Re: [users@httpd] mod_headers: REQUEST_URI for static files

On Sat, Jun 6, 2015 at 1:38 PM, Christian Weiske wrote: > > I'm trying to do that with mod_header and the following configuration: > >> Header append Link '; rel="self"' You could use %{REQUEST_URI}s (a trailing s instead of e) if mod_ssl is loaded (LoadModule).

Re: [users@httpd] mod_headers: REQUEST_URI for static files

On Sun, Jun 7, 2015 at 1:24 PM, Christian Weiske wrote: > > $ curl -I example.org/ > ... > Link: ; rel="self" > > But I do not get the original request URI ("/" only), which is what I'm > looking for. If you want the original URI instead of the DirectoryIndex, you pr

Re: [users@httpd] Problem with accessing Document Root (?)

On Sun, Jun 7, 2015 at 5:44 PM, Stephen wrote: > Thank you. adding the file extension allowed some progress to be made. > > Not I get this in my browser: > > Forbidden You possibly need to give rights to /home/stephen/www, eg: Options Indexes FollowSymLinks AllowOverride None Requir

Re: [users@httpd] Problem with accessing Document Root (?)

On Sun, Jun 7, 2015 at 4:17 PM, Stephen wrote: > > In my virtual-sites file I have: > > > ServerAdmin webmaster@localhost > DocumentRoot /home/stephen/www/roissy.ca/public_html > ServerName www.roissytest.ca > ErrorLog /home/stephen/www/roissy.ca/public_html/error.log > Transf

Re: [users@httpd] Problem with accessing Document Root (?)

On Sun, Jun 7, 2015 at 10:12 PM, Yann Ylavic wrote: > On Sun, Jun 7, 2015 at 5:44 PM, Stephen wrote: >> Thank you. adding the file extension allowed some progress to be made. >> >> Not I get this in my browser: >> >> Forbidden > > You possibly need

Re: [users@httpd] Issue with Mutual SSL Authentication

On Tue, Jun 9, 2015 at 9:29 AM, Karan Mengi wrote: > > The problem appears to be that HTTPD does not include the issuer details > while presenting its certificate to the server, so probably its failing > chain verification. We have tried many options found on the net like > including the flag “SSL

Re: [users@httpd] RE: Apache Reverse Proxy deletes from code

On Tue, Jun 16, 2015 at 8:58 AM, Cruz Villanueva, Juan wrote: > > No one has seen this issue (or similar one) before? Maybe https://bz.apache.org/bugzilla/show_bug.cgi?id=56287 ? Regards, Yann. - To unsubscribe, e-mail: users-u

Re: [users@httpd] VirtualHosts, SSLProtocol, and SSLCipherSuite

On Tue, Jun 16, 2015 at 10:48 PM, karl karloff wrote: > I am attempting to set up more than one subdomain on :443 in this example. > > so something like > sslv3.example.com:443 responds with SSLv3 only > tlsv1.example.com:443 responds with TLSv1.0 only > ... > > I wasn't aware that could be achiev

Re: [users@httpd] VirtualHosts, SSLProtocol, and SSLCipherSuite

Maybe mod_gnutls or libressl (working with patched mod_ssl, available in trunk but not yet backported) can do better here, I don't know enough about them to tell. Regards, Yann. On Wed, Jun 17, 2015 at 12:37 AM, karl karloff wrote: > So that does not actually help in the case of SSLv3 because SN

Re: [users@httpd] using RedirectMatch and regular expressions

On Wed, Jun 24, 2015 at 7:48 AM, Meedendorp, Bert wrote: > > I'm trying the next line: > RedirectMatch > /sap/opu/odata/sap/ZVPOSTREAD_SRV/AktepostSet(.*(\bBSL01\b).*) > http://10.103.140.62/BSL01_X_1197.json > ( This gives no match !? ) > > The incoming url looks like: > > http://10.103

Re: [users@httpd] advice on using rotatelogs, CusomLog etc

Hi, On Thu, Jun 25, 2015 at 11:04 AM, Russell Stanfield wrote: > > I tried adding this: > > ErrorLog "|/usr/sbin/rotatelogs -f -c > /apps/squid/var_log_httpd/error_log.%Y.%m.%d.%H.%M 86400" common > > But when I stopped/started Apache I got this error: > > Starting httpd: Syntax error on line 55

Re: [users@httpd] unsubscribe

On Wed, Jul 8, 2015 at 9:48 AM, Mark VLIZ wrote: > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org Just do the above. - To unsubscribe, e-mail:

Re: [users@httpd] lookaround in mod_substitute pattern

Hi Zimmi, On Fri, Jul 10, 2015 at 1:26 PM, Zimmi wrote: > > Are only lookahead (?=foo) supported in mod_substitute, and not the other > (negative lookahead, lookbehind and negative lookbehind) ? > Other syntax or did I miss something ? A lookbehind assertion needs its subject to be placed *after

