Re: [EMAIL PROTECTED] Compiling Apache 1.3.37

[Val]

On Fri, 2007-01-19 at 09:36 -0800, Sander Temme wrote:
> So, in your case, you'll have to add:
> 
> --enable-module=vhost_alias \
> --enable-module=mime_magic
> 
> etc.

Thank you. That works.

-- 
Val <[EMAIL PROTECTED]>

__
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Client Certificate authentication not working

[DEVAL SHAH]

Hello Serge,
I am using Apache 2.2.4 and IE 7. I imported the certificate in P12 format.

Thanks
Deval



From: "Serge Dubrouski" <[EMAIL PROTECTED]>
Reply-To: users@httpd.apache.org
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] Client Certificate authentication not working
Date: Fri, 19 Jan 2007 17:06:08 -0700

What version of Apache do you use? There is a well known problem for
this in Apache 2.0.XX (there is an unofficial patch for it but I
didn't try it) and the only way to fix it is to upgrade to Apache
2.2.XX.

On 1/19/07, DEVAL SHAH <[EMAIL PROTECTED]> wrote:

Hello,
Please help me I have been trying to get this working for 2 weeks now. 
Here

is the error:
[debug] ssl_engine_kernel.c(426): Changed client verification type will
force renegotiation
[info] Requesting connection re-negotiation
..
...
[debug] ssl_engine_kernel.c(1770): OpenSSL: Write: SSLv3 read client
certificate B
[debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv3 read 
client

certificate B
[error] Re-negotiation handshake failed: Not accepted by client!?

I created a local CA. Worked fine
I have a trusted certificate from Thawte on Apache
I created a client certificate using my local CA - worked well. CN = Deval
Shah
I imported the client certificate and CA certificate in IE. IE shows the
certificate properly without any error.

httpd-ssl.conf file
SSLCertificateFile /usr/local/apache2/conf/ssl.crt/server.crt  -> Points 
to

certificate from Thawte SSLCertificateKeyFile
/usr/local/apache2/conf/ssl.key/server.key
SSLCACertificateFile /usr/local/apache2/conf/ssl.crt/devalCA.crt  -> local
CA that i created
SSLVerifyDepth  10

  SSLOptions +ExportCertData +OptRenegotiate +StdEnvVars
  SSLVerifyClient require
  SSLRequire %{SSL_CLIENT_S_DN_CN} in {"Deval Shah"}


Let me know what is wrong?

Thanks
Deval



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Client Certificate authentication not working

[DEVAL SHAH]

Hello Serge,
I am using Apache 2.2.4 and IE 7. I imported the certificate in P12 format.

Deval



From: "Serge Dubrouski" <[EMAIL PROTECTED]>
Reply-To: users@httpd.apache.org
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] Client Certificate authentication not working
Date: Fri, 19 Jan 2007 17:06:08 -0700

What version of Apache do you use? There is a well known problem for
this in Apache 2.0.XX (there is an unofficial patch for it but I
didn't try it) and the only way to fix it is to upgrade to Apache
2.2.XX.

On 1/19/07, DEVAL SHAH <[EMAIL PROTECTED]> wrote:

Hello,
Please help me I have been trying to get this working for 2 weeks now. 
Here

is the error:
[debug] ssl_engine_kernel.c(426): Changed client verification type will
force renegotiation
[info] Requesting connection re-negotiation
..
...
[debug] ssl_engine_kernel.c(1770): OpenSSL: Write: SSLv3 read client
certificate B
[debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv3 read 
client

certificate B
[error] Re-negotiation handshake failed: Not accepted by client!?

I created a local CA. Worked fine
I have a trusted certificate from Thawte on Apache
I created a client certificate using my local CA - worked well. CN = Deval
Shah
I imported the client certificate and CA certificate in IE. IE shows the
certificate properly without any error.

httpd-ssl.conf file
SSLCertificateFile /usr/local/apache2/conf/ssl.crt/server.crt  -> Points 
to

certificate from Thawte SSLCertificateKeyFile
/usr/local/apache2/conf/ssl.key/server.key
SSLCACertificateFile /usr/local/apache2/conf/ssl.crt/devalCA.crt  -> local
CA that i created
SSLVerifyDepth  10

  SSLOptions +ExportCertData +OptRenegotiate +StdEnvVars
  SSLVerifyClient require
  SSLRequire %{SSL_CLIENT_S_DN_CN} in {"Deval Shah"}


Let me know what is wrong?

Thanks
Deval



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Client Certificate authentication not working

[DEVAL SHAH]

Hi Serge,
I am using Apache 2.2.4.

Thanks
Deval



From: "Serge Dubrouski" <[EMAIL PROTECTED]>
Reply-To: users@httpd.apache.org
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] Client Certificate authentication not working
Date: Fri, 19 Jan 2007 17:06:08 -0700

What version of Apache do you use? There is a well known problem for
this in Apache 2.0.XX (there is an unofficial patch for it but I
didn't try it) and the only way to fix it is to upgrade to Apache
2.2.XX.

