proxy pass?
Use the "P" flag in rewrite instead of ProxyPass, and you can control
the flow directly.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Ser
On Sun, Aug 2, 2009 at 6:26 PM, MK wrote:
>
> Okay, sorry, that was because I did not include the directive within
> . However, rather than redirecting, I now get a 400 Bad
> Request error.
You can't redirect to a relative path.
--
Eric Covener
l/www/squirrelmail/
> ErrorLog /var/log/httpd-error.log
> CustomLog /var/log/httpd-access.log combined
> DirectoryIndex secure.html
>
http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslengine
--
Eric Covener
cove...@gmail.com
On Wed, Aug 5, 2009 at 7:30 AM, ricardo13 wrote:
>
> hi,
>
> I would like to monitor the number of connections actives in web server at
> that moment.
> How do I get ? Does mod_status provide that informations ??
Ingoring the event mpm, see "xxx requests currently bei
ml2 (worked for me on Solaris 9, failed for updating csw
version)
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for
_* macros.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr...@http
On Thu, Aug 6, 2009 at 9:05 AM, Nick Kew wrote:
> Eric Covener wrote:
>>
>> On Thu, Aug 6, 2009 at 6:43 AM, Nick Kew wrote:
>>
>>> You can compile mod_proxy_html against it with a simple #define.
>>> See the comment in the source code, at about line 800 or 8
, otherwise your backend doesn't have a TCP connection
with the brwoser.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.htm
> RewriteRule ^blog/view\?blogId=(\d+) http://illinois.edu/db/view/$1 [R=301]
You can't match a query string like that. You have to use a RewriteCond.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User suppo
Can you find the processes using high cpu and post the unique parts of
pstack output?
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org
s an xml file to html if it not
> exits else serve the existing html file . But I don't see file is getting
> cached when try accessing http://:/specs/Template.html
>
>
> Any clues? , I am missing some con-fig steps ?
LogLevel deb
equestsPerchild, graceful restart, or MaxSpareThreads)
if they're not making any progress, you might try forcibly killing them.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HT
On Tue, Aug 11, 2009 at 4:45 AM, Jorge
Schrauwen wrote:
> removing the line "NameVirtualHost *:80" should fix it.
you should have just 1 NameVirtualHost *:80 to our "n" -- the warning implies you have 3 extras.
--
Eric Co
ct the base of where the htaccess itself is and is a factor in
what you're matching as well.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.
ary when trying to achieve the highest level of security
> when configuring Apache.
>
> Can the SSLCipherSuite directive overwrite what is designated in the
> SSLProtocol directive?
>
> For example:
>
> SSLProtocol SSLv2
>
> SSLCipherSuite TLSv1:SSLv3:+HIGH:+MEDIUM:!LOW:
ly apply while Apache is waiting for something to happen.
Apache isn't waiting on anything from the browser, so there's no 5min
timeout in effect.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support fo
n't closed his own end of the connection by
then.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more in
On Thu, Aug 20, 2009 at 7:54 AM, Melanie
Pfefer wrote:
> let me rephrase my question
>
> I have
>
>
> Require valid-user
>
>
>
> Require user user1 user2
>
>
Post your verbatim configuration and your error log entry.
On Thu, Aug 20, 2009 at 7:25 AM, Steffen Tronstad wrote:
> How to cure an illness with some method?
>
This one made my morning!
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apach
On Thu, Aug 20, 2009 at 10:24 AM, Mohit Anchlia wrote:
> I think I knew that. Question is even though there were no outstanding
> requests the httpd servers stayed there until I finally killed them
How did you ensure that there were no outstanding requests?
--
Eric Covener
cove...@gma
2
> Satisfy any
Satisfy only changes how access control and authorization interact,
not how multiple authorization directives interact.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of
Any htaccess or locationmatch possibly getting in the way?
Can you eliminate the merging of the two sections, by creating some
test directory outside of the first prefix and see if it still
misbehaves?
--
Eric Covener
cove...@gmail.com
On Thu, Aug 20, 2009 at 11:36 AM, Eric Covener wrote:
> Any htaccess or locationmatch possibly getting in the way?
htaccess wouldn't get in the way...