Re: [users@httpd] Cannot get ExecCGI to work with userdir apache 2.4.6

On Mon, Jul 20, 2015 at 5:09 PM, Tucker, Doug wrote: > > You may also use DirectoryMatch ([1]) to be more precise/restrictive about root paths, by using regular expressions. [1] http://httpd.apache.org/docs/2.4/mod/core.html#directorymatch --

Re: [users@httpd] Re: Problem in chunked response

On Tue, Jul 21, 2015 at 10:31 AM, shailender wrote: > > Is there any configuration available in apache which can be applied to send > the chunk as it is to client. mod_proxy won't forward chunk-extensions, and it is not required to (see [1]) since they are hop-by-hop specifications (per connectio

Re: [users@httpd] Re: Problem in chunked response

On Wed, Jul 22, 2015 at 8:58 AM, skbarik wrote: > > We are very heavily dependant upon the extension to indicate certain status > to client. > and unfortunately we dont have any control over backend to change this. > Is there way to configure mod proxy to not discard this. No, mod_proxy handles C

Re: [users@httpd] Apache 2.4: SSLProtocol directive not taking effect

On Wed, Jul 22, 2015 at 11:14 PM, Hébergement web ArbreBinaire.com wrote: > Hi, > > We've been stumped by a configuration problem of our Apache 2.4 server, on > CentOS 7. > > Our goal is to prevent the Poodle vulnerability by removing the SSLv3 > protocol. > > But it seems this directive is not ta

Re: [users@httpd] Re: Http trailers in chunked requests

On Thu, Jul 23, 2015 at 11:03 AM, Sachin Shetty wrote: > > From the change list, I found > that you added support for MergeTrailers in 2.4.11 - any idea on how I could > make it work? I just need apache to let the trailers pass through to the > upstream haproxy, I am not processing them in mod hea

Re: [users@httpd] SSL Session Id lost?

On Thu, Jul 23, 2015 at 3:50 PM, Alex Soto wrote: > > It seems that everything is configured correctly since sometimes works. Have > you ever found something similar or knows what it can be happening? Do you > think that maybe the problem is on client (browser) side? > > We say that there is somet

Re: [users@httpd] Badboy load testing of Apache

On Fri, Aug 28, 2015 at 9:49 PM, Rose, John B wrote: > Does anyone have any experience using a tool called Badboy for load testing > of Apache? > > Comments? Good? Bad? FWIW, given the name I'd say the latter :p - To unsubscribe

Re: [users@httpd] ECC Curve Order Preference

On Wed, Sep 2, 2015 at 1:48 PM, Jason - wrote: > I have Ubuntu 15.04 with Apache 2.4.10 (OpenSSL 1.0.1f) and I would like to > configure Apache ssl.conf specifically for "ECC Curve Order", as on Windows > 10, where I select the preferred order of Elliptic Curves. I have two > questions related to

Re: [users@httpd] EC Parameters

On Thu, Sep 3, 2015 at 8:33 AM, Jason - wrote: > Suppose that I have an EC curve name - let's say secp521r1. How do I insert > it into my first certificate file so that Apache can accept it? This > functionality is shortly described here ( > http://httpd.apache.org/docs/2.4/mod/mod_ssl.html in SSL

Re: [users@httpd] SSLProxyMachineCertificatePath certificate selection

On Tue, Sep 1, 2015 at 12:54 AM, Andika Daud wrote: > > Does anyone how SSLProxyMachineCertificatePath cert selection works? I mean > how does the proxy server knows which certificate to use/present to the > remote servers? By matching its certificates' issuer against the CA given by the peer.

Re: [users@httpd] Convert mod_jk to mod_proxy

Hello, On Thu, Sep 3, 2015 at 10:13 AM, aparna Puram wrote: > > Can I use as following? > > ProxyPass /*.png ! ProxyPassMatch instead. > ProxyPassReverse /*.png ! Not needed (makes no sense). Regards, Yann. - To unsubscribe,

Re: [users@httpd] Convert mod_jk to mod_proxy

On Thu, Sep 3, 2015 at 10:36 AM, Yann Ylavic wrote: > > On Thu, Sep 3, 2015 at 10:13 AM, aparna Puram wrote: >> >> ProxyPass /*.png ! > > ProxyPassMatch instead. Preferably, ProxyPassMatch \.png$ !

Re: [users@httpd] Convert mod_jk to mod_proxy

On Thu, Sep 3, 2015 at 11:47 AM, aparna Puram wrote: > So, This from uri woker properties > > > !/*.png=* works same as ProxyPassMatch \.png$ ! > > > ? I don't know mod_jk, but if the purpose is to not forward png requests to the backend then yes (those will be served locally).

