Works fine for me. Apache 2.2.3 compiled with gcc 2.95.3 under Solaris 8.
On 4/23/07, Yannick Mercier <[EMAIL PROTECTED]> wrote:
I wonder if anyone is succesfully using shm for mod_ssl SessionCache
I dont.. under Solaris8 with apache 2.2
when I set SSLSessionCache to
shm:/opt/apache/logs/ss
You can't have 2 different SSL certificates on one IP address. See the FAQ.
On 5/9/07, Mark Drummond <[EMAIL PROTECTED]> wrote:
Hi all,
I have two different key files and their associated certs in PEM encoded
files. I have two virtualhosts defined. The virtualhosts are working fine,
in as much
Something isn't clear here. If you use mod_jk that means that you use
AJP connector on Tomcat side. That's not HTTP neither HTTPS.
https://192.168.62.2:8443/login.do probably works because you
configured HTTPS connectors along with AJP but did you configure
Apache to connect to those connectors?
x27;t think that after restart Tomcat will be able to
restore previous session unless you set up some kind of session
persistence.
Serge Dubrouski.
On 5/30/07, Dale Ogilvie <[EMAIL PROTECTED]> wrote:
Hello,
I am running Apache 2.2.3 on RedHat EL 5. I am trying to use Apache to
load balance
Build it yourself with rpmbuild and 2.2.4 sources.
On 6/6/07, allen green <[EMAIL PROTECTED]> wrote:
where can i find httpd-2.2.4 i386.rpm ?
Send instant messages to your online friends http://uk.messenger.yahoo.com
-
The offi
igger than 128K over HTTPS, in spite of the fact that default limit
for HTTP is 2Gb. Apache sends "Request Entity Too Large" error to the
client.
Was it designed like that on purpose or mod_ssl developers just
overlooked support for LimitRequestBody? Should I create a Bugzilla
repor
I wouldn't rely on balancer_manager for a such monitoring because I've
seen situations when it reported "Ok" status for workers that were
down.
As alternative method you can use sniffing Apache error_log file for
the messages about disabled workers. You can OSSEC for that for
example.
On 6/14/07
On 6/14/07, Tom Haddon <[EMAIL PROTECTED]> wrote:
On Thu, 2007-06-14 at 13:02 -0600, Serge Dubrouski wrote:
> I wouldn't rely on balancer_manager for a such monitoring because I've
> seen situations when it reported "Ok" status for workers that were
> down.
Is
he.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
--
Serge Dubrouski.
-
The official User-To-User su
choose the way they develop. We
couldn't say users to store sessions on DB or Disk
As I said the standard practice is to use sticky sessions and have
shared storage with presistent sessions for failover case if one node
dies.
thanks, Cheers!
Serge Dubrouski escribió:
> 1. Apache + mo
ial User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
self-signed SSL Certificate, and the Web Server come
> with FC6 System.
>
> Thanks !
>
> Edward.
>
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apac
ECTED] <[EMAIL PROTECTED]> wrote:
>
> Hello,
>
> Following this guide !
> http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#ownca
>
> Edward.
>
>
> Serge Dubrouski wrote:
>
> Where did you get you SSL certificate? Look like it's not the right one.
OTECTED]
>" from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
--
Serge Dubrouski.
-
The official User-To-User support forum of the Apache HTTP Server Project.
S
?
> Due to http need the 80 port, and https need the 443 port...
>
> Thanks !
>
> Edward.
>
>
> Serge Dubrouski wrote:
>
> This guide tells you how to create your own Certificate Authority. You
> can't use CA cert as a server SSL cert you have to use it for s
ificate CommonName (CN)
> `localhost.localdomain' does NOT match server name!?
>
>
> Edward.
>
> Serge Dubrouski wrote:
>
> What is the error message when you try selfsigned cert?
>
> On 9/21/07, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
>
>
> Hello
Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>" from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
--
Serge Dubrouski.
