DevHeads.net

Apache

download

Hi Im an oldie, who once installed an Apache server, now I was on to make a new installation BUT OHHHH,
things have become so complexity, so inflated, I can make no sense of what to download, or from where........

SSL-Settings for Healthchecks (mod_proxy_balancer)

Hello all apache-users!
I'm trying to set up load-balancing to backends which use different SSL/TLS settings.
I'm using version 2.4.33 of apache.
According to documentation it should be possible to set SSLProxy* directives inside a <Proxy> section.

Register now for ApacheCon and save $250

Greetings, Apache software enthusiasts!

(You’re getting this because you’re on one or more dev@ or users@ lists
for some Apache Software Foundation project.)

ApacheCon North America, in Montreal, is now just 80 days away, and
early bird prices end in just two weeks - on July 21. Prices will be
going up from $550 to $800 so register NOW to save $250, at
<a href="http://apachecon.com/acna18" title="http://apachecon.com/acna18">http://apachecon.com/acna18</a>

And don’t forget to reserve your hotel room. We have negotiated a
special rate and the room block closes August 24.

Can I return a 404 for a file that is also the ErrorDocument?

I have created a file 404.html to act as my 404 page that is returned by
ErrorDocument:

ErrorDocument 404 /404.html

This works fine, except when accessing 404.html directly, which returns a
status code of 200

I've attempted a RewriteRule like so:

ErrorDocument 404 /404.html
RewriteRule "404\.html" - [R=404]

However, this now returns an error instead of my 404.html doc:

The requested URL /does-not-exist.html was not found on this server.
Additionally, a 404 Not Found error was encountered while trying to
use an ErrorDocument to handle the request.

How can I return a status of 404 for the

Re: [users@httpd] Apache httpd 2.4.34-dev Win snapshot available

Snap 2 now available

On Thursday 21/06/2018 at 16:05, Apache Lounge wrote:

Test Functionality of Apache web server

Hi All,

Do we have any test suite for unit testing of apache source code?? I have
taken open source code and build it. I want to test whether all
functionalities is working or not.

Any third party which provides test?

Thanks
Hemant

RE: Apache http - your connection is not secure

Hi httpd users

When I go to my web-page using Chrome, the source code of the web-page is displayed. In Firefox, running on the host server, I get the message "Your connection is not secure". I have added the PFX Certificate to Trusted Root Certification Authorities on my PC from which I launched Chrome.

Here is the URL I am using - <a href="https://oxnetmdms04/OracleStatus/" title="https://oxnetmdms04/OracleStatus/">https://oxnetmdms04/OracleStatus/</a>

The oxnetmdms04 server is hosting Apache http (v. 2.4).

Apache load balancer, etc

Have been comparing Apache load balancing with some other possibilities

As expected can do just about anything you want with Apache but the performance testing between Apache load balancing and nginx, haproxy, lighthttpd has Apache noticeably slower.

two servers and sites on single IP

Hopefully simple, but I'm now getting confused. Currently, single
server1 192.168.0.1 (Apache 2.4) running single site foo.me.com on
single static IP. Rock solid for the last six years.

Need to add server2 192.168.0.2 (Apache 2.4) for site bar.me.com on the
same static IP.

What is the fastest, most efficient way for server1 to rewrite |
redirect | proxy "bar" to 192.168.0.2 and still serve "foo" from
192.168.0.1?

httpd won't start with SQLSRV enabled

Hi,

This is my first message to this list. I've reviewed your policies, but my
apologies if I break rules/conventions. Please don't hesitate to correct me.

I've run into an issue where enabling the PHP SQLSRV extension [1] causes
httpd to fail to start. I've documented the issue at length here [2]. The
PHP SQLSRV extension does NOT impact general PHP use (command line PHP
works fine). Only starting httpd will not work. As [2] says, I'm not really
getting any significant error messages, so I'm not sure how to proceed.

Mutual authentication

Hello, we are using Apache webserver 2.4.33 And is giving 400 error code while we send the client certificate to load balancer and same works in 2.4.16. Please let me know if I need to check any os packages or libraries

Thanks
Vasu
Sent from my iPhone

mod_proxy_balancer cookie issue

I have 2 zope servers behind a reverse proxy; i'm trying to balance them,
following the apache-wiki guide
"Load balancing with appservers who set a bad sticky cookie"
The configuration works with problems:
Planning a Server maintenance: under the balancer web page, i need to put
one server offline.