Re: [users@httpd] RE: Mod_cluser with JBOSS EAP6.3

On Thu, Sep 3, 2015 at 12:09 PM, Narasimha Rao Gajje wrote: > Did anyone please help me on this. mod_cluster is a third-party module, so you may have more chance on their mailing-list/forum. Regards, Yann. - To unsubscribe, e-m

Re: [users@httpd] Difference between Apache 2.2.4 Vs 2.2.25

On Fri, Sep 4, 2015 at 7:54 PM, Yimin Huang wrote: > > I'm new to this mailing list. Please don't hijack threads, open a new one with a relevant subject. Regards, Yann. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.o

Re: [users@httpd] Errors when installing apache 2.4.16 on Linux

Hi, On Fri, Sep 4, 2015 at 11:46 PM, Yimin Huang wrote: > > When I did "make", I got the following > error in exports.c. Did you try "make clean && make"? Regards, Yann. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache

Re: [users@httpd] Re: Single Sign-On windows AD authentication with Windows Apache web server

Hi, On Mon, Sep 7, 2015 at 7:53 AM, Ashish Mistry wrote: > I have gone through many articles by searching on Google. I have tried > searching the below terms > - "Apache web server single sign-on for window AD server" > - "Single sign-on for windows AD for apache web server installed on windows >

Re: [users@httpd] mod_cache + worker mpm + php-fpm mangling response headers on cache misses

Hi Ed, On Tue, Sep 15, 2015 at 10:10 PM, Edward Lu wrote: > This looks like a bug. I believe I've tracked down the cause to a single > errant line in the cache module; can you apply the attached patch to 2.4.x > and see if it fixes the problem? I think the patch would also need this hunk: Index

Re: [users@httpd] VirtualHost configuration not working?

Hi, can you provide the output of "apachectl -S"? You may hide real names with site1, site2, ... but please keep one name per orinal name. Regards, Yann. On Tue, Sep 29, 2015 at 8:07 PM, Felix Rubio Dalmau wrote: > Hi Marat, httpd-users :) > > > > I have updated the configuration of my apache.

Re: [users@httpd] VirtualHost configuration not working?

On Sat, Oct 3, 2015 at 4:25 PM, Felix Rubio Dalmau wrote: > > After this change, if I ping site3.example.com, the address is properly > resolved to the vpn (10.8.0.1). Then, from Firefox, I access > http://site3.example.com and the URL is magically converted into > https://site3.example.com, an

Re: [users@httpd] Need Open SSL

Hello, you can download binaries for Windows by following: http://httpd.apache.org/docs/current/platform/windows.html#down Regards, Yann. On Tue, Oct 6, 2015 at 8:52 AM, Mahendiran Vel wrote: > Hi All, > > I'm going to use Apache openssl to my project(windows Server). when i verify > Apache si

Re: [users@httpd] mod_rewrite

Hello, On Tue, Oct 13, 2015 at 12:27 AM, Earl Terwilliger wrote: > > if I want to block anyone manually typing in a link (no referer) + > hotlinking (probably has a referer). Do i need the [OR] on the 1st > RewriteCond and not the 2nd one? It seems to work with OR on both > conditions. If you wa

Re: [users@httpd] Chunked transfer delay with httpd 2.4 on Windows.

On Mon, Oct 19, 2015 at 11:44 PM, Andy Wang wrote: > > Spdficially, note the 5 second delay between the first segment (No. 1854) > and the second data segment (1856). Does it correspond to the KeepAliveTimeout configured on the httpd side? (Note that if you did not configure it, the default value

Re: [users@httpd] Chunked transfer delay with httpd 2.4 on Windows.

On Tue, Oct 20, 2015 at 12:15 AM, Andy Wang wrote: > > On 10/19/2015 05:08 PM, Yann Ylavic wrote: >> >> On Mon, Oct 19, 2015 at 11:44 PM, Andy Wang wrote: >>> >>> >>> Spdficially, note the 5 second delay between the first segment (No. 1854) >>

Re: [users@httpd] Common configuration-set for all VirtualHost's

On Thu, Oct 22, 2015 at 12:05 AM, Binyamin <7rai...@inbox.lv> wrote: > > Does Apache (httpd) has compatibility to define configuration-set for all > VirtualHost's like: You can have a look at mod_macro: https://httpd.apache.org/docs/2.4/mod/mod_macro.html. Regards, Yann.

Re: [users@httpd] Persistent proxied connections with Apache 2.4.x?

Hi Jim, sorry for the late, I'm not much online these days. On Sun, Oct 25, 2015 at 9:54 PM, o haya wrote: > > - With respect to proxying NTLM authentication, does the "aside connections" > functionality that was mentioned earlier accomplish the same thing as using > the "Proxy keepalive=On and

Re: [users@httpd] Persistent proxied connections with Apache 2.4.x?