On 1/19/07, DEVAL SHAH <[EMAIL PROTECTED]> wrote:

Hello,
Please help me I have been trying to get this working for 2 weeks now. 
Here

is the error:
[debug] ssl_engine_kernel.c(426): Changed client verification type will
force renegotiation
[info] Requesting connection re-negotiation
..
...
[debug] ssl_engine_kernel.c(1770): OpenSSL: Write: SSLv3 read client
certificate B
[debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv3 read 
client

certificate B
[error] Re-negotiation handshake failed: Not accepted by client!?

I created a local CA. Worked fine
I have a trusted certificate from Thawte on Apache
I created a client certificate using my local CA - worked well. CN = Deval
Shah
I imported the client certificate and CA certificate in IE. IE shows the
certificate properly without any error.

httpd-ssl.conf file
SSLCertificateFile /usr/local/apache2/conf/ssl.crt/server.crt  -> Points 
to

certificate from Thawte SSLCertificateKeyFile
/usr/local/apache2/conf/ssl.key/server.key
SSLCACertificateFile /usr/local/apache2/conf/ssl.crt/devalCA.crt  -> local
CA that i created
SSLVerifyDepth  10

  SSLOptions +ExportCertData +OptRenegotiate +StdEnvVars
  SSLVerifyClient require
  SSLRequire %{SSL_CLIENT_S_DN_CN} in {"Deval Shah"}


Let me know what is wrong?

Thanks
Deval



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Client Certificate authentication not working

[Serge Dubrouski]

What version of Apache do you use? There is a well known problem for
this in Apache 2.0.XX (there is an unofficial patch for it but I
didn't try it) and the only way to fix it is to upgrade to Apache
2.2.XX.

On 1/19/07, DEVAL SHAH <[EMAIL PROTECTED]> wrote:

Hello,
Please help me I have been trying to get this working for 2 weeks now. Here
is the error:
[debug] ssl_engine_kernel.c(426): Changed client verification type will
force renegotiation
[info] Requesting connection re-negotiation
..
...
[debug] ssl_engine_kernel.c(1770): OpenSSL: Write: SSLv3 read client
certificate B
[debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv3 read client
certificate B
[error] Re-negotiation handshake failed: Not accepted by client!?

I created a local CA. Worked fine
I have a trusted certificate from Thawte on Apache
I created a client certificate using my local CA - worked well. CN = Deval
Shah
I imported the client certificate and CA certificate in IE. IE shows the
certificate properly without any error.

httpd-ssl.conf file
SSLCertificateFile /usr/local/apache2/conf/ssl.crt/server.crt  -> Points to
certificate from Thawte SSLCertificateKeyFile
/usr/local/apache2/conf/ssl.key/server.key
SSLCACertificateFile /usr/local/apache2/conf/ssl.crt/devalCA.crt  -> local
CA that i created
SSLVerifyDepth  10

  SSLOptions +ExportCertData +OptRenegotiate +StdEnvVars
  SSLVerifyClient require
  SSLRequire %{SSL_CLIENT_S_DN_CN} in {"Deval Shah"}


Let me know what is wrong?

Thanks
Deval



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Client Certificate authentication not working

[DEVAL SHAH]

Hello,
Please help me I have been trying to get this working for 2 weeks now. Here 
is the error:
[debug] ssl_engine_kernel.c(426): Changed client verification type will 
force renegotiation

[info] Requesting connection re-negotiation
..
...
[debug] ssl_engine_kernel.c(1770): OpenSSL: Write: SSLv3 read client 
certificate B
[debug] ssl_engine_kernel.c(1789): OpenSSL: Exit: error in SSLv3 read client 
certificate B

[error] Re-negotiation handshake failed: Not accepted by client!?

I created a local CA. Worked fine
I have a trusted certificate from Thawte on Apache
I created a client certificate using my local CA - worked well. CN = Deval 
Shah
I imported the client certificate and CA certificate in IE. IE shows the 
certificate properly without any error.


httpd-ssl.conf file
SSLCertificateFile /usr/local/apache2/conf/ssl.crt/server.crt  -> Points to 
certificate from Thawte SSLCertificateKeyFile 
/usr/local/apache2/conf/ssl.key/server.key
SSLCACertificateFile /usr/local/apache2/conf/ssl.crt/devalCA.crt  -> local 
CA that i created

SSLVerifyDepth  10

 SSLOptions +ExportCertData +OptRenegotiate +StdEnvVars
 SSLVerifyClient require
 SSLRequire %{SSL_CLIENT_S_DN_CN} in {"Deval Shah"}


Let me know what is wrong?

Thanks
Deval



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] CGI Windows XP

[Can Le]

Hi Steve,
  
  I have had "Allow from all" as below:
  
  
  AllowOverride None
  Options None
  ##Options Includes +ExecCGI MultiViews (tried)
  Order allow,deny
  Allow from all
  

  Can you show me why I unchecked Read Only in my Windows XP, but after 1 or 2 
second it returned Checked Read Only ? What permission should I take in 
Registry for system, Adm, and owner?
  