PHP-7.2.5 with Apache-2.4.25

Hi,

I was using mod_php of php-5.5.37 with apache-2.4.25 and it was working
fine. I upgraded the php to php-7.2.5. But after upgrade, mod_php is not
able to unload properly.

Does anybody also face the same issue.

Thanks
Hemant

unsubscribe

Problems with apache 2.4.6 upload data limit?

We've recently upgraded our apache server in our product line from 2.4.25 to 2.4.6. We have a screen sharing application which uploads frames to the apache server. Sometimes after an upgrade of our product the screen sharing application doesn't work as no frames are shared. When I investigated this problem from the PHP side it looks like apache server limits the amount of data uploaded to 8KB. I found this issue out by examining the PHP fread function to examine how many bytes were being read at each interval chunk.

Preserving in-bound address through reverse proxy

Hi,

We have a reverse proxy configured to route in-bound traffic to one of
two different applications.  Here's our proxy conf:

ProxyPass /foo !
ProxyPass / <a href="http://localhost:8080/" title="http://localhost:8080/">http://localhost:8080/</a>

There's an instance of Tomcat running on port 8080.

I'm trying to determine if it is possible to preserve the original
in-bound address on the requests routed to localhost:8080.  What I'm
observing is that the servlet sees all in-bound traffic addressed to
"http://localhost:8080" rather than the real external address of my
server.  For example, when a client sends a request to
"https://myserver.com/api/v3/bl

Apache http via tomcat WAR or Directory URL syntax (tomcat server.xml) for WAR application not working

I am attempting to launch a WAR web application from a tomcat service (tomcat 9.0.2, windows server 2008 R2), after invoking a URL in a browser (Firefox) hosted by an Apache HTTP server (Apache 2.4).

<VirtualHost> matches when ServerName directive is omitted

I am in the process of migrating some sites from a server running Apache
2.4.7 to a new installation (Ubuntu 18) running Apache 2.4.29 and running
into some issues with VirtualHost matching.

On my old server I have a config like this:

<VirtualHost 12.34.56.78:80>
ServerAlias *.dev.example.com
VirtualDocumentRoot /var/www/dev/%1
</VirtualHost>

<VirtualHost 12.34.56.78:80>
ServerName example.com
ServerAlias <a href="http://www.example.com" title="www.example.com">www.example.com</a>
DocumentRoot /var/www/example/
</VirtualHost>

As you can see, the ServerName directive is intentionally absent from the
first host which uses a Virtual

Is apache httpd 2.4.33 support redirecting internally to another server based on proxy response.

Hi All,

I have googled lot on configuring httpd to redirect internally without
exposing the redirection to client but could not able to get it. Is
there any way to hide redirection from client?

Thanks

Shiva

enforce 503 response using RewriteRule or Redirect due to temporary maintenance

The configuration directives "RewirteRule" and "Redirect" are having flags
to send a FORBIDDEN or GONE response but I need something to send a 503
service_unavailable response to keep away traffic from my proxied backends
during maintenance work.

The idea is to use a RewriteMap for this cause I could modify the mapfile
to apply maintenance URLs without restarting the httpd server.

EXAMPLE:

$APACHE_HOME/conf/map-offline.conf:
appl1 /errmsg/maintenance
appl2 /errmsg/gone

RewirteMap offline txt:conf/map-offline.conf
RewriteRule ^/([^/]*)(.*)$ ${offline:$1|%{REQUEST_URI}} [NC,PT]

Redirec

brotli module loaded but doesn't work

Apache 2.4.33 compiled from source (built as rpm) with --enable-brotli
switch.

Apache httpd 2.4.34-dev Win snapshot available

<a href="http://www.apachelounge.com/viewtopic.php?p=36981" title="www.apachelounge.com/viewtopic.php?p=36981">www.apachelounge.com/viewtopic.php?p=36981</a>

Redirect outside http web-address to an internal web-address

Hi All,

I tried to create follows configuration within our environment, but can’t find a working solution for that case, maybe some has an idea !?!

We have an external company which is connected via VPN to our network. Internal we have two applications (Confluence/Jira) deployed
with tomcat and we connect to it via apache 2.4.

Apache site conf Include not working

Hi,

I am using Apache 2.4.18 on ubuntu x64.

I have a large site config with many rewrites and want to split them off into multiple conf files using Include.