Hi Jim, On Tue, Oct 27, 2015 at 1:57 AM, o haya wrote: > > First of all, as a kind of an aside remark (sorry for the "pun" :)), from my > testing, it appears that if I have "ProxySet keepalive=On" inside a > , then the requests to the backend all have "Connection: > Keep-Alive" in the requ

Re: [users@httpd] Apache closes the connection after receiving a request.

On Tue, Nov 3, 2015 at 12:47 PM, Novi Jinx wrote: > > Recently I have experienced a behaviour of Apache on my PROD environment that > I could not explain. My Apache decided to close a TCP connection right after > successfully receiving a request (sent ACK back to a client). With the > KeepAlive

Re: [users@httpd] Persistent proxied connections with Apache 2.4.x?

Hi Jim, disclaimer: I'm not an NTLM expert... On Tue, Nov 3, 2015 at 3:04 PM, o haya wrote: > > I think that other info that binds to the authenticated user is at the > SharePoint application level (maybe persisted in the app on the client side) > because it doesn't look like any cookies or he

Re: [users@httpd] Getting "connection refused" Apache 2.4

On Tue, Nov 17, 2015 at 12:23 AM, o haya wrote: > > This is with the as-built Apache configuration settings (i.e., I haven't > tried tweaking them). Please share your settings for ServerLimit, MaxRequestWorkers (was MaxClients in 2.2.x), MaxSpareThreads, MinSpareThreads and MaxConnectionsPerChild

Re: [users@httpd] Getting "connection refused" Apache 2.4

On Tue, Nov 17, 2015 at 1:11 AM, Yann Ylavic wrote: > On Tue, Nov 17, 2015 at 12:23 AM, o haya wrote: >> >> This is with the as-built Apache configuration settings (i.e., I haven't >> tried tweaking them). > > Please share your settings for [...] > MaxSpareThre

Re: [users@httpd] Redirect[Match] behind load-balancer switching protocols

On Tue, Nov 17, 2015 at 10:06 PM, Christopher Schultz wrote: > > Is there another environment variable or other setting that I need to > use in order to override httpd's protocol-detection? You could specify: Protocol https in the corresponding VirtualHost section. Regards, Yann. --

Re: [users@httpd] Re: mpm-event, ServerLimit and ThreadsPerChild on multicore systems

Hello, it probably depends on your workload and stability/scalability expectations. >From my testing, the more threads vs processes, the better for performances and memory footprint. But also more impacted connections when a problem occurs (process crash)... Regards, Yann. On Fri, Nov 20, 2015

Re: [users@httpd] explicitly including other ciphers for use with https

On Tue, Dec 8, 2015 at 8:51 PM, Ron Croonenberg wrote: > > This is just a bunch of hardware, with connections between it's nodes. > The whole thing/cluster is not connected to anything 'internet', not even > LAN. I worry about those connections being secure as much as I worry about > security be

Re: [users@httpd] ProxyPass + Redirect

On Thu, Dec 17, 2015 at 8:14 AM, Marat Khalili wrote: > Crude, but what about: > > ProxyPassMatch "^/foo/(.+)$" "http://localhost:8009/foo/$1"; or (along the lines): ProxyPassMatch ^/foo/((?!index\.html$).+)$ http://localhost:8009/foo/$1 Regards, Yann. --

Re: [users@httpd] Help with Apache configuration

Hi, On Fri, Dec 18, 2015 at 2:35 PM, chetan jain wrote: > > #For app-1 > >RewriteRule ^/app1$ /app1/ [R] >RewriteRule ^/app1/(.*) /app/WebObjects/app.woa/$1 [P] >ProxyPass /app/WebObjects/app.woa/ > http://host_name1:app1_port/app/WebObjects/app.woa/ >ProxyPassReverse /app/WebObj

Re: [users@httpd] Help with Apache configuration

On Tue, Dec 29, 2015 at 3:16 PM, Yann Ylavic wrote: > > You possibly need something like: > > RewriteRule ^/app1/(.*) > http://host_name1:app1_port/app/WebObjects/app.woa/$1 [P] > RewriteRule ^/app2/(.*) > http://host_name2:app2_port/app/WebObjects/app.woa/$1 [P] &g

Re: [users@httpd] unexpected behaviour of default host

On Tue, Dec 29, 2015 at 8:49 PM, Hajo Locke wrote: > > > Am 29.12.2015 um 20:07 schrieb Eric Covener: >> >> On Tue, Dec 29, 2015 at 2:05 PM, Hajo Locke wrote: >>> >>> In Apache 2.2 we used additional "Servername *", but with 2.4 it is not >>> allowed to use wildcards with Servername-Directive. >>