  Thank you for your helps.
  
  Can Le
  
Steve Swift <[EMAIL PROTECTED]> wrote:  The default  block for the 
CGI directory under Windows is:

AllowOverride None
Options None
Order allow,deny  
Allow from all


I don't see the "Allow from all" in your version. 

On 19/01/07, Can Le <  [EMAIL PROTECTED]> wrote:Hi,
  
  Please help me debug or post a sample link for CGI problem.  
  

  


 
-
Be a PS3 game guru.
Get your game face on with the latest PS3 news and previews at Yahoo! Games.

[EMAIL PROTECTED] mounted file system for DocumentRoot

[Jim Austin]

Hello,
Sorry if I have overlooked the answer in the archives but:
I've tried to use a mounted file system for my DocumentRoot to no avail.
Is there a way to do this?
Thanks for any feedback!


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Reg rotatelog.exe in apache 2.2

[SriGowri vatticuti]

ErrorLog "| C:/PROGRA~1/APACHE~1/Apache2/bin/rotatelogs.exe 
C:/PROGRA~1/APACHE~1/Apache2/logs/error.log 300"
  This is creating errorlog file as error.log.1169239200, it is not piping the 
log file for every 5 min
   
  Do we have to turn on any flags in httpd.conf or vhost.conf to make this 
work??

<[EMAIL PROTECTED]> wrote:
Hi,
  We are running apache 2.2 on windows server 2003 and I was trying to rotate 
the error.log file:
   
  In httpd.conf I added 
  ErrorLog "|c:/PROGRA~1/APACHE~1/Apache2/bin/rotatelogs.exe /logs/error.log 10"
   
  When I restart the apache server it says -unable to find the process for 
error log
   
  So I changed to
  ErrorLog "|c:/PROGRA~1/APACHE~1/Apache2/bin/rotatelogs.exe C 
:/PROGRA~1/APACHE~1/Apache2//logs/error.log 10"
   
  Even then it complains the same -unable to find process for error log
   
  So I changed to
  ErrorLog "|rotatelog.exe logs/error.log 10" 
  for this the server does not complain any errors but it is not starting
   
  Can anyone please let me know what could be the issue here.
   
  Thanks
  vsg
   

-
  Don't be flakey. Get Yahoo! Mail for Mobile and 
always stay connected to friends.

 
-
Expecting? Get great news right away with email Auto-Check.
Try the Yahoo! Mail Beta.

Re: [EMAIL PROTECTED] CGI Windows XP

[Steve Swift]

The default  block for the CGI directory under Windows is:

   AllowOverride None
   Options None
   Order allow,deny
   Allow from all


I don't see the "Allow from all" in your version.

On 19/01/07, Can Le <[EMAIL PROTECTED]> wrote:


Hi,

Please help me debug or post a sample link for CGI problem.

Affter I re-installed  Windows and Apache2.2, I could open localhost home
page from htdocs/index.html but not  CGI from index.cgi. I viewed old
apache1.3 plus new apache2.2 helps:

http://httpd.apache.org/docs/1.3/misc/FAQ.html#aixccbug

I am using Windows XP home, apache2.2 to write Perl cgi. I am having
problem of running CGI with this error:

[Thu Jan 18 21:05:59 2007] [error] [client 127.0.0.1] client denied by
server configuration: C:/Program Files/Apache Software
Foundation/Apache2.2/cgi-bin

I had these among other things in httpd.conf:

LoadModule cern_meta_module lib/apache2/mod_cern_meta.so
LoadModule cgi_module lib/apache2/mod_cgi.so

ScriptAlias /cgi-bin/ "C:/Program Files/Apache Software
Foundation/Apache2.2/cgi-bin/"


AllowOverride None
AddHandler cgi-script .cgi .html
Options Includes +ExecCGI MultiViews

LogLevel debug
DirectoryIndex index.html index.cgi

Myfile.cgi properties from Windows: unchecked Read only, apache in
Registry: no group, but after I reboosted Windows XP, the Read only
checkmark was checked again. Adding "debug" won't give any more hints.

Do I have to remove 2 LoadModules for default.so ? I did it then restarted
Apache but the error remained.

Any help or guide is very thankful

Can Le

--
Never miss an email again!
Yahoo! 
Toolbaralerts
 you the instant new Mail arrives.Check it out.





--
Steve Swift
http://www.swiftys.org.uk

RE: [EMAIL PROTECTED] Forbidden web pages

[Bashiro]

I think start searching in your config file :
 "Order deny,allow"
change this to allow from all. If it works then start adjusting your config 
file from there.

I think that's why you cannot access the files
Bashiro

 --- On Fri 01/19, Lowe, Grant < [EMAIL PROTECTED] > wrote:
From: Lowe, Grant [mailto: [EMAIL PROTECTED]
To: users@httpd.apache.org
Date: Fri, 19 Jan 2007 11:51:45 -0800
Subject: RE: [EMAIL PROTECTED] Forbidden web pages

















Hi Steve.