Slow Apache 2.4 server

Hello,

I have a problem with slow access from Apache 2.4.27 (new server) compared to an older
Apache 2.2.14 (old server.
The old server is a dual core AMD running Fedora Core 12 with 4Gb physical memory, while
the new server is an 8 core AMD with 16 Gb memory.

It is the same PHP code on both. The old server has PHP version 5.2.12 and the new server
has PHP 7.0.25. The PHP code access the same database.

Below is an extract from the access log file from both servers. Both requests are the same
resulting in rendering a lot of thumbnails.

Virtualhosts

Apache 2.4 on Ubuntu 16.04LTS . We have multiple VirtualHosts running on
port 80, one on port 8080. They are all fully functional...

BUT for the one on port 8080 I have to explicitly append the port number
to the URL in a browser to access it (or the browser gets the
000-default.) No diff between .conf files except Listen 80 | 8080 and
<VirtualHost *:80> | <VirtualHost *:8080>

How to avoid appending the port number to the browser URL? (I'm sure
it's simple, but I just can't find it.)

Nothing relevant in the logs.

Website Down - Help Really Needed

Good day,

My website has gone down after I tried adding a SSL Certificate through
LetsEncrypt.

I'm getting the following errors.

sudo -i /etc/apache2/sites-available/000-default.conf-bash:
/etc/apache2/sites-available/000-default.conf: Permission denied

Also please see attachment for errors when trying to access apache.

Please assist.

Best regards,
Makeda

gitweb permission problems with new install

openSUSE Leap 42.3, Apache 2.4.23:
I have gitweb working just fine.

openSUSE Leap 15.0, Apache 2.4.33:
gitweb cannot access my git repository
Shows error: "gitweb.cgi: Can't opendir(/export/git): Permission
denied: /usr/share/gitweb/gitweb.cgi"

I've searched through the apache config and can find no differences,
other than on 42.3 user wwwrun has group www, whereas on 15.0 it has
group wwwrun and is also a member of www. /export/git has group www.
I've tried changing it to wwwrun.

I need to send the same request sent from client to my authentication server before proxying

Hi All,

Is there any module that I can use to send a request to my
authentication server before proxying the same request to my resource
server? I mean I need to do double proxying.

Thank You,

Shiva

Difficulties with testing TLS 1.3

Hello Apache folks :

So the process of testing TLS 1.3 shouldn't be black magic but here
I am wondering what is wrong. I have a beta site up running Apache trunk
build and OpenSSL 1.1.1-pre7 ( the latest atm ) and everything seems to
be just fine. I have Mozilla beta browser with security.tls.* settings
ready to handle TLS 1.3 and I can reach, render and see the test site at
<a href="https://tls13.crypto.mozilla.org/" title="https://tls13.crypto.mozilla.org/">https://tls13.crypto.mozilla.org/</a> just fine. It claims TLS 1.3 (draft
28) using NSS whereas my site <a href="https://beta.tls13.net" title="https://beta.tls13.net">https://beta.tls13.net</a> can not be "seen"
via the same browser.

Redirect Permanent

Hey Guys,

I’m running Apache/2.4.33 on RHEL

I have this config:

<VirtualHost *:80>
ServerName "${APACHE_HOSTNAME}"
<If "%{SERVER_PORT} != '443'">
Redirect permanent / https://${APACHE_HOSTNAME}/ <https://${apache_hostname}/>
</If>
</VirtualHost>

<VirtualHost *:443>
ServerName "${APACHE_HOSTNAME}"
</VirtualHost>

When I do CURL to that localhost on port 80 it gives me back this:

<html><head>
<title>301 Moved Permanently</title>
</head><body>
<h1>Moved Permanently</h1>
<p>The document has moved <a href="https://${APACHE_HOSTNAME} <https://${apache_hostname}/>/">here</a>.</p>

Apache allowed OPTIONS

Hi all,

I have setup Webav with apache2.
I am testing the setup on a Debian7 with apache 2.2.22.
Although the webdav is functioning ok I have a third party application that
needs to put files on the webdav folder and before it does that it checks
the available methods that apache allows.

restrict Location URL with special string

Hi,

I have URL like below (with ? and =)

<a href="http://myserver/?s=about" title="http://myserver/?s=about">http://myserver/?s=about</a>

What’s the correct syntax to allow only some IP.