Re: [users@httpd] Apache stops serving pages

On Tue, Jan 12, 2016 at 4:32 AM, Jim Walls wrote: > > I'm running out of ideas. > > Anybody else? Did you try Kevin's proposal, that is : AcceptFilter http none AcceptFilter https none ? Regards, Yann. - To unsubscribe,

Re: [users@httpd] Apache stops serving pages

On Tue, Jan 12, 2016 at 5:40 PM, Jim Walls wrote: > Yann Ylavic asked: >> Did you try Kevin's proposal, that is : >> AcceptFilter http none >> AcceptFilter https none > > > I don't remember seeing that message, so no I didn't. > > However, If t

Re: [users@httpd] Frequently updating static content

On Wed, Jan 20, 2016 at 9:36 PM, David Rush wrote: > I'm using Apache 2.4 (on Linux) to serve some static files that are > re-created and re-written every two minutes. The nature of our site is that > we get hammered with high request rates from time to time (thousands of > requests per minute at

Re: [users@httpd] How to build Apache with FIPS mode capable?

Hi, On Wed, Feb 10, 2016 at 11:14 PM, Christopher Schultz wrote: > > To those down and dirty with httpd: is there a reason not to > UNCONDITIONALLY build against OpenSSL's FIPS_mode_set? If the library > doesn't support FIPS mode, it will complain about it and refuse to > enter FIPS mode. The htt

Re: [users@httpd] Block access to "OPTIONS *"

Hello, On Thu, Feb 11, 2016 at 10:56 PM, Toomas Aas wrote: > > Approach 1: > - > RewriteCond %{REQUEST_METHOD} OPTIONS > RewriteRule .* - [R=405,L] > - You also need to set: RewriteOptions AllowAnyURI for this to work. Bu

Re: [users@httpd] Block access to "OPTIONS *"

On Fri, Feb 12, 2016 at 10:47 AM, Daniel wrote: > The typical way to block OPTIONS in 2.2 does not need mod_rewrite at all > IIRC. You just add this in your location/directory: > > deny from all > > > and will return 403 if you try OPTIONS method there That would

Re: [users@httpd] Block access to "OPTIONS *"

On Fri, Feb 12, 2016 at 2:38 AM, Spork Schivago wrote: > Sorry to put in here, but is there away for me to test to see if my server > is affected by this OPTIONS issue? OPTIONS is not an issue, could you elaborate? > I have cPanel / WHM and ConfigServer > Firewall installed and just about every

Re: [users@httpd] Howto accept only one connection

On Fri, Feb 19, 2016 at 1:32 PM, Oliver Graute wrote: > > my requirement is: > > "The Apache server listens on port 443i (https). It must accept only one > connection at a time on this port" > > so its one socket opened between the client and the server. I guess "ServerLimit 1" would do it (alon

Re: [users@httpd] blocking xmlrpc.php

Hi, On Tue, Mar 8, 2016 at 11:36 AM, Miguel González wrote: > > I suspect that the previous connections trying to explote xmlrpc.php are > now just being logged and shown as "Waiting for connection". > > Maybe the iptables rule should be different? Did you try REJECT instead of DROP? Regards, Y

Re: [users@httpd] Lots of messages "[ssl:warn] Resource deadlock avoided: AH02026: Failed to acquire SSL session cache lock"

On Tue, Mar 8, 2016 at 4:44 PM, hildegard meier wrote: > OS: > Ubuntu 14.04 LTS > > Kernel: > 3.13.0-79-generic x86_64 > > Apache: > 2.4.7-1ubuntu4.5 What's the output of: # apachectl -V ? - To unsubscribe, e-mail: users-unsubsc

Re: [users@httpd] Lots of messages "[ssl:warn] Resource deadlock avoided: AH02026: Failed to acquire SSL session cache lock"

Hi, On Wed, Mar 9, 2016 at 2:18 PM, Hiwot Wonago wrote: > hello everyone, please don't hijack threads, just open a new one. Regards, Yann. - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e

Re: [users@httpd] Lots of messages "[ssl:warn] Resource deadlock avoided: AH02026: Failed to acquire SSL session cache lock"

On Thu, Mar 10, 2016 at 11:09 AM, Hildegard Meier wrote: > Reading > https://httpd.apache.org/docs/2.4/en/mod/core.html#mutex > > I guess, expected behaviour of active directive > > Mutex file:${APACHE_LOCK_DIR} default Does it come from Ubuntu? If so, I don't any modern Linux should configure th

Re: Re: [users@httpd] Lots of messages "[ssl:warn] Resource deadlock avoided: AH02026: Failed to acquire SSL session cache lock"