 

What you said I realized
this morning.  There are no symbolic links in either directory, so I don’t
know why it’s confused.  In the /var/www/mrtg, I have all the mrtg info
page.  The data I want is in the /var/www/html/mrtg page, which is within the
document root. 

 

 









From:
Steve Swift [mailto:[EMAIL PROTECTED] 
Sent: Friday, January 19, 2007
11:45 AM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED]
Forbidden web pages



 

I don't have
an answer. I'll add what I found and maybe someone else can see what's going
on.

>From your httpd.conf you have set DocumentRool to /var/www/html
So fetching a url such as http://servername/mrtg
would try to fetch the file "mrtg" from directory /var/www/html - so
it's looking for /var/www/html/mrtg

>From your error_log, the forbidden is being generated from a reference to
/var/www/mrtg - this is outside the document root, so something has directed
the URL reference of "/mrtg" to directory/file  /var/www/mrtg 

Do you have a symbolic link at /var/www/html/mrtg which points to /var/www/mrtg
? It's about the only thing I can think of.
Do you have anything at /var/www/mrtg on your susyem? If so, is it a file, or a
directory? 



On 19/01/07, Lowe, Grant <[EMAIL PROTECTED]>
wrote:





Hi Steve.

 

Thanks for such a quick reply.  As you
asked, here's the last few lines of the access_log:

 

[EMAIL PROTECTED] logs]# tail access_log 

132.239.157.144
- - [19/Jan/2007:09:58:44 -0800] "POST / HTTP/1.1" 200 10343 
"http://132.239.73.52/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

132.239.157.144
- - [19/Jan/2007:09:58:45 -0800] "GET /NoAuth/webrt.css HTTP/1.1" 200
12658 "http://132.239.73.52/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

132.239.157.144
- - [19/Jan/2007:09:58:45 -0800] "GET /NoAuth/printrt.css HTTP/1.1"
200 696 "http://132.239.73.52/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

132.239.157.144
- - [19/Jan/2007:09:58:49 -0800] "GET /Admin/ HTTP/1.1" 200 4851
"http://132.239.73.52/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

132.239.157.144
- - [19/Jan/2007:09:58:49 -0800] "GET /NoAuth/webrt.css HTTP/1.1" 200
12658 "http://132.239.73.52/Admin/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

132.239.157.144
- - [19/Jan/2007:09:58:49 -0800] "GET /NoAuth/printrt.css HTTP/1.1"
200 696 "http://132.239.73.52/Admin/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

127.0.0.1
- - [19/Jan/2007:10:56:31 -0800] "GET
/mrtg/imgdot-1x1-transp-ff.gif HTTP/1.1" 404 306 "http://localhost/mrtg/";
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.9) Gecko/20061222 
CentOS/1.5.0.9-0.1.el4.centos4
Firefox/1.5.0.9"

132.239.157.153
- - [19/Jan/2007:11:19:35 -0800] "GET /mrtg HTTP/1.1" 403 285
"-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9) Gecko/20061206
Firefox/1.5.0.9"

132.239.157.153
- - [19/Jan/2007:11:19:36 -0800] "GET /mrtg HTTP/1.1" 403 285
"-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9) Gecko/20061206
Firefox/1.5.0.9"

132.239.73.52
- - [19/Jan/2007:11:19:53 -0800] "GET /mrtg HTTP/1.1" 403 285
"-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.9) Gecko/20061222
CentOS/1.5.0.9-0.1.el4.centos4 Firefox/1.5.0.9"

 

Here's the last lines of the error_log:

 

[Fri Jan 19 07:47:28 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg/

[Fri Jan 19 09:00:22 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg

[Fri Jan 19 09:09:46 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg

[Fri Jan 19 09:28:34 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg

[Fri Jan 19 09:29:03 2007] [error] [client 132.239.157.153] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:41:58 2007] [error] [client 127.0.0.1] File does not exist:
/var/www/mrtg/imgdot-1x1-transp-ff.gif, referer: http://localhost/mrtg/

[Fri Jan 19 10:56:31 2007] [error] [client 127.0.0.1] File does not exist:
/var/www/mrtg/imgdot-1x1-transp-ff.gif, referer: http://localhost/mrtg/

[Fri Jan 19 11:19:35 2007] [error] [client 132.239.157.153] client
denied by server configuration:

RE: [EMAIL PROTECTED] Forbidden web pages

[Lowe, Grant]

Hi Steve.

 

What you said I realized this morning.  There are no symbolic links in
either directory, so I don't know why it's confused.  In the
/var/www/mrtg, I have all the mrtg info page.  The data I want is in the
/var/www/html/mrtg page, which is within the document root. 

 

 



From: Steve Swift [mailto:[EMAIL PROTECTED] 
Sent: Friday, January 19, 2007 11:45 AM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] Forbidden web pages

 

I don't have an answer. I'll add what I found and maybe someone else can
see what's going on.

