How to avoid plain password in mod_ldap

There are a plain password store in mod_ldap. Is there any way to encrypt the password?
Like: AuthLDAPBindPassword password

Thanks and Regards,
Rajendra Rathore

Non Blocking write in apache

Hi All,

I am using proxy_http to proxy my request to tomcat from apache. But in
non-blocking call it is not working properly(timeout issue). I am using the
default timeout i:e 60 sec.

When writev returns -1 with errorno==4101, it should wait and then again
try for write.
while ((rv == -1) && (errno == EAGAIN || errno == EWOULDBLOCK)
&& (sock->timeout > 0)) _____ code snippet from

In debugging I have checked that sock->timeout is equal to 0.

Speakers needed for Apache DC Roadshow

We need your help to make the Apache Washington DC Roadshow on Dec 4th a

What do we need most? Speakers!

We're bringing a unique DC flavor to this event by mixing Open Source
Software with talks about Apache projects as well as OSS CyberSecurity,
OSS in Government and and OSS Career advice.

Please take a look at: <a href="" title=""></a>

(Note: You are receiving this message because you are subscribed to one
or more mailing lists at The Apache Software Foundation.)

Rich, for the ApacheCon Planners

Using mod_lua as OutputFilter and status != 200


using mod_lua (httpd: 2.4.34) for rewriting my outgoing content by

LuaOutputFilter MyOutputFilter "/my/lib/lua/output-filter.lua" output_filter
SetOutputFilter MyOutputFilter

works great when the webserver returns content with status 200.
Sadly the output_filter-function is not getting called when httpd is
redirecting content (301 or 302) or sends a 403.
Is that a bug in httpd/mod_lua or a wrong usage of mine?
The relevant config looks like:

LoadModule lua_module modules/
LuaOutputFilter MyOutputFilter "/my/lib/lua/output-filter.lua" output_filter
SetOutputFilter MyOutputFil

Peculiar mod_php result

I am running Apache 2.4.25 using php-fpm 5.6.30. I do NOT use mod_php.

Last week I compiled a newer version of PHP, 7.2.9, and I included the
--with-apxs parameter in the build, which causes mod_php to be generated.

The "make install" function updated the Apache httpd.conf file to show
LoadModule php7 module ...etc. I think (don't know for sure) that the old php5
module may not have been commented out at the time, although it was not in use.

HSTS and double redirect

Hello Users, I was testing my website here <a href="" title=""></a> and I
received this error:

Error: HTTP redirects to www first

<a href="http://example" title="http://example">http://example</a> (HTTP) should immediately redirect to <a href="https://example" title="https://example">https://example</a>
(HTTPS) before adding the www subdomain. Right now, the first redirect is
to <a href="https://www.example" title="https://www.example">https://www.example</a>. The extra redirect is required to ensure that any
browser which supports HSTS will record the HSTS entry for the top level
domain, not just the subdomain.

As far as I can understand, the redirect, to be valid, should be done this


alias and redirect


Alias "/.well-known/acme-challenge/" "/var/run/acme/acme-challenge/"
<Directory "/var/run/acme/acme-challenge">
AllowOverride None
# Options None
Options All +FollowSymLinks
Require all granted

RedirectPermanent / <a href="https://subdomain.domain.ext/" title="https://subdomain.domain.ext/">https://subdomain.domain.ext/</a>

This configuration redirects also
<a href="http://subdomain.domain.ext/.well-known/acme-challenge/" title="http://subdomain.domain.ext/.well-known/acme-challenge/">http://subdomain.domain.ext/.well-known/acme-challenge/</a>
<a href="https://subdomain.domain.ext/.well-known/acme-challenge/" title="https://subdomain.domain.ext/.well-known/acme-challenge/">https://subdomain.domain.ext/.well-known/acme-challenge/</a>

How can I bring about that
<a href="http://subdomain.domain.ext/.well-known/acme-challenge/" title="http://subdomain.domain.ext/.well-known/acme-challenge/">http://subdomain.domain.ext/.well-known/acme-challenge/</a>
is not redirected, but
<a href="http://subdomain.domain.ext/" title="http://subdomain.domain.ext/">http://subdomain.domain.ext/</a>
<a href="http://subdomain.domain.ext" title="http://subdomain.domain.ext">http://subdomain.domain.ext</a>

Server port/signature is incorrect in directory index listing

When I set HeaderName or ReadmeName (directives from mod_autoindex,
see [1]) to a SSI-enabled HTML file or a CGI program and then try to
display the server signature, the port number shown is incorrect
(always port 80).