On Thu, Mar 10, 2016 at 4:14 PM, Hildegard Meier wrote: > >> > Mutex file:${APACHE_LOCK_DIR} default >> >> Does it come from Ubuntu? >> If so, I don't any modern Linux should configure the "file" mutex >> mechanism by default, and you could possibly report it... > > Yes, that is the entry of Ubunt

Re: [users@httpd] Unable to set up virtual hosts on Mac

On Mon, Mar 21, 2016 at 1:31 PM, Roparzh Hemon wrote: > > Contents of /private/etc/apache2/extra/httpd-vhosts.conf file : [] > > > ServerName strawberry.com > ServerAlias www.strawberry.com > DocumentRoot "/Users/myusernamehere/Sites/strawberry" > ErrorLog "/private/var/log/apache

Re: [users@httpd] Unable to set up virtual hosts on Mac

On Tue, Mar 22, 2016 at 9:15 AM, Yann Ylavic wrote: > > Here you probably need something like: > > Sorry, without the trailing /, ie: and with the path/name you finally chose for you site... > Require all granted > DirectoryIndex index.html >

Re: [users@httpd] Unable to set up virtual hosts on Mac

On Mon, Mar 21, 2016 at 1:31 PM, Roparzh Hemon wrote: > > Contents of /private/etc/apache2/httpd.conf file : [] > > User myusernamehere > Group staff It's usually not a good idea to have the HTTP server own (and be able to write to) the files/directory it serves. So you should probably make http

Re: [users@httpd] Unable to set up virtual hosts on Mac

On Tue, Mar 22, 2016 at 10:06 AM, Roparzh Hemon wrote: > On Tue, Mar 22, 2016 at 9:56 AM, Yann Ylavic wrote: >> It's usually not a good idea to have the HTTP server own (and be able >> to write to) the files/directory it serves. >> >> So you should probably make

Re: [users@httpd] TLSv1.2

On Tue, Mar 29, 2016 at 6:03 PM, Leonay Wynn wrote: > I have added ./configure --prefix=/apps/httpd --enable-ssl > --with-ssl=/usr/local/ssl --with-mpm=worker --enable-module=headers > --enable-shared=headers > > my mod_headers.so is not being generated with this. I tried to copy over the > mod.so

Re: [users@httpd] .so modules not being created Apache 2.4.18

On Tue, Mar 29, 2016 at 7:52 PM, Leonay Wynn wrote: > I need to upgrade from 2.2 to to 2.4 > > i used ./configure --prefix=/apps/httpd --enable-ssl > --with-ssl=/usr/local/ssl --with-mpm=worker --enable-module=headers > > as well as > ./configure --prefix=/apps/httpd --enable-so --enable-ssl > -

Re: [users@httpd] .so modules not being created Apache 2.4.18

On Tue, Mar 29, 2016 at 8:52 PM, Yann Ylavic wrote: > On Tue, Mar 29, 2016 at 7:52 PM, Leonay Wynn wrote: >> I need to upgrade from 2.2 to to 2.4 >> >> i used ./configure --prefix=/apps/httpd --enable-ssl >> --with-ssl=/usr/local/ssl --with-mpm=worker --enable-modu

Re: [users@httpd] .so modules not being created Apache 2.4.18

On Tue, Mar 29, 2016 at 9:18 PM, Leonay Wynn wrote: > make depend results: You still need "make && make install" after "make depend". - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail:

Re: [users@httpd] .so modules not being created Apache 2.4.18

On Tue, Mar 29, 2016 at 9:51 PM, Leonay Wynn wrote: > ok did that and make got an error. is it telling me to recompile openssl > with the -fPIC option?? > > /usr/bin/ld: /usr/local/ssl/lib/libssl.a(s3_srvr.o): relocation R_X86_64_32 > against `a local symbol' can not be used when making a shared o

Re: [users@httpd] MPM Worker : Two processes launched with no activity

On Thu, Mar 31, 2016 at 10:46 AM, Sylvain Goulmy wrote: > > I'm currently using apache 2.4.17 on RHEL with the worker mode configured > this way : > > - ThreadLimit : 200 > - ServerLimit : 50 > - ThreadsPerChild : 50 > - MaxRequestWorkers : 150 > - MinSpareThreads : 10 > - MaxSpareThreads : 80 > -

Re: [users@httpd] MPM Worker : Two processes launched with no activity

On Thu, Mar 31, 2016 at 1:12 PM, Sylvain Goulmy wrote: > Hi Yann, > > Two children processes. Did you configure ListenCoresBucketsRatio? - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mai

Re: [users@httpd] Debian way or standard

On Fri, Apr 1, 2016 at 1:02 PM, rap wrote: > > The Debian style for Apache2 configuration is different from the standard > version. Are there reasons why I shouldn't/couldn't use the standard Apache > version from apache.org on top of Debian instead of the Debian version > packages? I'd rather use

