Re: [users@httpd] How to auto-select SSL certificate by hostname

There is no built-in way to handle this. You would need to list every domain name as a server alias for HTTPD to select the correct certificate. You could look at mod_macro so you don't need to rewrite the same configuration multiple times or a configuration management tool like Puppet/Chef/etc tha

Re: [users@httpd] Question about linking third-party GPL plugin to httpd

You should definitely talk to your own lawyer but in general, the license applies to distribution, not to your own use. https://www.gnu.org/licenses/gpl-faq.en.html#GPLRequireSourcePostedPublic - Y Sent from a device with a very small keyboard and hyperactive autocorrect. On Mon, Oct 29, 2018,

Re: [users@httpd] Apache 2.4 how to exclude certain GET requests from log using SetEnvIf

You need to specify an env= (or !=) On the LogFormat line. There is nothing magic about setting dontlog. - Y Sent from a device with a very small keyboard and hyperactive autocorrect. On Thu, Nov 15, 2018, 3:30 AM UniCapitals Hello to Apache Community, > I spent time with Apache docs and Google

Re: [users@httpd] Doubts in apache-2.4.37

1. Don't know, should be easy to test. 2. Pipe. 3. I think this depends on which actual proxy module you are using. (There are parameters for controlling the buffer size and when to flush) On Mon, Jan 14, 2019 at 9:51 AM Hemant Chaudhary < hemantdude.chaudh...@gmail.com> wrote: > Hi Team, > > I

Re: [users@httpd] Port Forwarding Help?

If your ISP blocks port 80 and port 443, there is no way for you to host the site without a port number. If you can run a server on those ports, HTTPD would listen there and reverse proxy to the internal port the app is running on (5501?). You would not want to forward 5501 through the router becau

Re: [users@httpd] Apache Fake Story?

Check the bugzilla thread for all the details: https://bz.apache.org/bugzilla/show_bug.cgi?id=63098 The short version is that HTTPD developers found that the bug can only be reproduced under specific conditions with debugging options turned on, which is not the way people usually run the server (wi

Re: [users@httpd] Reverse proxy stalling forever

The configuration you sent doesn't show your server running on port 5280/5281, so we can't compare the configuration and see what might be different. My number one suspect would be your firewall. - Y On Tue, Jan 22, 2019 at 7:40 PM Alexandre Garreau wrote: > Hi, > > I’m trying to make Jitsi Mee

Re: [users@httpd] Reverse proxy stalling forever

I see that I can access your config.js from my browser, so httpd is serving that vhost. What does localhost resolve to and is prosody listening on that IP address. For example, maybe it is resolving to IPv6. Check with netstat -ln to see what IP prosody is lis

Re: [users@httpd] Scalability: Single Server with Multiple SSL cert and keys

You could add a load balancer/proxy that does SSL termination in front of your web server (we use haproxy). If you are overloading your server, you might just need to get another one. - Y Sent from a device with a very small keyboard and hyperactive autocorrect. On Fri, Jan 25, 2019, 9:39 AM Ma

Re: [users@httpd] Re: CVE-2019-0211/0215/0217

The distributions like RedHat, Debian, Ubuntu, etc. lock the version of their software packages when they release any specific version of their OS and they are responsible to backport any security or bug fixes. For example, you can see Debian's tracker here: https://security-tracker.debian.org/tra

Re: [users@httpd] Fwd: Apache 2.4.39 update for Ubuntu 14.04

Ubuntu 14.04 is no longer supported, so the ppa you are using to install Apache is no long building new versions and Canonical is no longer releasing free security updates. If you pay for an extended support subscription, the version of Apache you will get will be maintained by Canonical and will c

Re: [users@httpd] RE: Need some advice - thread safe php module

We are happy with Remi's Repo: https://rpms.remirepo.net/wizard/ (Remi is a core PHP team member). You should consider newer versions of PHP (7.1+) as older version are no longer maintained, unless you use the version supplied by RedHat (since they are still updating it). - Y On Wed, May 22, 20