If either the SSI file or the CGI program is retrieved separately,
they print this:

SERVER_SIGNATURE = <address>Apache/2.4.34 (Unix) PHP/7.2.9 Server at
localhost Port 4567</address>

But if their output is rendered with HeaderName or ReadmeName in a
directory listing, then it prints this:

SERVER_SIGNATURE = <address>Apac

Reverse Proxy for Web Application (or adding it as extension to Apache web server)

I have a web application I created that has a backend written in C++ with its own built-in web server. I want to deploy it behind Apache's reverse proxy (or as an extension to the Apache web server (would that be different?), so I want to know how to do it correctly considering my situation.

I read the Reverse Proxy Guide article on the Apache website, but there are still confusions that I have. For instance, do I really need to add a balancer set when I really only have one web server I need to do this for?

DocumentRoot doesn't exist (but it's giving the wrong name)

I downloaded Apache 2.4.33 (I had 2.4.29 until now, so I just upgraded) and tried to start it, but I got a warning saying: "DocumentRoot[C:/Apache24/docs/] does not exist". But in my httpd.conf file, DocumentRoot is set to ServerRoot/htdocs. And when I try to go to localhost, I get a 403 Forbidden error. I have attached my configuration file here.

Settup httpd cluster.

Hi, i need build a cluster.2 hosts in front-end and 2 hosts in back-end.
where i get a good documentation about this?

[image: image.png]

Odd session cookies

Beginning last Sunday (2 September) I have been finding several oddly named
session cookies each day on my server. The normal Apache session cookies have
names like "sess_d50280ded90f1dbd48fcfd5fc77baa77". These new ones have names


The content seems strange too, although so far I haven't found anything
important in one of the. The owner name is often mine, although some have
"php-fpm" as the file owner.

Want to Deploy Web App Behind a Reverse Proxy

I have a web application I want to deploy behind a reverse proxy.

Do I have to do this on my own computer with the instance of the Apache HTTP Server that I've installed on my machine, or is it possible to do this on the Apache somehow as well? If possible, I'd like to do the latter because I'd prefer not having to always keep my computer on.

The reason I want a reverse proxy is because my application has its own httpd( written in C++).

Upgraded from Apache 2.2 to 2.4 now getting redirect loop problem

I've upgraded from Apache 2.2 to 2.4 and 99% of my fairly large application infrastructure (Apache, Apache Webgate, WebLogic, Oracle OIM and OAM) is working fine.

However, when I attempt to access one specific subpage of an Oracle product (Oracle Identity System Administration job scheduler) via browser, even after successfully authenticating with the product, I am unable to access it.

Testing for apache open relaying

My mail server is being blocked by barracuda and spamexperts.

I have tested my mail port via and I came out clean and no

So I suspect my apache server as a proxy relay.

Is there a similar site to mxtoolbox that will test apache for improper


I thought I had it blocked for this:

# cat 01-allow.conf
<Directory "/var/www/html">
    Options Indexes FollowSymLinks
    AllowOverride None
    Order deny,allow
    allow from
    allow from
    deny from all

# more roundcubemail.c

Having child process Segmentation fault


apache 2.4.34
php 7.1.21
on SLES 12.sp3x64

Grabbed a traceback of one of the failing process, not sure how to proceed
from here, or if
this is the correct forum.

(gdb) backtrace full
#0 0x00007f598af473dd in writev () from /lib64/
No symbol table info available.
#1 0x00007f598ba8dfaa in apr_socket_sendv (sock=sock@entry=0x7f596c011140,
vec=vec@entry=0x7f597d1f5e60, nvec=nvec@entry=5,
len=len@entry=0x7f597d1f5dd8) at network_io/unix/sendrecv.c:212
rv = <optimized out>
requested_len = <optimized out>
i = <optimized out>
#2 0x00000000004502e