--
Eric Covener
cove...@gmail.com
-
The official User-To-User suppo
am prompted for
> password even if I do not access bbb/):
You still get prompted under aaa/ because "valid-user" means any user
who has authenticated is authorized -- it does not skip the
authentication phase.
--
Er
On Thu, Aug 20, 2009 at 11:38 AM, Eric Covener wrote:
> On Thu, Aug 20, 2009 at 11:35 AM, Melanie
> Pfefer wrote:
>> Do you think this is caused Location directive used for a location and a
>> sublocation?
It ought to be fine, but i would suggest making a small change to the
sage specifically, gmail prepopulates the To: field with
the users@ and your specific mail address.
I don't know much about mail, but i see your Reply-To is set to your
email address while others on the list show as the list itself.
--
Eric Covener
cove...@gmail.com
--
coming into play, but you didn't show the
request method in use. See the access log, but if it's working as
expected I'd forget about it.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User su
;P" flag or ProxyPass.
I assume your "my application" in the final sentence refers to the
internal app, not the external app -- otherwise it's a lost cause.
--
Eric Covener
cove...@gmail.com
-
The official User
> [Sun Aug 23 12:24:39 2009] [error] [client 73.155.40.73] SSL Proxy requested
> for my_proxyserver:80 but not enabled [Hint: SSLProxyEngine]
Tried the hint?
--
Eric Covener
cove...@gmail.com
-
The official User-T
On Mon, Aug 24, 2009 at 4:25 AM, Tom Evans wrote:
> On Sun, 2009-08-23 at 00:31 +, Mike -- EMAIL IGNORED wrote:
>> I propose this upgrade to Apache:
>>
>> Options +NoDNS
>
> I think your mailer dropped your patch, can you resend?
golf-clapping this one.
--
Eri
yCACertificatePath /etc/httpd/ssl/CA
> -
> For some some reason apache is unable to pickup the client certificate and
> send it to the server.
> Please advise.
> Regards,
> Pe
>
Is PKCS12 legit there? Example has a pem-formatted file --
SL 0.9.8e-fips-rhel5 01 Jul 2008.
> Are these certificates SSL3.x? or TLS v1?
Neither, certificates aren't generally related to SSL protocol versions.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User sup
x.php?a=1
> - does *not* serve up the previously cached page, instead mod_disk_cache
> stores a fresh copy for future caching...
Does your response contain a Vary header?
--
Eric Covener
cove...@gmail.com
-
The official
On Wed, Aug 26, 2009 at 7:59 AM, Henry wrote:
> Quoting "Eric Covener" :
>>
>> Does your response contain a Vary header?
>
> Hi Eric, thanks for the quick response.
>
> Yes, it contains:
> Vary: User-Agent
That's why you get a new one cached fo
them to the
webserver without prompting you.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To uns
On Fri, Aug 28, 2009 at 2:40 AM, Melanie
Pfefer wrote:
> /apache/httpd-2.2.6/srclib/apr/libtool: line 5565: ar: command not found
incomplete toolchain, dev tools not in PATH?
--
Eric Covener
cove...@gmail.com
-
The offic
itializing Global
> pool");
>
If these are early in initialization, try searching around for
APLOG_STARTUP usage?
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache
ule flag as in [E=dontlog:1]
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: user
ld enlighten me, I would be very thankful.
If you're not working on a module that documents adding some note that
night be of interest, you wouldn't be logging it.
--
Eric Covener
cove...@gmail.com
-
The
On Wed, Sep 2, 2009 at 5:24 AM, bhasker
yadav wrote:
> Hi All,
>
>
>
> My application is accessing through apache 2.2 -> weblogic 10.3
>
Try LocationMatch. This rule is not applicable to content that
doesn't come off the filesystem (I think?).
--
Eric
y a specific user or users, who have to match the
specific username that was successfully authenticated.
"valid-user" means any username that had been successfully authenticated.