>From your httpd.conf you have set DocumentRool to /var/www/html
So fetching a url such as http://servername/mrtg would try to fetch the
file "mrtg" from directory /var/www/html - so it's looking for
/var/www/html/mrtg

>From your error_log, the forbidden is being generated from a reference
to /var/www/mrtg - this is outside the document root, so something has
directed the URL reference of "/mrtg" to directory/file  /var/www/mrtg 

Do you have a symbolic link at /var/www/html/mrtg which points to
/var/www/mrtg ? It's about the only thing I can think of.
Do you have anything at /var/www/mrtg on your susyem? If so, is it a
file, or a directory? 

On 19/01/07, Lowe, Grant <[EMAIL PROTECTED]> wrote:

Hi Steve.

 

Thanks for such a quick reply.  As you asked, here's the last few lines
of the access_log:

 

[EMAIL PROTECTED] logs]# tail access_log 

132.239.157.144 - - [19/Jan/2007:09:58:44 -0800] "POST / HTTP/1.1" 200
10343 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U; PPC Mac OS X;
en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:45 -0800] "GET /NoAuth/webrt.css
HTTP/1.1" 200 12658 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U;
PPC Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko)
Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:45 -0800] "GET
/NoAuth/printrt.css HTTP/1.1" 200 696 "http://132.239.73.52/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET /Admin/ HTTP/1.1"
200 4851 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U; PPC Mac OS
X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET /NoAuth/webrt.css
HTTP/1.1" 200 12658 "http://132.239.73.52/Admin/"; "Mozilla/5.0
(Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like
Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET
/NoAuth/printrt.css HTTP/1.1" 200 696 "http://132.239.73.52/Admin/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

127.0.0.1 - - [19/Jan/2007:10:56:31 -0800] "GET
/mrtg/imgdot-1x1-transp-ff.gif HTTP/1.1" 404 306
"http://localhost/mrtg/"; "Mozilla/5.0 (X11; U; Linux i686; en-US;
rv:1.8.0.9) Gecko/20061222 CentOS/1.5.0.9-0.1.el4.centos4
Firefox/1.5.0.9"

132.239.157.153 - - [19/Jan/2007:11:19:35 -0800] "GET /mrtg HTTP/1.1"
403 285 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9)
Gecko/20061206 Firefox/1.5.0.9"

132.239.157.153 - - [19/Jan/2007:11:19:36 -0800] "GET /mrtg HTTP/1.1"
403 285 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9)
Gecko/20061206 Firefox/1.5.0.9"

132.239.73.52 - - [19/Jan/2007:11:19:53 -0800] "GET /mrtg HTTP/1.1" 403
285 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.9)
Gecko/20061222 CentOS/1.5.0.9-0.1.el4.centos4 Firefox/1.5.0.9"

 

Here's the last lines of the error_log:

 

[Fri Jan 19 07:47:28 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg/

[Fri Jan 19 09:00:22 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:09:46 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:28:34 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:29:03 2007] [error] [client 132.239.157.153] client
denied by server configuration: /var/www/mrtg

[Fri Jan 19 09:41:58 2007] [error] [client 127.0.0.1] File does not
exist: /var/www/mrtg/imgdot-1x1-transp-ff.gif, referer:
http://localhost/mrtg/

[Fri Jan 19 10:56:31 2007] [error] [client 127.0.0.1] File does not
exist: /var/www/mrtg/imgdot-1x1-transp-ff.gif, referer:
http://localhost/mrtg/

[Fri Jan 19 11:19:35 2007] [error] [client 132.239.157.153] client
denied by server configuration: /var/www/mrtg

[Fri Jan 19 11:19:36 2007] [error] [client 132.239.157.153] client
denied by server configuration: /var/www/mrtg

[Fri Jan 19 11:19:53 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

 



From: Steve Swift [mailto:[EMAIL PROTECTED] 
Sent: Friday, January 19, 2007 11:10 AM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] Forbidden web pages

[EMAIL PROTECTED] CGI Windows XP

[Can Le]

Hi,
  
  Please help me debug or post a sample link for CGI problem.
  
  Affter I re-installed  Windows and Apache2.2, I could open  localhost home 
page from htdocs/index.html but not  CGI from  index.cgi. I viewed old 
apache1.3 plus new apache2.2 helps:
  
  http://httpd.apache.org/docs/1.3/misc/FAQ.html#aixccbug
   
  I am using Windows XP home, apache2.2 to write Perl cgi. I am having problem 
of running CGI with this error:
  
  [Thu Jan 18 21:05:59 2007] [error] [client 127.0.0.1] client denied by  
server configuration: C:/Program Files/Apache Software  
Foundation/Apache2.2/cgi-bin
  
  I had these among other things in httpd.conf:
  
  LoadModule cern_meta_module lib/apache2/mod_cern_meta.so
  LoadModule cgi_module lib/apache2/mod_cgi.so
  
  ScriptAlias /cgi-bin/ "C:/Program Files/Apache Software 
Foundation/Apache2.2/cgi-bin/"
  
  
  AllowOverride None
  AddHandler cgi-script .cgi .html
  Options Includes +ExecCGI MultiViews 
  
  LogLevel debug
  DirectoryIndex index.html index.cgi
  
  Myfile.cgi properties from Windows: unchecked Read only, apache in  Registry: 
no group, but after I reboosted Windows XP, the Read only  checkmark was 
checked again. Adding "debug" won't give any more hints.
  