Script CGI with shell

Hello, i have a question, i try start a shell(bash) script in my apache2
and not work, i seting bellow diretive in my vhost but not work:
<Directory "/opt/dev/www/www.tmp.oduvaldocozzi.intranet/public_html/dir">
Options +ExecCGI
AddHandler cgi-script .cgi .pl

root@HTTPS:dir #ls -l
total 12

-rwxr-xr-x 1 webmaster dev 31 Set 4 15:48

But the bash script notwork, only display the file content:
echo "Hello world"

Step-by-Step Tutorial: How to Deploy cPanel Web Hosting Control Panel version 11.74 on CentOS 7.5 Linux Server version 1805 in Amazon AWS Cloud

Step-by-Step Tutorial: How to Deploy cPanel Web Hosting Control Panel version 11.74 on CentOS 7.5 Linux Server version 1805 in Amazon AWS Cloud

Secondary Subject/Topic: How to Setup a New Startup Web Hosting Company Using cPanel Web Hosting Control Panel version 11.74, CentOS 7.5 Linux Server version 1805, and Amazon AWS Cloud

Tertiary Subject/Topic: How to Startup Your Own Internet Business Like China's Billionaire Jack Ma. Will Teo En Ming Be Able to Emulate Jack Ma?

Objective: Experimental and Feasibility Studies for Teo En Ming's Startup Internet Business


LimitRequestFieldSize odd behaviour


I'm doing some test on an apache 2.2.15 server with a little php/cURL script and I found an odd behaviour.

My server always end up returning a 400 return code at 12284 bytes worth of header data, even if I change LimitRequestFieldSize to 4096.

Does anyone now what could create that kind of problem?

(Here is the script I used)

#!/usr/bin/env php

$url = $argv[1];
$bytes = $argv[2];
$ch = curl_init($url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($ch, CURLOPT_HTTPHEADER, [
'Junk: ' .

ProxyPassMatch vs ProxyPass

Hello all,

We are using Apache 2.4.33 on Windows (server 2012R2 and server 2016) and
planning to use ProxyPassMatch to redirect request to widlfly11. Is there
any impact on performance in using ProxyPassMatch vs ProxyPass?

Thank you,

TUTORIAL: How to Install Apache Web Server in CentOS 7.5 (1805) Linux in Amazon AWS Cloud with URL/HTTP/HTTPS Redirection

TIME: 10:49 AM SINGAPORE TIME Greenwich Mean Time+8

1. Sign up for Amazon AWS Cloud or Google Cloud Platform or Microsoft Azure Cloud or Ali Baba Cloud account (your preference).

2. Login to Amazon AWS Management Console.

3. Click EC2 under Compute.

4. Click Elastic IPs under Network and Security.

5. Click Allocate New Address.

6. Click the Allocate button.


Apache 2.4 mod_ratelimit breaks mod_autoindex

I'm trying to use mod_ratelimit
<> to enable
bandwidth limiting on my entire apache server.

If I add the following to my apache2.conf:

|SetOutputFilter RATE_LIMIT SetEnv rate-limit 1024 SetEnv
rate-initial-burst 1024 |

my indexes stop working. The same thing happens if I add it within a
<Location "/">.

VirtualHost and HTTPS

I'm running httpd 2.4.12 on Windows Server 2003.

We have things set up and working with http and https using the primary
host name (fully qualified).

We need for a different domain (same hostname) to work with https.

These both need to work:

<a href="" title=""></a> - this works fine

<a href="" title=""></a> - I can't get this to work

I have certificates (and key files) for both domains (the first being
unique to the FQDN, the second being a wildcard for *

I have <VirtualHost *:443> blocks set up with ServerName
in one, and ServerName myhost.domain2.

Apache 2.4.12 : Exception code : 0XC0000005

Hello Team,

Using Apache version as 2.4.12 version. Currently not getting up and crashed. We have taken the core dump. and find the following info. Attached the screen shot. I could not upload the dumpfile since the size is huge. Please helpto me to know the issue exactly. Thanks a lot team.

[cid:image001. ... at 01D43FA6 dot 86631B30]


Large authorization header returning error 400


I have a problem configuring httpd to accept large SPNEGO authentication headers.
The request work fine with Authorization header line of up to at least 5674 bytes but break with Authorization header of more than 6178 bytes with the following answer :

    <title>400 Bad Request</title>
    <h1>Bad Request</h1>
    <p>Your browser sent a request that this server could not understand.<br />
    Size of a request header field exceeds server limit.</p>

Apache Will Not Start


I am running an Apache server with CentOS 7 installed. I'm having issues
starting apache using the command* systemctl status httpd.service *as I
would get the following message:

*Job for httpd.service failed because the control process exited with error

Is HTTP Server affected by CVE-2018-11776 ?