Re: [users@httpd] RE: Need some advice - thread safe php module

Sorry for the delay. As Rainer said, the system-wide packages include zts builds. For example (I have php-73): /usr/lib64/httpd/modules/libphp7-zts.so /usr/bin/zts-php - Y On Thu, May 23, 2019 at 11:19 AM Jeff Cauhape wrote: > Thank you! > > Jeffrey Cauhape – IT Professional III – Linux and Sol

Re: [users@httpd] RE: Need some advice - thread safe php module

n_register_module > > _php_find_ps_module > > php_get_module_initialized > > php_module_startup > > php_module_shutdown_for_exec > > php_module_shutdown > > php_module_shutdown_wrapper > > php7_module > > /usr/lib64/php-zts/modules > > > &g

Re: [users@httpd] Remove Apache 2.4

Open Command Prompt as administrator and run "httpd -k uninstall" to remove the Windows service, then just delete the folder. On Wed, Nov 13, 2019 at 9:12 AM Mystic Fallout wrote: > Hello, > > I need to remove version 2.4 from my laptop as it is going to my daughter, > factory reset is not a pos

Re: [users@httpd] Small difference on error messages

Hi Kazuhiko, This change was in response to CVE-2019-10092. People who aren't upgrading httpd for some reason should still remove the path information from the error pages to prevent XSS. - Y On Thu, Jan 30, 2020 at 4:05 AM kohmoto wrote: > Hi, > > I have learned small changes in httpd would c

Re: [users@httpd] Authentication plugins/front end

We use mod_auth_cas. We wrote our own cas server, but there are some off the shelf options including with support for MFA, password reset, and lots more. There is also mod_auth_tkt, but I haven't used it. - Y Sent from a device with a very small keyboard and hyperactive autocorrect. On Sat, Jun

Re: [users@httpd] How to permanently disable default config files

You can use yum-plugin-post-transaction-actions to delete the files (not currently available in CentOS 8 though): Create a file named /etc/yum/post-actions/httpd.action With the content: httpd*:update:rm -f /etc/httpd/conf.d/file_to_delete You should also be able to leave the files empty instead o

Re: [users@httpd] File structure for nearly identical sites

Your best option to do that might be to add a separate file with that config and call it with IncludeOptional For example: ServerName $domain ServerAlias www.$domain DocumentRoot "/var/www/vhosts/$name" ErrorLog "/var/log/httpd/$name.error_log" CustomLog "/var/log/httpd/$nam

Re: [users@httpd] IP address show Apache welcome page but domain name working!

That file is for Debian-flavor distributions. On RedHat-flavors, a similar file would be in /etc/httpd/conf.d if it exists (not in conf.modules.d though). You can check which files have the actual config for a vhost by running the command 'httpd -S'. - Y Sent from a device with a very small keybo

Re: [users@httpd] multiple internal websites

The best choice would be to register a real domain name. Because of the gTLD program, almost anything can now be registered on the internet, so you will keep having issues. You could use .example or .test which shouldn't ever be on the public internet, or you could use .internal which might be reg

Re: [users@httpd] Alternative to Let's Encrypt?

You can install certbot in a python virtualenv from pypi. This is technically not supported, but it does work. https://pypi.org/project/certbot/ See other alternate installation methods: https://certbot.eff.org/docs/install.html You can also use mod_md to have all the certificate generation handl

Re: [users@httpd] Replays from Internet

It is likely that the user still has the browser tab open and it refreshes for some reason, or their browser crashed and reopened, or they use a session restore tool when they reopen the browser - all of these could cause an exact duplicate request. You might want to look into the Post-Redirect-Get

Re: [users@httpd] Public viewing when it should be private

I would also recommend mod_auth_cas if your SSO supports it - very easy to set up. - Y Sent from a device with a very small keyboard and hyperactive autocorrect. On Thu, May 20, 2021, 2:41 AM Michael Wechner wrote: > Hi Michael > > I think it depends on your SSO app, more specifically what sta