  Do I have to remove 2 LoadModules for default.so ? I did it then restarted 
Apache but the error remained.
  
  Any help or guide is very thankful
  
  Can Le
  
 
-
Never miss an email again!
Yahoo! Toolbar alerts you the instant new Mail arrives. Check it out.

Re: [EMAIL PROTECTED] Forbidden web pages

[Jay Chandler]

Lowe, Grant wrote:

Hi All.

I'm getting the error:

Forbidden

You don't have permission to access /mrtg on this server.

I have searched through Google and looked at various web pages and
numerous USENET news groups.  I have checked the permissions on the mrtg
and apache directories and files in question.  I have tried different
browsers.  I have also looked through the FAQ, specifically, under
Configuration, question 15 (Why do I get "Forbidden/You don't have
permission to access / on this server" message whenever I try to access
my server).  I have tried connecting from different computers.  Still
the same result.  I'm running Apache 2.0.52 on a CentOS server.  Any
ideas?

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

  

Howdy from an hour north of you!

No worries-- had the same problem here when I set up Mailscanner-MRTG.



Here's the relevant info from my httpd.conf:

# If you wish httpd to run as a different user or group, you must run
# httpd as root initially and it will switch.
#
# User/Group: The name (or #number) of the user/group to run httpd as.
# It is usually good practice to create a dedicated user and group for
# running httpd, as with most system services.
#
User www
Group www

#
# DocumentRoot: The directory out of which you will serve your
# documents. By default, all requests are taken from this directory, but
# symbolic links and aliases may be used to point to other locations.
#
DocumentRoot "/usr/local/www/data"



Under /usr/local/www I have two directories, data and mailscanner-mrtg.  
In data I put a symlink:


/usr/local/www/data
bangor# ls -al
total 4
drwxr-xr-x  2 root  wheel  512 Nov 14 13:49 .
drwxr-xr-x  5 root  wheel  512 Jan 15 10:17 ..
lrwxr-xr-x  1 root  wheel   32 Nov 14 13:49 mrtg -> 
/usr/local/www/mailscanner-mrtg/


Obviously I had the option followsymlinks turned on in my httpd.conf as 
well.

That help anything?

--
Jay Chandler
Network Administrator, Chapman University
714.628.7249 / [EMAIL PROTECTED]
Today's Excuse: That would be because the software doesn't work. 



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Forbidden web pages

[Steve Swift]

I don't have an answer. I'll add what I found and maybe someone else can see
what's going on.


From your httpd.conf you have set DocumentRool to /var/www/html

So fetching a url such as http://servername/mrtg would try to fetch the file
"mrtg" from directory /var/www/html - so it's looking for /var/www/html/mrtg


From your error_log, the forbidden is being generated from a reference to

/var/www/mrtg - this is outside the document root, so something has directed
the URL reference of "/mrtg" to directory/file  /var/www/mrtg

Do you have a symbolic link at /var/www/html/mrtg which points to
/var/www/mrtg ? It's about the only thing I can think of.
Do you have anything at /var/www/mrtg on your susyem? If so, is it a file,
or a directory?

On 19/01/07, Lowe, Grant <[EMAIL PROTECTED]> wrote:


 Hi Steve.



Thanks for such a quick reply.  As you asked, here's the last few lines of
the access_log:



[EMAIL PROTECTED] logs]# tail access_log

132.239.157.144 - - [19/Jan/2007:09:58:44 -0800] "POST / HTTP/1.1" 200
10343 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U; PPC Mac OS X;
en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:45 -0800] "GET /NoAuth/webrt.css
HTTP/1.1" 200 12658 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U;
PPC Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:45 -0800] "GET /NoAuth/printrt.css
HTTP/1.1" 200 696 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U; PPC
Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET /Admin/ HTTP/1.1"
200 4851 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U; PPC Mac OS X;
en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET /NoAuth/webrt.css
HTTP/1.1" 200 12658 "http://132.239.73.52/Admin/"; "Mozilla/5.0 (Macintosh;
U; PPC Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko)
Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET /NoAuth/printrt.css
HTTP/1.1" 200 696 "http://132.239.73.52/Admin/"; "Mozilla/5.0 (Macintosh;
U; PPC Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko)
Safari/312.6"

127.0.0.1 - - [19/Jan/2007:10:56:31 -0800] "GET /mrtg/imgdot-
1x1-transp-ff.gif HTTP/1.1" 404 306 "http://localhost/mrtg/";
"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.9) Gecko/20061222
CentOS/1.5.0.9-0.1.el4.centos4 Firefox/1.5.0.9"

132.239.157.153 - - [19/Jan/2007:11:19:35 -0800] "GET /mrtg HTTP/1.1" 403
285 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9)
Gecko/20061206 Firefox/1.5.0.9"