Hi HTTP users, can anyone confirm if HTTP server any version is affected by CVE-2018-11776 ?


Unable to set ciphers string with space separated in apache

Hi All,

openssl standard says " The cipher list consists of one or more *cipher
strings* separated by colons. Commas or spaces are also acceptable
separators but colons are normally used". But apache says "directive uses
a *colon-separated* *cipher-spec* string consisting of OpenSSL cipher
specifications to configure the Cipher Suite the client is permitted to
negotiate in the SSL handshake phase" in
<a href="" title=""></a>.

So, when I configured apache by separating cipher string with spaces,
cipher string has no affect.

Enhancement Request

MPM Workers


Please change your worker parameter naming convention in regards to MAX.






Why? I completely misunderstood the difference between ThreadLimit and ThreadsPerChild. I have wasted over 8 hours researching the difference.

Try this out:

ThreadsPerChild 32

MaxThreadsPerChild 40

It is obvious what the relationship is between parameters with and without the prefix “max”. Compare these ThreadLimit and ThreadsPerChild.

MPM worker - ThreadLimit and ThreadsPerChild

Apache 2.4
MPM Worker
The relationship between ThreadLimit and ThreadsPerChild is not very clear. These are some questions I have.

1. Why would you ever want ThreadLimit bigger than ThreadsPerChild?
2. If you do want it bigger then how do you determine how much bigger it should be?

Update :: Win mod_perl 2.0.10 for Apache 2.4.x


<a href="" title=""></a>


With the below settings apache crashed on me. The error log told me it reached MaxRequestWorkers. It suggested increasing the size. To remedy the situation I increased MaxRequestWorkers to 10,0000. Then I was fine. Based on the documentation it says that you are supposed to divide the MaxRequestWorkers by ThreadsPerChild to get to ServerLimit. I don’t recall how many running processes I had at the time of the crash. I was in a panic mode. I have not had apache crash on me in so long I was not really prepared.

Message buffer in Apache Web Server

Hi All,

I want to send 1MB of data of request at a time. For this I want to use
buffer in proxy_http. By default we can send 8192(8kb) of data at a time.

I have used ProxyIOBufferSize and BufferSize, but still it is sending 8192

I tried to set these value to 512, so that it will send 512 Bytes at a
time. But again it is sending more than 512 Bytes.

How should I configure so that it can buffer the message till reaches the
buffer size or request is complete.


Mapping file name to uri dynamically

I got a scenario where a single file present in directory generated with
different names in different points of time. How can I map this dynamically
name changing file to specific uri all the time?
To summarize, uri remains same always but file name changes dynamically.

With Regards,

Apache/php: Max number of open files


I'm struggeling with the maximum number of open files in a php script executed through the
apache web server.

I have done two tests - one from shell and one through the apache web server.

Buffer in apache

Hi All,

I want to use buffer of 512B in apache . I am using mod_proxy_http to send
request to tomcat and have set ProxyIOBufferSize 512.

But it is sending message to tomcat with size greater than 512B.

How should I control apache in proxy so that it will send message and
receive with max buffer size of 512B.


Apache configuration for reverse proxy to nextcloud fcgi

Hi everybody,

I'm trying to set up a nextcloud:fpm docker container, exposing it via apache in the host. I think I am making a mistake with my configuration, because one accessing <a href="" title=""></a>, I got redirected to <a href="" title=""></a>, and then I get a "The page isn’t redirecting properly" screen in firefox. As I am getting up to "/login" I understand that a) the docker container is working as expected (or to be proven wrong, let's say...) and b) that the request from the host is forwarded to the container but...

Implementing REST API

Hello all!

I hope that I am posing my question to a relevant mailing list!

I am looking for a solution to implement a RESTful API server. I have
tested and examined a bunch of solution and now I think the best
solution is to use a trustworthy, reliable, and robust implementation
of HTTP protocol such as Apache httpd as HTTP server as base and then
add my API handlers for REST commands.