--
Eric Covener
cove...@gmail.com
-
On Wed, Sep 2, 2009 at 10:09 AM, Melanie
Pfefer wrote:
> thanks.
> In what cases Require valid-user does not ask for an authentication?
>
> This is my case here.
If you configure basic authentication with Require valid-user, you
will be prompted for credentials.
--
Eric
iably. There is a controversial feature that tries to guess/convert
here:
http://httpd.apache.org/docs/2.2/mod/mod_authnz_ldap.html#authldapcharsetconfig
It essentially guesses things like Accept-Language: Y implies the
browser sent the basic auth credentials in local codepage X.
--
Eric Covener
cove...@gmail.c
On Thu, Sep 3, 2009 at 9:20 AM, John P.
Dodge wrote:
> When using "valid-user" You need:
>
> AuthLDAPAuthorative off
Not in the last 6 releases, and the symptom there is auth failure not
short-circuting authentication.
--
Eric Covene
od_proxy.html#proxypass
| The ! directive is useful in situations where you don't want to
reverse-proxy a subdirectory, e.g.
| ProxyPass /mirror/foo/i !
| ProxyPass /mirror/foo http://backend.example.com
--
Eric Covener
cove...@gmail.com
/search http://google.com/ |
Make the trailing slashes "agree" on both args (both or none)
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://h
request=$1
"If it doesn't begin with /secure, end in js/jpg, or is already
rewritten as a bad request, rewrite it."
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apa
On Wed, Sep 9, 2009 at 7:39 AM, Krist van
Besien wrote:
>> Tue Sep 8 11:32:42 2009 ***Exception type [WRITE_ERROR_TO_FILE] (Cannot
>> open TEMP file '/tmp/_wl_proxy/_post__28832_77' for POST of 2306 bytes
wl-as-in-weblogic probably means consult the vendor.
t; [/tmp/_wl_proxy/_post__28832_66]"
>
> Sometimes it can't.
Whoever provided you with that code should provide a version that logs
the actual error (errno) encountered while opening the file.
--
Eric Covener
cove...@gmail.com
--
'll have to do the homework to check if your OS vendor provides a
64-bit httpd, or download the source and build it yourself.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Pr
write your error logs via the piped logging
mechanism, if simply filtering them out during some post-processing
isn't sufficient.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the A
wo distinctly different log files.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail
On Wed, Sep 9, 2009 at 1:52 PM, ricardo13 wrote:
>
> Ok
Try to be a little more considerate of what/where/how you quote
messages you're replying to.
--
Eric Covener
cove...@gmail.com
-
The official User-To-U
tried to
connect directly to financial servers. Is there a way (perhaps through
mod_proxy_html) to rewrite the URL in the applet?
Eric Jacobs
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http
it makes no difference. When I paste
> 12,000+ characters of data into a FORM, it's cut in half..
>
> Am I putting it in the wrong place or is this the wrong directive?
Is the method POST? Is there an error recorded in the error log
to get more readable
> detail when segfaults again. And I'll post the result here.
The backtrace from gdb is what's needed.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP
treat those as name-based
virtual hosts.
httpd2 -S might have given a better hint.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/usersli
ing with APR-Util 1.3.9 but running with a lower version)
Yes, this compatibility is promised by APR versioning rules.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
On Tue, Sep 15, 2009 at 11:34 AM, Jan G.B. wrote:
> I'd say this way it's always unclear which is the default vhost. As you have
> to dig through instead of just issuing a `cat
> /etc/apache2/sites-enabled/*` or just `ls`.
apachectl/apache2ctl/httpd -S ?
--
Eric Covene
r a set of name-based virtual hosts.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-ma
hing) IP address.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscr.
ugh LDAP. AppAttr is an user defined attribute
> that controls the kind of controls the user can see on the GUI, e.g. admin
> user can see all the controls and so on.
> 4. With the above settings in httpd.conf, the GUI access happens without any
> issues.
> 5. The time I change the "l
On Fri, Oct 2, 2009 at 10:36 AM, Tony Rice (trice) wrote:
> Is our only choice changing all the .htaccess files with "require group
> " to "require ldap-group cn=,ou=some long ldap
> string" in order to make the switch group authorization via LDAP groups?