---
ndler that can give you some limited
information about balancer memebers. You can configure it like that:
SetHandler balancer-manager
Order allow,deny
Allow from 127.0.0.1
>
> I am using Apache2.2.8 mod_proxy2.2.8 with tomc
User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
>" from the digest: [EMAIL PROTECTED]
>
, or traffic load then you need to use other tools, perhaps SNMP
monitors.
--
Serge Dubrouski.
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To u
On Wed, Mar 19, 2008 at 8:37 AM, Melanie Pfefer
<[EMAIL PROTECTED]> wrote:
> thanks but I also need whether apache can work with
> Sun Cluster or veritas. Can you please advise?
> thanks
>
>
> --- Serge Dubrouski <[EMAIL PROTECTED]> wrote:
>
> > www.linu
On Wed, Mar 19, 2008 at 8:47 AM, Narendra Verma
<[EMAIL PROTECTED]> wrote:
> Hi Serge Dubrouski
>
> First of all thanks a lot for giving idea about it.
> Can you please tell me more about that how load balancer-manager shows that
> how many times this or that balancer membe
t; To unsubscribe, e-mail: [EMAIL PROTECTED]
>" from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
--
Serge Dubrouski.
-
The official User-To-User support forum
ror] Re-negotiation handshake failed: Not
> accepted by client!?
>
> What am I missing? I got this working in Tomcat using the exact same
> certificate. Is there a way to keep the client certificate
> handling in Tomcat.
>
> Regards
> /Christopher
>
>
--
Serge Dubr
etrieve client certs
in Java.
> Any other suggestions what is going wrong are highly appreciated.
Check this https://issues.apache.org/bugzilla/show_bug.cgi?id=12355
for more details on this problem.
>
> Cheers
> Chris
>
>
>
>
>
> On Tue, Apr 8, 2008 at 9:54 PM, Serge Du
h another client certificate that only had
> one certificate and that worked fine), so this is the only difference in
> configuration I have done and that is why I dont include all the other
> configuration.
>
> Any suggenstions?
>
> Thanks
>
> Cheers
> Chris
-
; Thanks for any help.
>
>
> -
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail:
other. I am glad
> that a better solution exists.
>
> Thanks for your help.
>
>
>
> Serge Dubrouski wrote:
>
> > I think it's quite possible and fairly easy. BigIP allows you to
> > create a custom HTTP/S monitors for a particular URL. So create a
> >
it gives
> status 'err'.
>
>
>
>
>
> So issue is if I up the tomcat then this gui must change the status,
>
> How this can be done or is it issue related to balancer manager gui.
>
> Or can I change somewhat related to it.
>
>
>
> Please reply
e done or is it issue related to balancer manager gui.
> >
> > Or can I change somewhat related to it.
> >
> >
> >
> > Please reply its a production issue..
> >
> >
> >
> > Thanks
> >
> > Narendra
> >
> &g
> the email posted by Mr. Narendra
>
> Cheers
>
>
>
> On Mon, May 12, 2008 at 6:09 PM, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
>
> > That is well understood, but why does balance-manager reports "Ok"
> > status for members that failed on prev
er support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> " from the digest: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
>
>
--
Serge Dub
e" connectionTimeout="0" threadPriority="5"
>connectionUploadTimeout="0" connectionLinger="0"
>maxSpareThreads="50" maxThreads="200"
> maxKeepAliveRequests="100" disableUploadTimeout=
n have different
workers defined for different Tomcat instances and point different
mounts to different workers.
>
> Thanks Again
>
>
> On Mon, Jun 30, 2008 at 3:46 PM, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
>> It sounds like you have an HTTP virtual server configured
> The official User-To-User support forum of the Apache HTTP Server Project.
> See http://httpd.apache.org/userslist.html> for more info.
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> " from the diges
es and would use only
JkMount for active content.
>
> (I think I found the "SetHandler jakarta-servlet" somewhere in the
> documentation of either Apache or Tomcat, but I think it's not at the same
> place as the "JkMount/JkUnMount" documentation)
>
>
> Many t
I think yes. Why not? You can specify "address" on which Tomcat will
be listeningg in the server.xml and then set the same port in the
workers.properties.
On 9/2/06, jbashir <[EMAIL PROTECTED]> wrote:
Is it possible to integrate Apache and Tomcat via mod_jk on remote computers.