Special characters in password for mod_dbd


I have special characters in the password to connect to database from httpd basic authentication using mod_dbd in version 2.4.

I use:
DBDriver mysql
DBDParams host=some_ip,dbname=schema,user=user_name,pass=password_with_special_chars.:)]|&;

But httpd does not read it correctly so could not authenticate to mysql.

problem when move https site to 2.4 from 2.2 Apache

Encountered problems moving web sites from Apache 2.2 to 2.4 for https

When moving web sites from an Apache 2.2 environment to to 2.4 the ones that are .html and self written .php seem to work fine via both http and https

When moving Wordpress sites to 2.4, they work fine via http, but go into endless redirects when accessed via https

Has anyone encountered this problem?

Have done some googling, switched back and forth between php-fpm and mod_php, removed .htaccess redirects, turned off plugins, etc. Nothing seems to remedy it so far.


Apache 2.4.33 with mod_jk 1.2.43 keeps shutting down when no Tomcat worker is available


we have Apache-2.4.33 as a frontend to a bunch of Tomcats using
mod_jk-1.2.43 as load balancer. Since we upgraded to this combination, we
observe Apache shutdowns as soon as the last Tomcat worker is down.

httpd reload fails due to php72w-mysql package?

Hi all,

We have the following setup:

Centos 7.5
httpd: 2.4.6
PHP: 7.2.7 (from Webtatic Yum repo)

When we execute the command ‘systemctl reload httpd’ several times after each other we get the following error:

2018-08-17T11:32:21.134433+02:00 elvis systemd: httpd.service: main process exited, code=dumped, status=6/ABRT
2018-08-17T11:32:21.175442+02:00 elvis kill: kill: cannot find process ""
2018-08-17T11:32:21.180150+02:00 elvis systemd: httpd.service: control process exited, code=exited status=1
2018-08-17T11:32:21.180354+02:00 elvis systemd: Unit httpd.service entered failed

multiple node balancer-manager administration


I am running a 3 node proxy front end to a 3 node application back end.
All proxy nodes have the same configuration to distribute load:

| Firewall Public |
| +------+ +-------+ +-------+ |
| | 1 | | 2 | | 3 | |
| +------+ +-------+ +-------+ |
| Firewall Private |

prevent cgi-bin script execution prior to authorization dialog success


I'm having an issue with trying to configure apache that I'm hoping someone
can help me address. I have several scripts located in the cgi-bin that I
want to control access to.

memory caching with Apache 2.4

I am finally upgrading an Apache 2.2 server to 2.4 and caching has
changed.  The Apache server is used in a confined area and is not on the
web.  I was previously using mod_mem_cache to cache in memory responses
from my custom back-end tile server module which serves up tiles of data
from a larger "black box" file.  I've been reading up on the 2.4
mod_cache, mod_cache_socache, and mod_cache_disk but don't see anything
equivalent to the old 2.2  mod_mem_cache where I could allocate a
certain amount of RAM for the result of URL requests.  I don't want a
disk cache.  I want a memory cache

Re: [users@httpd] Problem setting up ssl


Zitat von Mahmood Naderan < ... at yahoo dot com.invalid>:

How do I enable HTTP or HTTPS Redirection on my Apache HTTP servers to my Blogger and Wordpress blogs?

Good morning from Singapore,

How do I enable HTTP or HTTPS Redirection on my Apache HTTP servers to my Blogger and Wordpress blogs?

What entries should I add to my httpd.conf?

Previously I tried to add CNAME records to my DNS server but I have been advised that this is not the correct solution.

Please advise.

Thank you very much.


Turritopsis Dohrnii Teo En Ming's Academic Qualifications as at 30 Oct 2017

[1] <a href="" title=""></a>

<>[2] <a href="" title=""></a>

<>[3] <a href="https://ww" title="https://ww">https://ww</a>

bounced messages

I received a note from the list manager complaining that our server
has rejected an unconscionable number of message.
Has there been some configuration change of the mailing list recently?

There are reasons for the rejections: our SPAM filter.
1. The filter found one set of messages being sent from a blocklisted
site (, and rejected the messages.
2. The filter uses a greylist to decide about the validity if a sender
(nearly 2/3 of spam is rejected this way).