Re: [users@httpd] Question about running apache server using WAMP

Once we get out of the technical discussion relating to HTTPD and into how to access Facebook, besides for the fact that this is not on topic for this mailing list, I suggest reading the Facebook Terms of Service which explicitly disallow account sharing. https://www.facebook.com/terms.php > 3. Y

Re: [users@httpd] Re: Question about running apache server using WAMP

: > On 30/07/2021 18:16, Yehuda Katz wrote: > > Once we get out of the technical discussion relating to HTTPD and into > > how to access Facebook, besides for the fact that this is not on topic > > for this mailing list, I suggest reading the Facebook Terms of Service > >

Re: [users@httpd] How to get someone to look at a Apache bug report on Red Hat's Bugzilla?

You mention in the bug report that you are running an old version of HTTPD because you are using the version packaged by RedHat. Your bug report asks RedHat to backport the specific fixes for your issue. I see two options for you going forward: 1. Contacting RedHat: You need a subscription to do t

Re: [users@httpd] How to get someone to look at a Apache bug report on Red Hat's Bugzilla?

-- > *Support the independent web, use **Firefox* > <https://www.mozilla.org/en-US/firefox/new/> > > > > --- Original Message --- > On Friday, February 18th, 2022 at 8:38 PM, Yehuda Katz > wrote: > > > I see two options for you going

Re: [users@httpd] How to get someone to look at a Apache bug report on Red Hat's Bugzilla?

; > Thanks for thinking along! > > Jeroen Verhoeckx > > > > > *Support the independent web, use **Firefox* > <https://www.mozilla.org/en-US/firefox/new/> > > > > --- Original Message ---

Re: [users@httpd] migrate apache httpd from 2.4.17 to 2.4.48

It depends how you installed it originally. There is no official Windows package of HTTPD, but there are a number of other people/groups who make such builds available. I personally use the package built by ApacheLounge. It has no installer - I install it by unzipping to C:\Webserv\Apache and runn

Re: [users@httpd] Unable to connect to Apache test website on LocalHost

Besides the ServerAlias, You probably also need to add DirectoryIndex index.html and also change your document root to the actual root directory where your website is located. - Y Sent from a device with a very small keyboard and hyperactive autocorrect. On Tue, Apr 12, 2022, 5:21 PM Eric Covene

Re: [users@httpd] Re: Multi-domain with SSL - Virtualhost all need IPs?

> > It will have a different set of cert files. I let it have an IP which > nothing else shares. I'm keenly aware of this IP as I've set it up in DNS as well. If you have , it will use ALL IPs - if you want to dedicate an IP for a site, you need to specify IPs for every other site too. I am not

Re: [users@httpd] Re: Multi-domain with SSL - Virtualhost all need IPs?

That is not correct. That causes httpd to try to look up the matching IP address using DNS. Use only IP addresses or wildcards. - Y On Fri, May 20, 2022 at 1:06 PM Bender, Charles wrote: > Your virtual host is defined wrong. Use the names not IP addresses > > http://1.1.1.13:443/>> > Servername

Re: [users@httpd] Mystifying start failure

systemd doesn't know to look in the HTTPD log file. What does that log say? Likely located in /var/log/apache2/ - Y On Mon, May 30, 2022 at 9:58 AM jnil...@jala.com wrote: > I recently rebooted the server and started apache only to get a failure. > Here's the diagnosis; I'm not sure what to mak

Re: [users@httpd] Mystifying start failure

I have updated ssl certificates recently. > > JMN > > On 30 May 2022, at 7:01, Yehuda Katz wrote: > > systemd doesn't know to look in the HTTPD log file. What does that log say? > Likely located in /var/log/apache2/ > > - Y > > On Mon, May 30, 2022 at 9:58 AM

Re: [users@httpd] Apache website conversion from alias to virtualhost

You have "AllowOverride None" in your "". This means your .htaccess file and therefore your mod_rewrite configuration is not being read. The simplest option is "AllowOverride All" (you can specify specific overrides too if you want). - Y Sent from a device with a very small keyboard and hyperacti