I mean Apache is
I'm not really familiar with Windows version ob Tomcat and Apache. I
prefer UNIX/Linux. But...
On 9/2/06, jbashir <[EMAIL PROTECTED]> wrote:
A little explanation of the problem:
I have the tomcat running on one computer with ip 192.168.0.130 and
apache running on another computer with ip 192.16
On 9/8/06, jbashir <[EMAIL PROTECTED]> wrote:
Configuring apache and tomcat via mod_jk is done by installing apache on port
80 and tomcat on port 8080, and when we write http://localhost/ it's apache
server which runs by default (being installed on port 80), and then through
mod_jk.conf file we
e them. Just
think about Apache as a aswitch that routes requests for different
content to different handles.
Serge Dubrouski wrote:
>
> On 9/8/06, jbashir <[EMAIL PROTECTED]> wrote:
>>
>> Configuring apache and tomcat via mod_jk is done by installing apache on
&
If both server share one IP using NameVirtualHost feature then there
is no way to have different certificates for them.
On 9/12/06, milktoast <[EMAIL PROTECTED]> wrote:
I have read up on using multiple SSL certs on one server but the thing that
no one addresses is how this works on a server beh
; %b"
NameVirtualHost 192.168.2.10
ServerName www.foo.com
ServerAlias foo.com www.foo.com
DocumentRoot /home/htdocs/foo
ErrorLog /usr/local/apache/logs/error_log
ServerName www.bar.com
ServerAlias bar.com www.bar.com
DocumentRoot /home/htdocs/bar
ErrorLog /usr/l
On 9/12/06, milktoast <[EMAIL PROTECTED]> wrote:
I am aware of this... thus my question how should it look to get two
certs on one server?
Look like we do not understand each other. Once more: THERE IS NO WAY
TO HAVE 2 CERTIFICATES ON ONE SERVER WITH ONE IP ADDRESS.
As I understand your c
t" section.
Then it should work.
On 9/12/06, milktoast <[EMAIL PROTECTED]> wrote:
Right,
Can I get a second IP address on the router and pass that traffic to a
second IP on the server and get it to work?
Serge Dubrouski wrote:
>
> On 9/12/06, milktoast <[EMAIL PROTECTED]>
You didn't say what platform you are on. Did you compile Apache from
source? Is it Linux RPM? Is it Solaris package? Is it Windows binary?
On 9/12/06, Roger Harrell <[EMAIL PROTECTED]> wrote:
I'm in the process of migrating servers. New server running Apache 2.2.2. It
didn't come with mod_ssl.so
You have that error because you don't have openssl installed on your system.
On 9/12/06, Lawrence Stefani <[EMAIL PROTECTED]> wrote:
Hi Roger,
I'm cross-compiling Apache 2.2.3 for MIPS under x86 Linux and just added
--enable-ssl to my ./configure line to use the built-in mod_ssl.
Unfortunately,
The you need to install/update mod_ssl rpm a well
(mod_ssl-2.2.2-1.2.i386.rpm). Config steps for mod_ssl for 2.2.X are
almost the same that for 2.0.XX
On 9/12/06, Roger Harrell <[EMAIL PROTECTED]> wrote:
Sorry. Fedora Core 5 with Apache updated by yum
Roger
>You didn't say what platform you
orrect.
Any ideas what is happening?
Serge Dubrouski wrote:
>
> That's possible. You have to have 2 VirtualHoosts in your httpd.conf
> (or ssl.conf, or vhosts.conf whatever you prefer), one per each IP
> (). Do not enable NameVirtualHosts for them. Place
> SSLCertificateFile
ProxyTimeout if you use P rewrite rules.
On 9/18/06, Mark <[EMAIL PROTECTED]> wrote:
Hi everybody,
I sometimes have problems with mod_rewrite timing out when the downstream
servers are not returning a response fast enough.
Is there a parameter to extend the timespan that the proxy/rewrite engi
It'll be really hard to help you without seeing your config files. At
least proxy and ssl part. Usually people use mod_rewrite and mod_proxy
for proxying front-end HTTPS requests to the backend servers. With
SSLProxyEngine on it works just fine.