HTTP 206 response when enabling mod_deflate


I'm struggling with my reverse proxy setup using apache. Apache does the
TLS termination and forwards the requests to a dotnet core service on
localhost. The service responds to all requests with HTTP 200 (verified
using tcpdump) but with "Transfer-Encoding: /chunked".

If I enable the option "AddOutputFilterByType DEFLATE application/json"
in apache, the forwarded response gets compressed but sometimes (not for
every requests) changes to HTTP 206 (partial content).

Apache24 - Can't get .htaccess to work


For some reason I can't get .htaccess to work.
Can you tell me what I am doing wrong here?

Vim Syntax Highlighter File

I use the vim feature to highlight the syntax in the Apache configuration files. I am on RHEL 7 and there are many key words that are not getting highlighted. I noticed that a significant number of them are the new keywords in 2.4. Anyone have and updated apache.vim or apachestyle.vim filethey would be willing to share?

Darryl Baker (he/him/his)
Sr. System Administrator
Distributed Application Platform Services
Northwestern University
1800 Sherman Ave.
Suite 6-600 – Box #39
Evanston, IL 60201-3715
darryl. ... at northwestern dot edu<mailto:darryl. ... at northwestern dot edu>
(847) 467-6674

How to start perl script using FCGID module


I am trying to run a perl script using fcgid module.
I have loaded mod_fcgid module.

I have created a directory in apache called fcgi-bin and added the below
snippet to my httpd.conf file.
<Directory '/home/ananya/apache-http-connector/apache-2.4.29/fcgi-bin/'>
AddHandler fcgid-script .pl
AllowOverride All
Options +Indexes +FollowSymLinks +ExecCGI
Require all granted

And have also added -
ScriptAlias /fcgi-bin/

My perl program is a simple hello world programme as follows-

print("Content-Type: tex

How to use fcgistarter in apache

Hi All,

I tried to run my perl on port 8070 and proxy my request to port using

I am using the following command
./fcgistarter -c /usr/bin/perl -p 8070

But none of the process gets started on port 8070.

Please help how to use fcgistarter, so that I can start python or perl on
some port and proxy request to it.


Help with SSL not working on Ubuntu 14.04


This is my first post to the group so testing the waters with an issue that
I am having. I run 4 Ubuntu servers, each controlled with Webmin and
Virtualmin. I am adding SSL to one of the sites but every time I visit the
<a href="" title=""></a> it gives me either one of the errors.



The Chrome one isn't very helpful but the Firefox error at least tells me
that it's an issue on the server.

Apache HTTPD not responding after running for several days

Hi all,

I'm using Apache HTTPD 2.4.29 and 2.4.33 on Solaris 10 and 11. These HTTPDs
were compiled from source with the latest APR, APR-util and PCRE.
Upon starting, the HTTPDs initially run fine. After running for several
days to 2 weeks, HTTPD would stop responding. It wouldn't accept any new
connections although the processes are running. In the whole period the
incoming traffic volumn is low.
When in the "not responding" situation, stopping and then starting the
HTTPD would workaround the issue temporarily.

The symptoms are:

Apache 2.x version on QNX 6.X

Hello. Does anyone know what's the latest version of Apache that will run
on QNX 6.5? People have successfully compiled Apache 2.2, but current
version is 2.4. Thanks!

IPv6 in mod_status scoreboard


I am currently using Apache 2.4.25 from Debian Stretch on our

balancer manager issue

using the built-in balancer-manager ui or curl to disable a balancer member
does not actually do anything.

command: /usr/bin/curl --silent --insecure -o /dev/null -XPOST '
https://localhost:443/balancer-manager?' -d
-d w=https://on1-lbmo01c.aue1t.internal -d
nonce=20e16be2-eb5f-42c0-b061-57af2968c7db -d w_status_D=1

after running the above command, the status of the member reflects as
changed, but traffic is still flowing to the host (as evidenced by tailing
log files on the balancer member).

LoadBalancer Status for balancer://

apache 2.4 pfs and cipher configuration


I'm upgrading my apache configuration.

access control and Apache load balancing

Any suggestions on how to implement access control for ip address ranges to specific files on back end hosts when going thru Apache load balancer?

For example, you do not want external IPs to access "filename.php" on your backend hosts thru load balancer

Syndicate content