Re: [users@httpd] MPM Worker : Two processes launched with no activity

On Fri, Apr 1, 2016 at 9:57 AM, Sylvain Goulmy wrote: > > No i don't use that directive, here is the extract of the running > configuration : OK, actually this is caused by the introduction of Listeners Buckets (SO_REUSEPORT handling), precisely in 2.4.17. Before we used to require MinSpareThrea

Re: [users@httpd] MPM Worker : Two processes launched with no activity

On Fri, Apr 1, 2016 at 6:52 PM, Sylvain Goulmy wrote: > Thanks for your analysis Yann, i'll stay tuned on the dev mailing list. I committed [1], will wait a bit for others to review it and then propose a backport. Regards, Yann. [1] http://svn.apache.org/r1737447 --

Re: [users@httpd] Self-compiled httpd and OpenSSL: Trying to start httpd without using LD_LIBRARY_PATH

On Thu, Apr 7, 2016 at 5:21 PM, Poggenpohl, Daniel wrote: > > LDFLAGS="-L$OPENSSLDIR/lib -R $OPENSSLDIR/lib" I don't know which compiler you are using, but gcc's -R is not working correctly (on Linux at least), whereas "-Wl,-rpath,$OPENSSLDIR/lib" is... Regards, Yann. --

Re: [users@httpd] Self-compiled httpd and OpenSSL: Trying to start httpd without using LD_LIBRARY_PATH

On Fri, Apr 8, 2016 at 3:01 PM, Poggenpohl, Daniel wrote: > > Then I use my new shiny command to remove the global_symbol_pipe bug in the > libtool script: > LIBTOOL=/moodle/installers/httpd-2.4.18/srclib/apr/libtool; sed > '/export_symbols_cmds.*global_symbol_pipe/s/ | \\\$global_symbol_pipe//'

Re: [users@httpd] Not able to make .so file during install apache-2.4.18

Hello Hemant, On Tue, Apr 12, 2016 at 10:58 AM, Hemant Chaudhary wrote: > While installing apache-2.4.18 on Non Stop HP, I am not able to create .so > file(shared file) which is required in httpd.conf. It is creating '.a ' > file in modules but not ' .so ' . Please help me through this. Did yo

Re: [users@httpd] Not able to make .so file during install apache-2.4.18

Hi, On Wed, Apr 13, 2016 at 9:15 AM, Hemant Chaudhary wrote: > > CFLAGS="-Wextensions -Wv -D__TANDEM"; export CFLAGS > "./configure" \ > "--prefix=/home/hemant/testC/apache" \ > "--with-included-apr" \ > "--with-pcre=/home/hemant/testC/apache/httpd-2.4.18/srclib/pcre/pcre2-config" > \ > "--enabl

Re: [users@httpd] Not able to make .so file during install apache-2.4.18

On Wed, Apr 13, 2016 at 10:39 AM, Yann Ylavic wrote: > Does adding --enable-so=yes make a difference? Otherwise, please attach your config.log file. > > Regards, > Yann. - To unsubscribe, e-mail: us

Re: [users@httpd] Not able to make .so file during install apache-2.4.18

On Wed, Apr 13, 2016 at 10:56 AM, Hemant Chaudhary wrote: > Here is the config.log Possibly the same file with --enable-so=yes configured? - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-m

Re: [users@httpd] Mod_Status : Empty Client / Protocol / Vhost / Request Columns

On Wed, Apr 13, 2016 at 6:53 PM, Ken wrote: > I really hope that this is a bug and not "now working as intended". Thanks for reporting, fixed in [1], will propose a backport to the next 2.4 release. Regards, Yann. [1] http://svn.apache.org/r1739008 -

Re: [users@httpd] Apache proxy keeps cache directory empty

On Fri, Apr 15, 2016 at 11:02 PM, Bjoern Voigt wrote: > > Here is my Apache proxy configuration. [] > > > > CacheRoot /var/cache/apache-proxy > CacheEnable disk / This prevents caching of forward-proxy URLs since they do not start / (but rather http://). Can you try: CacheEna

Re: [users@httpd] Restart or Reload after changing MaxClients and ServerLimit

On Mon, Apr 25, 2016 at 8:00 PM, Cohen, Laurence wrote: > Hi, I really appreciate your response. What I'd like to know is, how do I > look up this > information on my own? > I use this mailing list generally as a last resort when I can't find the > answer myself. > In the case, I did a lot of r

Re: [users@httpd] "DSO load failed" when using mod_authn_dbm for Berkeley DB

On Thu, May 12, 2016 at 10:22 PM, Tianyin Xu wrote: > > I'm using all the latest versions of httpd, apr, and apr-util: > httpd-2.4.20 > apr-1.5.2 > apr-util-1.5.4 > > and I build the binaries using, > $ ./configure --with-included-apr --enable-load-all-modules > > It seems I failed to build "apr-u