On 9/18/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> w
First of all. It sounds like your backend application support HTTPS
protocol only and you are trying to open access to it through HTTP.
Are you sure that you want exactly this? Most probably your backend
applications send redirects to HTTPS for any HTTP requests. And Apache
just proxying them to t
Hello Everyone -
I have an Apache 2.2.3 server installed with mod_proxy and mod_ssl
configured that I use as a frontend server in Internet. I also have
iPlanet backend legasy server that runs on of our custom
applications. That application has embedded authentication based on
clients SSL Certifi
Andrew
- Original Message -
From: Serge Dubrouski <[EMAIL PROTECTED]>
Date: Tuesday, September 26, 2006 5:12 pm
Subject: [EMAIL PROTECTED] Proxy SSL and Client Certificates
To: users@httpd.apache.org
> Hello Everyone -
>
> I have an Apache 2.2.3 server installed with mod_
Plus of course SSLOptions +ExportCertsData that exports client
certificate data into env. The question is how to make mod_proxy to
send it down to backend server.
On 9/26/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
You aren't quite right. Your statement is right for crypting part
w
- Original Message -
From: Serge Dubrouski <[EMAIL PROTECTED]>
Date: Tuesday, September 26, 2006 9:04 pm
Subject: Re: [EMAIL PROTECTED] Proxy SSL and Client Certificates
To: users@httpd.apache.org
> You aren't quite right. Your statement is right for crypting part but
What kind of "real" server do you have on backend? Does it have static
content or dynamic? Could it be that your wrong links are generated on
backend by PHP/ASP/CGI or any other dynamic application that uses
$SEVER_NAME or some other variable to build absolute links?
On 9/28/06, Jeff DeFord <[EMA
nd
rewrite rules for every possible URL/directory structure combination
that exists on the real server.
Any help or direction would be greatly appreciated.
-=jeff
On 9/28/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
> What kind of "real" server do you have on backend? Does it
rewrite rules for every possible URL/directory structure combination
that exists on the real server.
Any help or direction would be greatly appreciated.
-=jeff
On 9/28/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
> What kind of "real" server do you have on backend? Does it h
lead into a huge performance lose.
On 9/29/06, Jeff DeFord <[EMAIL PROTECTED]> wrote:
Hmmm, interesting. So how do I get around this? I am perplexed to say
the least...
On 9/29/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
> I've tested kind of your configuration and e
Also take a look at this
http://httpd.apache.org/docs/2.2/mod/mod_ext_filter.html
It can be used for writing an output filter.
On 9/29/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
If I'm right about absolute links the best way to fix that is make
your backend server to produce rel
You set Require for your /. That means that Apache requieres
authentication for every request. Now here is simple description why
you have your problem:
1. Browser sends a request
2. Apache answers with 401 code: Authrization required
3. Browser asks user for a username and password and send it b
Can you post "connectors" part of your Tomcat's server.xml and your
workers.properties?
On 10/2/06, Durbha Murali - mdurbh <[EMAIL PROTECTED]> wrote:
Can anyone help me out with this please? I'm just completely stuck.
Thanks
From: Durbha Murali - md
tService.socket_keepalive=True
-----Original Message-
From: Serge Dubrouski [mailto:[EMAIL PROTECTED]
Sent: Monday, October 02, 2006 12:44 PM
To: users@httpd.apache.org
think that worker.ProspectService.socket_keepalive=True
will have any impact?
Thanks
-Original Message-
From: Serge Dubrouski [mailto:[EMAIL PROTECTED]
Sent: Monday, October 02, 2006 2:57 PM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] RE: Apache/Tomcat request hangs
intermittently
Sorry, I forgot to ask y
ht now is -
JkMount /bankers/* ProspectService
We are using Apache just as a pass-thru to the ProspectService. We are
not running any servlets or JSPs. I think the rest of the JKMount lines
can be ignored. Sorry about the confusion.