132.239.157.153 - - [19/Jan/2007:11:19:36 -0800] "GET /mrtg HTTP/1.1" 403
285 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9)
Gecko/20061206 Firefox/1.5.0.9"

132.239.73.52 - - [19/Jan/2007:11:19:53 -0800] "GET /mrtg HTTP/1.1" 403
285 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.9)
Gecko/20061222 CentOS/1.5.0.9-0.1.el4.centos4 Firefox/1.5.0.9"



Here's the last lines of the error_log:



[Fri Jan 19 07:47:28 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg/

[Fri Jan 19 09:00:22 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg

[Fri Jan 19 09:09:46 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg

[Fri Jan 19 09:28:34 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg

[Fri Jan 19 09:29:03 2007] [error] [client 132.239.157.153] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:41:58 2007] [error] [client 127.0.0.1] File does not exist:
/var/www/mrtg/imgdot-1x1-transp-ff.gif, referer:
http://localhost/mrtg/

[Fri Jan 19 10:56:31 2007] [error] [client 127.0.0.1] File does not exist:
/var/www/mrtg/imgdot-1x1-transp-ff.gif, referer:
http://localhost/mrtg/

[Fri Jan 19 11:19:35 2007] [error] [client 132.239.157.153] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 11:19:36 2007] [error] [client 132.239.157.153] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 11:19:53 2007] [error] [client 132.239.73.52] client denied by
server configuration: /var/www/mrtg


 --

*From:* Steve Swift [mailto:[EMAIL PROTECTED]
*Sent:* Friday, January 19, 2007 11:10 AM
*To:* users@httpd.apache.org
*Subject:* Re: [EMAIL PROTECTED] Forbidden web pages



Also the entries from the error log would be useful. There are (at least)
two distinct ways to get "Forbidden" - the httpd.conf doesn't say that
apache can server pages from a particular {directory;URL;etc} or, the
httpd.conf says that it *is* OK, but when apache gets to the file it wants
to serve, the operating system says "you can't read that file".

On 19/01/07, *Rob Sterenborg* <[EMAIL PROTECTED]> wrote:

Lowe, Grant  wrote:
> Hi All.
>
> I'm gett

Re: [EMAIL PROTECTED] Problem with Mod_Deflate & Virtual Hosts

[Graeme Walker]

I tried out your suggestions, thanks for those. Unfortunately its still not
working. DEFLATE filter is working in the SSL virtual host, but not the
others, as the Content-Encoding header is there in the response from Apache.
This has me thinking if there is a bug, with regards to having SSL with
Deflate, somehow preventing the other virtual hosts from using the deflate
filter in some way.

Thanks for your continued help

Cheers
Graeme

On 19/01/07, Boyle Owen <[EMAIL PROTECTED]> wrote:


I had another look at your setup - I think the problem is your
Content-type in the response. AFAIU, for mod_deflate to kick in, the
Content-type has to match one of the content-types in the argument list
to directive AddOutputFilterByType. YOu have:

AddOutputFilterByType DEFLATE text/html text/plain text/xml image/jpg
image/jpeg image/gif image/png application/xml

but

Content-Type: application/xhtml+xml; charset=utf-8

in the response...

What happens if you request a plain, old HTML file instead of the
whizzo-complicated ASP thingy?

Read also the note in the big red box on page
http://httpd.apache.org/docs/2.2/mod/core.html#addoutputfilterbytype.

BTW, you're asking mod_deflate to compress image files, but these are
already compressed - so you can't compress them further.

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored.