Re: [users@httpd] Apache website conversion from alias to virtualhost

g this option in file >> /etc/apache2/default-server.conf within returns a >> prohibited access (403 error) page: >> >> [image: image.png] >> >> >> -- >> >> >> Thomas WILLIAMSON • Technicien Systèmes et réseaux >> >> *Tél.* 05 4

Re: [users@httpd] Can I serve CLI Applications using Apache

You still have a bunch of options. Some possibilities using your own code: - Your CGI script or binary called by HTTPD is a wrapper which handles the piping and output capture of the other program. - Your CGI script or binary uses the available environment variables to determine where it is runnin

Re: [users@httpd] How to sign up using Apache

There is no built-in module that provides user registration - that is something you would need to implement yourself. - Y On Sun, Jul 3, 2022 at 7:29 AM Ahmad Ismail wrote: > I can use `mod_auth_basic` or `mod_auth_digest` for authenticating users. > > I can sign in or sign out using mod_auth_

Re: [users@httpd] site compromised and httpd log analysis

Your log doesn't start early enough. Someone uploaded a web shell (or found an existing web shell) to your server, possibly using an upload for that doesn't validate the input, then used that shell to run commands on your server. I would consider your entire server to be compromised at this point s

Re: [users@httpd] site compromised and httpd log analysis

On Wed, Jul 6, 2022 at 9:08 AM KK CHN wrote: > On Wed, Jul 6, 2022 at 8:33 AM Yehuda Katz wrote: > >> Your log doesn't start early enough. Someone uploaded a web shell (or >> found an existing web shell) to your server, possibly using an upload for >> that doesn&#x

Re: [users@httpd] Nginx to Apache

OpenVPN port-share has nothing to do with which HTTP server is running behind it. You should have a completely working Apache configuration separate from anything connected to OpenVPN, then you can change the listening port for HTTPD and have OpenVPN forward traffic to it. The sites-enabled folder

[users@httpd] Measurements of htaccess processing penalty

The HTTPD documentation says "You should avoid using .htaccess files completely if you have access to httpd main server config file. Using .htaccess files slows down your Apache http server. Any directive that you can include in a .htaccess file is better set in a Directory block, as it will have t

Re: [users@httpd] Measurements of htaccess processing penalty

The whole point of .htaccess files is that they aren't cached, it gives users who are not able to control the server the ability to make configuration changes. If you can control the server process, you should prut configuration in sections that are loaded at start time which are then cached in me

Re: [users@httpd] openssl comand(s) for https mode on apache 2.4 on windows.

I have always had issues with OpenSSL on Windows, so I gave up and started using xca (https://hohnstaedt.de/xca/). I created a root certificate that I imported into the Windows trust store and I create new certificates for each website in my dev environment. - Y On Tue, Apr 16, 2024 at 9:26 PM Ge

Re: [users@httpd] Apache HTTP Server 2.4 EOL

There is no planned EOL for 2.4, but you should always be on the most recently released version - currently 2.4.59 - or possibly on a version maintained by your OS distribution to keep up with the latest security patches. On Mon, May 13, 2024 at 10:50 PM Ehmann G wrote: > i tried searching on Go

Re: [users@httpd] Location of Web Site Pages

Based on the links you posted, it looks like your server is running cPanel. cPanel stores each website it hosts in its own user directory. You need to figure out which user your website is running as, then look at the public_html directory in the user account's home directory. If a single cPanel ac

Re: [users@httpd] Location of Web Site Pages

On Tue, Aug 20, 2024 at 4:25 PM Marc wrote: > what about doing a > > find / -iname '*cse.cgi*' -ls > If anyone comes across this in the future: cse is ConfigServer Explorer, a cPanel plugin that provides a filesystem browser. It has nothing to do with HTTPD or with where the files of the website

Re: [users@httpd] Location of Web Site Pages

gt; What do you suggest now? > > Regards > > Lawrence > > > > On Tue, Aug 20, 2024 at 2:36 PM Lawrence Taylor > wrote: > >> Thanks Yahuda I will try that! >> >> Sent from my iPhone >> >> On 20 Aug 2024, at 2:28 p.m., Yehuda Katz wr