Yes.
--
E
or it overrules any ldap-group
> setting. Hm!?
The doc is poor in this regard. mod_authnz_ldap does not handle
"valid-user", it allows another module to handle it [if the request
gets that far]. This is why the AuthzLDAPAuthoritiative does not
apply to
no RewriteEngine on, htaccess not being read (allowoverride?), or
rules in a that isn't actually handling the request?
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Serve
..
Your LDAP setup should use require ldap-filter to find a memberOf
under the _user_ that signifies membership in a group, or find how the
groups entry lists users (not memberOf, but something like member or
uniqueMember). ldap-filter starts at the user and looks for stuff,
ldap-group starts at t
on 'www' requests to 'www' requests but it seems as
> apache is not handling the urls with parameter at the end?
Did you paste the right snippet? That's a pretty elaborate regex, and
doesn't redirect at all but proxies.
--
Eric Covener
cove...@gmail.com
---
ept for urls like
> http://example.com/news/headlines/more.jsp?content=20090624_075115_6540
>
>
> the rule redirects the above url to home page of site
>
> http://www.example.com/index.jsp?content=20090624_075115_6540
And it can't be captured by a RewriteLog? Is it some oth
> make
>
> make install
>
>
> After make install I get my /rmg/software/apache2.2.13-openssl0.9.8k
> as expected. However I noticed a "build" and "include" folder in the
> root of my Apache directory.
They're used to compile apache modules again
On Wed, Oct 7, 2009 at 4:43 AM, wrote:
> LDAP_Debug On
> AuthzLDAPMethod ldap
> AuthzLDAPServer "centos-test.pinnacle.co.uk"
These aren't directives from the LDAP auth provided with Apache HTTP
Server but from a third-party LDAP authentication module.
--
Eric C
lent --mode=link gcc -o mod_cache.la
> -rpath /opt/apache2/modules -module -avoid-version mod_cache.lo
For more complicated modules, you need to pass it all the source files
that comprise the module, including e.g. cache_storage.c cache_util.c
-- see modules.mk in the
On Wed, Oct 7, 2009 at 10:18 AM, Eric Covener wrote:
> For more complicated modules, you need to pass it all the source files
> that comprise the module, including e.g. cache_storage.c cache_util.c
> -- see modules.mk in the cache/ directory.
(which you don't have if you didn&#x
d/003-compuservice:
> Invalid command 'ProxyPassCookie', perhaps misspelled or defined by a module
> not included in the server configuration
> ...fail!
That's not the right directive name:
http://httpd.apache.org/docs/2.2/mod/mod_proxy.html#proxypassreversecookie
id#160478][rid#6b7a48/initial] (1) [per-dir
> /usr/users/bv71/wwwroot/] internal redirect with
> /croner/jsp/CronerZoneChannel.do [INTERNAL REDIRECT]
you may have a 302, but it's not a [direct] result of that log entry.
--
ist/httpd/patches/apply_to_2.0.63/
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: us
;LISTEN 80' so my server is ONLY listening on port 443. I've verified this
> via a port scan of my server ... 443 is open, 80 is not.
There was a thread about this today on this very list, have you tried
the solution there?
http://marc.info/?l=apache-httpd-users&m=125569
rp_survey/1.3.1/
>
> You can see that it tacked on the ':443' and changed https to http.
Your config also implied http over 443 which is unusual. A redirect
to that protocol and port seems pretty natural.
--
Eric Covener
cove...@gmail.com
--
On Fri, Oct 16, 2009 at 2:02 PM, Bob Schell wrote:
> Thanks again for the quick reply. How did my config also imply http over
> 443?
>
> On Fri, Oct 16, 2009 at 11:51 AM, Eric Covener wrote:
>>
>> On Fri, Oct 16, 2009 at 1:48 PM, Bob Schell wrote:
>> > Howeve
this? I think that my configuration is correct, at least for the
> locally hosted website because i see the additional content. Any help
> would be greatly appreciated.
>
They should work fine together.