Thanks
Murali
-Original Message-
From: Serge Dub
The only way is upgrading to 2.2.3. It's a well known bug in 2.0.XX
that was fixed in 2.2.X
On 10/12/06, masro <[EMAIL PROTECTED]> wrote:
Hi List,
i do an update from Apache 2.0.54 to 2.0.59, now i've the following problem:
The following VHOST configuration dosent work, when i use POST request
355, i know
k will try the patch for 2.0.54 which hopefully works with 2.0.59, cant
update to 2.2.0 because of some third-party modules
regards
Serge Dubrouski schrieb:
> The only way is upgrading to 2.2.3. It's a well known bug in 2.0.XX
> that was fixed in 2.2.X
>
> On 10/12
HTTP is sessionless protocol so it needs KeepAlive feature to keep TCP
connection active. HTTPS connections are always active untill client
leaves your site.
On 10/13/06, Qingshan Xie <[EMAIL PROTECTED]> wrote:
Hi! All,
We have a 2.0.59 HTTPS server on Solaris 8. After
I turned on "KeepAliv
On 10/17/06, Joshua Slive <[EMAIL PROTECTED]> wrote:
On 10/17/06, Gregor Schneider <[EMAIL PROTECTED]> wrote:
> So what is the best practise to specify this NameVirtualHost-directive? In
> any file which contains the VirtualHost-directive (meaning one will contain
> it, the others not? Or in ht
On 10/17/06, Joshua Slive <[EMAIL PROTECTED]> wrote:
On 10/17/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
> On 10/17/06, Joshua Slive <[EMAIL PROTECTED]> wrote:
> > On 10/17/06, Gregor Schneider <[EMAIL PROTECTED]> wrote:
> > > > And in addition,
On 10/17/06, Joshua Slive <[EMAIL PROTECTED]> wrote:
On 10/17/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
> On 10/17/06, Joshua Slive <[EMAIL PROTECTED]> wrote:
> > On 10/17/06, Gregor Schneider <[EMAIL PROTECTED]> wrote:
> > > > And in addition,
On 10/19/06, Gregor Schneider <[EMAIL PROTECTED]> wrote:
Hi owen,
On 10/19/06, Boyle Owen <[EMAIL PROTECTED]> wrote:
> The question is usually asked by people who haven't thought long enough
> about why they want to use SSL. They think because it's encrypted on the
> wire, that's already pretty
On 10/19/06, Bill Angus <[EMAIL PROTECTED]> wrote:
In my Windows 2k environment, there was no way I could manage to get Apache
2 (any version) to listen to port 443 and serve SSL to multiple name-based
hosts or even to multiple ip based hosts.
Then you did something wrong. Because it is legal
Have you tried to use AJP connector instead of proxying?
On 10/31/06, Roger Hendrix at Baldor-IS <[EMAIL PROTECTED]> wrote:
Greetings:
I am trying to configure an Apache front-end Proxy Service to talk to a backend
Tomcat Server.
The Apache Server is:apache2-2.0.49-27.59
The Tomcat Server
Do you have openldap-devel rpm installed?
On 10/31/06, Quentin North <[EMAIL PROTECTED]> wrote:
John
Thanks for your reply
> -Original Message-
> From: John P. Dodge [mailto:[EMAIL PROTECTED]
>
> On Fri, 27 Oct 2006, Quentin North wrote:
>
> > Im trying to build apache 2.2.23 on Centos
ackages
openldap.i3862.2.13-6.4E
installed
openldap-clients.i3862.2.13-6.4E
installed
openldap-devel.i386 2.2.13-6.4E
installed
All in /usr/lib and /usr/include as far as I can tell.
> -Original Message-
> From: Serge Dubrous
support in apr-util is disabled.
Don't forget to run make clean before recompiling.
Regards.