Re: [users@httpd] Location of Web Site Pages

s in CPanel for the web site user. >> These directories do not have html files. >> >> What do you suggest now? >> >> Regards >> >> Lawrence >> >> >> >> On Tue, Aug 20, 2024 at 2:36 PM Lawrence Taylor >> wrote: >> >>

Re: [users@httpd] Location of Web Site Pages

Set the “ea-php56” package as the default “PHP” programming language. > > AddHandler application/x-httpd-ea-php56 .php .php5 .phtml > > # php -- END cPanel-generated handler, do not edit > > Regards > > Lawrence > > On Tue, Aug 20, 2024 at 7:02 PM Yehuda K

Re: [users@httpd] Location of Web Site Pages

red properly, and the other pages become error > pages. > > Sent from my iPhone > > On 21 Aug 2024, at 11:32 a.m., Yehuda Katz wrote: > >  > Your .htaccess is doing three things: > forwarding all secure traffic to your website to be not secure, > forwarding some reque

Re: [users@httpd] Location of Web Site Pages

you view the source code on the landing page does that tell you > anything? > > luxurybeach.com > > Sent from my iPhone > > On 21 Aug 2024, at 11:51 a.m., Yehuda Katz wrote: > >  > There are probably no "html" files - the website is generated dynamically &g

Re: [users@httpd] Location of Web Site Pages

There is no way to know without actually looking at the code. Some PHP applications have a templating engine, some just have includes of different files in different places. You can search the code for the name of the javascript file. There are definitely other files that are included from a non-se

Re: [users@httpd] Location of Web Site Pages

On Sun, Aug 25, 2024 at 8:09 PM Lawrence Taylor wrote: > Thanks Paul I have read the document, which explains all the ways you map > the URL to file system locations. What it does not say (from what I can > see) is how to check where this mapping is located. Can you help? > You have everything

Re: [users@httpd] Update Apache httpd to the latest version 2.4.62

On Mon, Sep 2, 2024 at 11:30 PM Kaushal Shriyan wrote: > I am running Ubuntu server version 24.04 LTS. Is there a way to update > Apache httpd to the latest version 2.4.62? > You can always download and compile HTTPD for yourself. The instructions in the documentation are pretty clear. https://h

Re: [users@httpd] Update Apache httpd to the latest version 2.4.62

On Tue, Sep 3, 2024 at 12:45 AM Kaushal Shriyan wrote: > Thanks, Yehuda, for the quick response. I really appreciate it. Are there > any release notes where the security changes related to Apache HTTPD > version 2.4.62 have been backported to the Apache HTTPD packages supplied > by Ubuntu? > You

[users@httpd] Helpful and Friendly Mailing List Replies [WAS: Re: [users@httpd] Update Apache httpd to the latest version 2.4.62]

On Tue, Sep 3, 2024 at 12:56 AM x wrote: > On Tue, Sep 3, 2024 at 12:45 AM Kaushal Shriyan > wrote: > >> Are there any release notes where the security changes related to Apache >> HTTPD version 2.4.62 have been backported to the Apache HTTPD packages >> supplied by Ubuntu? >> >> Kaushal, > > Bes

Re: [users@httpd] Strange change in behavior of web page

On Wed, Oct 9, 2024 at 10:15 AM Freek de Kruijf wrote: > > Choosing the other two buttons to view those videos gives an error, > something > like "No video with supported layout and MIME type found". The buttons for > downloading work as expected. > > When I copy the index.html for this web page

Re: [users@httpd] SSL setup assistance

On Wed, Sep 18, 2024 at 2:56 PM Frank Gingras wrote: > >> You basically need to load the mod_ssl module with LoadModule, edit the > :443 vhost and add SSLEngine on, SSLCertificateFile and > SSLCertificateKeyFile. > I also recommend looking at the Mozilla SSL Configuration Generator. It will help

<    1   2   3   4   5