--
Eric Covener
cove...@gmail.com
On Mon, Oct 19, 2009 at 12:39 PM, Marcos Mendez wrote:
> Hi Eric, thanks for the quick response. So then I must be doing
> something wrong. Does this look right? I'm testing a simple filter
> that rewrites some text. Through the proxy, this html
> (http://skyblender.com/index.
> I've done a search and no were on my Centos box do I see bin/envvars.
>
> Its this because I have a distro'd installed version of APACHE vs from
> source?
>
/etc/sysconfig/httpd sourced by apachectl?
--
Eric
or you by your desktop session or ssh
client. It will be a little complicated having your Apache user be
able to securely access your X server.
"DISPLAY environment variable", "xauth", and "x11 forwarding" might
be some good background.
On Wed, Oct 21, 2009 at 8:54 PM, antoine wrote:
>
> My friend who works in the same project has done this with filters (i think)
> but we are looking for
> a faster way (maybe a new module enabled after the content generation).
I think anything but a filter is a complete dead en
issue with the log
> dir.
All of this is misleading.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info
you make it
this far in my followup? Do you think this was reasonable info to
provide in a request for help?
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See htt
On Fri, Oct 23, 2009 at 8:19 AM, David Balažic wrote:
> (running xampp-1.7.1 on Windows XP Pro SP3)
>
That's not developed here at the Apache Software Foundation.
--
Eric Covener
cove...@gmail.com
-
The official U
rectory listing:
http://httpd.apache.org/docs/2.2/mod/mod_autoindex.html
If Options does not include "Indexes", you'll get a forbidden error instead.
If one of the files in the DirectoryIndex list are present, it's just displayed.
sets the content type and prints
a canned response.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more
this doesn't happen.
>
> At one point, the values of response time stabilize and dont increase.
You have to drive it until there isn't enough request procesing
threads, CPU, disk IO, or bandwidth to go around. Are you measuring
a
e following directives in a :
>
> RewriteRule ^/cgi-bin/script.pl$ /getit [P]
P flag intended, or PT?
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Proje
in
> the OU (and allow our service accounts and support personnel at the same
> time to all sites)
Any hint about what it does (loglevel debug, or looking at what LDAP
queries it puts on the wire)?
--
Eric Covener
cove...@gmail.com
---
load both source
zips and look in srclib/apr/CHANGES to see if the bundeld APR had
anything interesting change.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
reshark to see if Apache is sending the
proper list of trusted certificates that line up with whoever signed
your certs in your HW device?
Perhaps
http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslcertificatechainfile
or http://httpd.apache.org/docs/2.2/mod/mod_ssl.html#sslcacertificatepath
might h
request
*hope IE prompts*
SSLVerifyClient is accepted in context, which should
cause the initial handshake to ask for a client cert.
>
>
> -Original Message-
> From: Eric Covener [mailto:cove...@gmail.com]
> Sent: Tuesday, October 27, 2009 10:17 AM
> To: users@httpd
want to be served by, so it used the
> certificate of the first host.
>
> Read this:
> http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2
This doc is out of date due to SNI!
--
Eric Covener
cove...@gmail.com
-
On Tue, Oct 27, 2009 at 3:06 PM, Krist van Besien
wrote:
> On Tue, Oct 27, 2009 at 7:55 PM, Eric Covener wrote:
>>> http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2
>>
>> This doc is out of date due to SNI!
>
> The OP's version clearly doesn't ye
> ServerAlias "domain003.com www.domain003.com"
Those are one hostname with spaces in them, not two hostnames. Lose
the quotes or quote each one separately.
--
Eric Covener
cove...@gmail.com
-
e the HTTP/1.1 Host: header but its stuffed into an
early handshake message, so the server can select handshake parameters
from name-based vhosts.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of
ntication will not work. In 2.2 you may be able to use
digest+file for authn and LDAP for authorization, though.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Proj
downloading a revision (not marked up) is not
available on the ASF viewvc.
--
Eric Covener
cove...@gmail.com
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html&
101 - 200 of 3338 matches
Mail list logo