On 11/1/06, Serge Dubrouski <[EMAIL PROTECTED]> wrote:
I'm not sure, but I think that there is a conflict between
apr-utl-devel rpm installed on your CentOS box and apr delivered with
Apac
On 11/8/06, Benjamin Cuthbert <[EMAIL PROTECTED]> wrote:
All
Can you run two SSL virtual host URLS on the same IP address and have one
running with no client certificate authentication and one running without
It's possible if having one VirtualHost complaining about wrong Server
Certificate i
On 11/8/06, Benjamin Cuthbert <[EMAIL PROTECTED]> wrote:
They does not sound like such a good
idea, what if i bound the new virtual host to a new IP address would i
then be able to
run both in different modes ?That sounds much better. And you will be able to have different Server certificates and
ideas about the reason for the such strange
behavior?
Thanks.
Serge Dubrouski.
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe
What is the backend serverf? If it's Tomcat or JBoss I'd suggest to
use AJP connector that allows to pass client certificates to backend.
On 11/22/06, Lucuk, Pete <[EMAIL PROTECTED]> wrote:
Hello,
I currently have a HTTPS reverse proxy setup and it works like a champ!
I am trying to pass the c
er is a 3.x version of Jboss that uses Jetty as the
Servlet engine.
Can you use AJP with Jetty?
If not, is there some simple way to yank out the new lines in
SSL_CLIENT_CERT on the reverse proxy?
thanks
>-Original Message-
>From: Serge Dubrouski [mailto:[EMAIL PROTECTED]
>Sent:
Configure you vhosts to log to separate files and use any kind of
standard stat tools: awstats, analyze, etc. Also as far as I remember
awstats allows you to configure building reports for particular site
form common log files.
On 11/27/06, Scott Wilcox <[EMAIL PROTECTED]> wrote:
hey folks.
On 11/28/06, Lucuk, Pete <[EMAIL PROTECTED]> wrote:
I am trying to perform the following...
Browser_client_with_client_certificate<--https-->apache_with_mod_jk<--ht
tps-->Jetty
Also, the browser client is passing a client certificate that I want
Jetty to have access to perform A&A.
Browser ve
k stuff?
I'd put mod_jk stuff before mod_ssl stuff. But I don't think that it matters.
Thanks for your responses, I appreciate your help
>-Original Message-
>From: Serge Dubrouski [mailto:[EMAIL PROTECTED]
>Sent: Tuesday, November 28, 2006 10:53 AM
>To: users
On 11/28/06, Lucuk, Pete <[EMAIL PROTECTED]> wrote:
>-Original Message-
>From: Serge Dubrouski [mailto:[EMAIL PROTECTED]
>Sent: Tuesday, November 28, 2006 11:18 AM
>To: users@httpd.apache.org
>Subject: Re: [EMAIL PROTECTED] Apache, mod_jk, client
>certificates,
>> >> acutual mod_jk stuff?
>> >>
>> >
>> >I'd put mod_jk stuff before mod_ssl stuff. But I don't
>think that it
>> >matters.
>>
>> I will try it and see if it works, once again, thank you
>>
>> >
>> >
Your client submits certificate signed by CA which certificate you
don't have in your SSLCACertificatePath. Actually it looks like you
incorrectly configured it. You have:
SSLCACertificateFile /etc/httpd/conf/ssl.crt/root.crt
SSLCACertificatePath /etc/httpd/conf/ssl.crt
You should use just one o
ED] Apache, mod_jk, client
>certificates, and Jetty
>
>
>
>>-Original Message-
>>From: Serge Dubrouski [mailto:[EMAIL PROTECTED]
>>Sent: Tuesday, November 28, 2006 12:08 PM
>>To: users@httpd.apache.org
>>Subject: Re: [EMAIL PROTECTED] Apache, mod_jk, c
So you have a bunch of .cer files. Then you have to use
SSLCACertificatePath and links with hashes as names. It can't be just
one file with once certificate unless all your client have
certificates signed by one CA.
On 11/28/06, Bill Tangren <[EMAIL PROTECTED]> wrote:
Serge Dubr
On 11/28/06, Bill Tangren <[EMAIL PROTECTED]> wrote:
Serge Dubrouski wrote:
> Your client submits certificate signed by CA which certificate you
> don't have in your SSLCACertificatePath. Actually it looks like you
> incorrectly configured it. You have:
>
> SSLCACerti
1 - 100 of 135 matches
Mail list logo