<Location "/\?s\=about">
Require ip 127.0.0.1
</Location>

<Location "/?s=about">
Require ip 127.0.0.1
</Location>

<LocationMatch "about">
Require ip 127.0.0.1
</LocationMatch>

Nothing work.

Thanks in advance for any suggestion.
Regards.

Apache forward proxy to upgrade tls connection from tls1 to tls1.2

HI

Wanted to know if we can upgrade Apache forward proxy connection from TLS
1 to TLs1.2 , we have an legacy application which can accpect and send
requests using tls1 only ,which is now required to send request to servers
that can only accept TLS1.2 connections

i am planning to put an apache forward proxy do this ,there is a away we
can do this with squid by bumping the TLS connection ,but i want to find
out if we can do something similar using Apache

here is what i am planning to use

Apache 2.4
RHEL 7

httpd.conf Invalid Argument

Hi all,

I compiled apache 2.4.27 on an AIX server and installed it on to other AIX
servers of same OS. It works on all servers except one where I see the
error "httpd: Could not open configuration file
/usr/local/etc/httpd/conf/httpd.conf: Invalid argument" when I try to start
using apachectl. The same error appears when I try httpd -M. The
configuration file exists and the permissions are correct.

Need help restricting LDAP authorization to subdirectory

hi,
We are working on a new intranet page for our office and I'm having trouble getting one specific thing working.

Our old intranet was strictly static content in file system directories and permissions were set exclusively on directories. Unfortunately even though this is a new development, I'm currently stuck on Apache 2.2 on CentOS 6.

Apache 2.4 and DirectoryIndex and htaccess

I have a working webroot, and it has an index.php file.

Use of proxypassReverse

Hi,

Can someone tell me in detail the difference between proxypass and
proxypassreverse?
I have just read links stating that proxypassreverse is used for "redirect"
request. But I am not understanding how.

Thanks,
Ananya

.php3 files recognised but .php files not

I have just installed openSUSE Leap 15.0 on a server including Apache
2.4.33 and php 7.2.5.

If I attempt to access .php files, I'm offered them as downloads,
although renaming them to .php3 makes them work fine.

Are passwords with embedded spaces allowed using htdbm?

I can get htdbm to accept a cleartext password with spaces when using the
mode where I enter the password at the command line, e.g.,

htdbm -cB dbmfilename user

and the password is validated ok using

htdbm -vB dbmfilename user

but I can’t get it to work using the batch mode:

htdbm -cbB dbmfilename user passwordwithspaces

I have tried using single quotes around the password as well as backslashes
before the space without success.

I would love to be able to programmatically use passwords with spaces if
anyone can show me how to do it.

Thanks.

Best regards,

-Tom

Oddity using FallbackResource in PHP development

Apache is returning 404 when an invalid PHP script is called, even though
FallbackResource is configured and working fine for invalid scripts without
the .php extension.

Said another way, when I use FallbackResource, with a PHP file as the
target, it works fine only when I don't reference an invalid PHP file. When
I do, it doesn't work.

When should someone use TCP socket vs Unix socket vs Websocket for PHP execution

If you have php-fpm running on same server as Apache, and you have a lot of virtual hosts (hundreds+) using PHP. Which is the best approach for executing PHP as the owner of each virtual host (web directory)?

Looking thru this page at the moment for guidance ....

<a href="https://httpd.apache.org/docs/2.4/mod/mod_proxy_fcgi.html" title="https://httpd.apache.org/docs/2.4/mod/mod_proxy_fcgi.html">https://httpd.apache.org/docs/2.4/mod/mod_proxy_fcgi.html</a>

Thanks

Rotate logs in apache-2.4.29

Hi All,

I am trying to use rotatelogs in my webserver, but unable to do that.
Please help me to know where I am going wrong.

httpd.conf:
CustomLog "|/bin/rotatelogs logs/httpd_log 60" combined

error_log:
(4002)No such file or directory: AH00104: unable to start piped log program
' /bin/rotatelogs /logs/httpd_log 60'
AH00015: Unable to open logs

I tired for access_log too. But getting the same error.

Thanks
Hemant

mod_proxy_http rewrite problem

All,

I'm facing what seemingly is a very difficult challenge, tyring to set up a
proxy to a backend application. I say 'seemingly very difficult' because I
have reached out to the HTTPD community, codementor.io (offering money for
help), as well as consultants who say they really are not skilled enough to
help. When I started looking into this (I've had to put it on the back
burner due to more urgent needs) I didn't anticipate the setup being
excessively difficult, but it seems to be.