Re: [users@httpd] mod_proxy and DNS resolving

Hi Luca, On Mon, May 23, 2016 at 2:21 PM, Luca Toscano wrote: > > I replied to the comment that you pointed out with Jim's answer and I > updated the trunk documentation with a note about DNS resolution: > > http://httpd.apache.org/docs/trunk/mod/mod_proxy.html#workers > > HTML diff only: > http:

Re: [users@httpd] Issues migrating Weblogic proxies from Sun One 6.1 to Apache 2.4

On Fri, Jul 1, 2016 at 12:49 AM, Joe Muller wrote: > > One interesting thing we did find on a packet capture on the back end > between the proxy server and the application server is that 3 seconds after > the proxy server apparently closed the port, the Weblogic application server > tried to

Re: [users@httpd] ProxyPreserveHost doesn't work with SSL

On Fri, Jul 1, 2016 at 6:26 PM, Marat Khalili wrote: > > Because of SSL the problem is somewhat hard to debug, can't just packet > trace. I tried to replace IIS application with CGI script on different > Apache, without SSL, and found that ProxyPreserveHost is not ignored > (environment variable S

Re: [users@httpd] ProxyPreserveHost doesn't work with SSL

On Mon, Jul 4, 2016 at 5:00 PM, Marat Khalili wrote: > On 04/07/16 17:29, Eric Covener wrote: >> >> SNI is in the ClientHello, you'd be able to eliminate/confirm that bit. > > > Yes you're right. But now I cannot reproduce original problem. And SNI is > correctly transferred from client in packet

Re: [users@httpd] ProxyPreserveHost doesn't work with SSL

On Mon, Jul 4, 2016 at 5:36 PM, Yann Ylavic wrote: > On Mon, Jul 4, 2016 at 5:00 PM, Marat Khalili wrote: >> On 04/07/16 17:29, Eric Covener wrote: >>> >>> SNI is in the ClientHello, you'd be able to eliminate/confirm that bit. >> >> >> Yes

Re: [users@httpd] Use an Apache handler after declining another

On Tue, Jul 19, 2016 at 12:29 PM, Amlaan Kar wrote: > I have two handlers to be accessed. My motive is to use the second handler > if the first handler returns DECLINED. > > I have tried various combinations of SetHandler, AddHandler and AddType but > none has worked as overriding takes place in a

Re: [users@httpd] Use an Apache handler after declining another

On Tue, Jul 19, 2016 at 1:58 PM, Amlaan Kar wrote: > Thank You for answering. The method described above is not working. Please describe not working.. Your handler does not run before the one you specified as successor ? > Do I > have to make any changes before using the above given code? > PS:

Re: [users@httpd] mod_proxy: When does a backend be considered as failed?

Hello, On Sun, Jul 17, 2016 at 9:41 AM, dE wrote: > It appears that mod_proxy considers a backend as failed only when the > transport layer connection to that backend fails. Is this expected? Unless failonstatus/failontimeout is used, usually. Which httpd version are you using? Could you pl

Re: [users@httpd] Use an Apache handler after declining another

On Tue, Jul 19, 2016 at 2:15 PM, Amlaan Kar wrote: > static void register_hooks(apr_pool_t *pool) > { > static const char *const succs[] = {"mod_example1.c", NULL }; > ap_hook_handler(example5_handler, NULL, succs, APR_HOOK_FIRST); > } > AP_DECLARE_MODULE(example5) = > { > STANDARD20_M

Re: [users@httpd] Use an Apache handler after declining another

On Tue, Jul 19, 2016 at 2:42 PM, Amlaan Kar wrote: > example1_handler is as given below: > module AP_MODULE_DECLARE_DATA example1_module; > > static int example1_handler(request_rec *r) > { > if (!r->handler || strcmp(r->handler, "example1-handler")) return > (DECLINED); So it does nothing un

Re: [users@httpd] Use an Apache handler after declining another

On Tue, Jul 19, 2016 at 4:21 PM, Yann Ylavic wrote: > > There are other ways to do this (by setting an environment variable > with for example SetEnvIf, and checking it in your handler), in any > case a DECLINing handler should not have to deal with r->handler > unless it know

Re: [users@httpd] mod_proxy: When does a backend be considered as failed?

On Mon, Jul 25, 2016 at 5:18 AM, dE wrote: > > Config -- [] > > ProxyPass / balancer://localbalance/ failontimeout=on timeout=10 > failonstatus=502 You are defining a balancer here, so the timeout= parameter relates to the balancer (like the two others) However for a balancer, the timeout= param

  1   2   3   4   5   >