MySQL Java 10 and XQuery

Can MySQL work with Java 10 and XQuery?

FINAL REMINDER: Apache EU Roadshow 2018 in Berlin next week!

Hello Apache Supporters and Enthusiasts

This is a final reminder that our Apache EU Roadshow will be held in
Berlin next week on 13th and 14th June 2018. We will have 28 different
sessions running over 2 days that cover some great topics.

Re: [users@httpd] Apache 2.4.x - Restriction of HTTPS Enforcement to external clients

I think you can add an additional RewriteCond under the first:

RewriteCond %{HTTP_HOST} ^www\.example\.com$

mod_rewrite or reverse proxy?

So, I have an Ubuntu 16.04 server (host) with Apache 2.4.18

I have created 4 LXD containers on this server.

Each container has media server app installed.

I want to be able to access a container based on the input query.

So if I browse to http:// <http://"host> "host server"/LPC1, I access
container 1.

If I browse to <a href="http://host" title="http://host">http://host</a> server"/LPC2, I access container 2.

Is this possible with mod_rewrite?

Note that the host and containers can ping each other's IP.

I want to be able to do something like this:

RewriteEngine on

Redirect "localhost/LPC1" "rtmp://10.22.175.19:

Apache 2.4.x - Restriction of HTTPS Enforcement to external clients

Hello,

I have a need to restrict https enforcement on my Apache installation to only external clients.

The server hosting the Apache instance is accessible over the internet via a domain http://www.domainname.net<http://www.domainname.net> while the same server is accessed internally/locally (LAN) by application servers via <a href="http://172.16.10.x/" title="http://172.16.10.x/">http://172.16.10.x/</a>

Whenever https is enforced, the internal applications become unstable because they have not been programmed to make https calls and cannot deal with the https redirection done by Apache.

Re: [users@httpd] Apache httpd 2.4.34-RC1 Win available

Removed the RC download, not in line with registered marks and
identity of the Apache HTTP Server project.

On Monday 04/06/2018 at 16:15, Steffen wrote:

Apache httpd 2.4.34-RC1 Win available

Apachelounge informed the ASF-httpd-project on the dev-list that we
have, because the vote time is too short, once in a while RC’s
from branches before voting, so the Win community had more time to
test. Issues are then earlier discovered.

An reaction from Jim (does mostly act as RM and does T&R ) was: I
agree a case could be made for considering adding an RC stage to our
release process... it would require some additional tooling and some
sort of additions to ap_release.h but nothing insurmountable.

Apache 2.4 authentication and authorization “toggling” - with custom authentication mod

I'm upgrading Apache 2.2 to Apache 2.4, and have encountered an issue
regarding authentication and authorization with a custom authentication
provider.

Apache 2.4 authentication and authorization “toggling” - with custom authentication mod

I'm upgrading Apache 2.2 to Apache 2.4, and have encountered an issue
regarding authentication and authorization with a custom authentication
provider.

Modifying request body and content type going to proxy url

Hi All,
I am able to configure httpd as reverse proxy, I have to modify json body
in post request coming from client to URL encoded format before sending
that to specific proxy server, I have searched for the answer on the
internet but got nothing can anyone give a hint on this.

Thanks,
Shiva

mod_wsgi in Apache 2.4

To support Python code, it appears that mod_wsgi is necessary? |
desirable. It appears to function correctly within Apache 2.4, but I
cannot find it in the *Apache* documentation
<https://httpd.apache.org/docs/2.4/mod/> (the developer's documentation
is easily available.)

Does anyone have any experience, thoughts, caveats, recommendations?

Thanks -- Paul

Distribution repository vs compiled.

Hello dears.

Tell me, please, what's better to use in production:
1) Precompiled binaries of apache httpd from distribution
2) or Self compiled from sources

What are the risks for each options and pro and cons of each?

Thank you.

REMINDER: Apache EU Roadshow 2018 in Berlin is less than 2 weeks away!

Hello Apache Supporters and Enthusiasts

This is a reminder that our Apache EU Roadshow in Berlin is less than
two weeks away and we need your help to spread the word. Please let your
work colleagues, friends and anyone interested in any attending know
about our Apache EU Roadshow event.

We have a great schedule including tracks on Apache Tomcat, Apache Http
Server, Microservices, Internet of Things (IoT) and Cloud Technologies.

Syndicate content