> -Original Message-
> From: Graeme Walker [mailto:[EMAIL PROTECTED]
> Sent: Thursday, January 18, 2007 1:11 PM
> To: users@httpd.apache.org
> Subject: Re: [EMAIL PROTECTED] Problem with Mod_Deflate & Virtual Hosts
>
> Hi Owen,
>
> Request:
>
> http://www.cyberhawk.ath.cx/home.aspx?sid=2de08bd0-3c6e-47f6-8
faf-65181d19e0c3
>
> GET /home.aspx?sid=2de08bd0-3c6e-47f6-8faf-65181d19e0c3 HTTP/1.1
> Host: www.cyberhawk.ath.cx
> User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US;
> rv:1.8.1.1) Gecko/20061204 Firefox/2.0.0.1
> Accept:
> text/xml,application/xml,application/xhtml+xml,text/html;q=
> 0.9,text/plain;q=0.8,image/png,*/*;q=0.5
> Accept-Language: en-us,en;q=0.5
> Accept-Encoding: gzip,deflate
> Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
> Keep-Alive: 300
> Connection: keep-alive
> Cookie:
> cImage_UserPassword=xDq5UCrSoOciMK/5aKWuCldlu72ivHV3rP3HMYfpIT
> kxNzQ4OTgxMTY0MTYyMTE=; collapseprefs=; cImage_UserID=35
>
> Response:
>
> HTTP/1.x 200 OK
> Date: Thu, 18 Jan 2007 12:08:14 GMT
> Server: Apache/2.2.4 (Win32) mod_ssl/2.2.3 OpenSSL/0.9.8b
> mod_aspdotnet/2.2
> X-AspNet-Version: 2.0.50727
> Set-Cookie: ASP.NET_SessionId=bszg2lvf2mw4wf55pmfp41qb ;
> path=/; HttpOnly
> Cache-Control: private
> Content-Length: 73453
> Vary: Accept-Encoding,User-Agent
> Keep-Alive: timeout=5, max=100
> Connection: Keep-Alive
> Content-Type: application/xhtml+xml; charset=utf-8
>
>
> Any thoughts?
>
>
> On 18/01/07, Boyle Owen <[EMAIL PROTECTED]> wrote:
>
>
>
>   > -Original Message-
>   > From: Graeme Walker [mailto:[EMAIL PROTECTED]
>   > Sent: Thursday, January 18, 2007 10:23 AM
>   > To: users@httpd.apache.org 
>   > Subject: Re: [EMAIL PROTECTED] Problem with Mod_Deflate &
> Virtual Hosts
>   >
>   > Thanks for the reply, so I assume my configuration is
>   > correct?
>
>   I wouldn't assume that... your config is complicated
> and might easily
>   have a bug. That's what you have to find out.
>
>   Since you already have FF, get the LiveHTTPHeaders
> extension and check
>   for sure. Or try from the command line (as recommended earlier)
>
>   Rgds,
>   Owen Boyle
>   Disclaimer: Any disclaimer attached to this message may
> be ignored.
>
>   >Looking at the network setting in Firefox
>   > (About:config) The network.http.accept-encoding setting has
>   > gzip,deflate in it, so it should be sending it, but I'll
>   > check the headers. I just thought it was odd the fact that
>   > ap_headers bit in the apache log, as I would have thought
>   > that would be a sign of it working.
>   >
>   > Cheers
>   > Graeme
>   >
>   >
>   > On 18/01/07, Boyle Owen <[EMAIL PROTECTED]> wrote:
>   >
>   >   > -Original Message-
>   >   > From: Graeme Walker [mailto:
> [EMAIL PROTECTED]  ]
>   >   > Sent: Wednesday, January 17, 2007 10:55 PM
>   >   > To: users@httpd.apache.org  users@httpd.apache.org  >
>   >   > Subject: [EMAIL PROTECTED] Problem with Mod_Deflate &
>   > Virtual Hosts
>   >   >
>   >   > Hi,
>   >   >
>   >   > I am trying to get mod_deflate working with
> my virtual hosts,
>   >   > however it does not appear to be doing
> anything. I am using
>   >   > Apache 2.2.4.
>   >
>   >   The client has to tell the server that it can accept
>   > zipped content. It
>   >   does this by sending a request header like:
>   >
>   >

[EMAIL PROTECTED] Re: Forbidden web pages

[Andrew Hall]

Hi Grant.

I'm a bit of a newbie myself, so please don't take this as gospel, but
I /think/ it may have something to do with the ServerName section...

# ServerName gives the name and port that the server uses to identify itself.
# This can often be determined automatically, but we recommend you specify
# it explicitly to prevent problems during startup.
#
# If this is not set to valid DNS name for your host, server-generated
# redirections will not work.  See also the UseCanonicalName directive.
#
# If your host doesn't have a registered DNS name, enter its IP address here.
# You will have to access it by its address anyway, and this will make
# redirections work in a sensible way.
#
#ServerName new.host.name:80

I think you might get a result if you set this to the name you would
like to use from your web-browser, such as...

ServerName mrtg.ecsd.edu:80

...and then try hitting...

http://mrtg.ecsd.edu/mrtg

...ensuring there is an entry for the host mrtg in your network's DNS.

If the DNS thing is a problem, try adding this to the machine running
Apache's /etc/hosts file...

192.168.1.1mrtg.ecsd.edu

...using the correct IP address of course.

Don't delete the localhost entry of course.

N.B. I could be completely wrong about all this, but you're not going
to bugger anything up by doing this. Although if you're not the
sysadmin he/she might think differently :-)

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: [EMAIL PROTECTED] Forbidden web pages

[Lowe, Grant]

Hi Steve.

 

Thanks for such a quick reply.  As you asked, here's the last few lines
of the access_log:

 

[EMAIL PROTECTED] logs]# tail access_log 

132.239.157.144 - - [19/Jan/2007:09:58:44 -0800] "POST / HTTP/1.1" 200
10343 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U; PPC Mac OS X;
en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:45 -0800] "GET /NoAuth/webrt.css
HTTP/1.1" 200 12658 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U;
PPC Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko)
Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:45 -0800] "GET
/NoAuth/printrt.css HTTP/1.1" 200 696 "http://132.239.73.52/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET /Admin/ HTTP/1.1"
200 4851 "http://132.239.73.52/"; "Mozilla/5.0 (Macintosh; U; PPC Mac OS
X; en-us) AppleWebKit/312.8.1 (KHTML, like Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET /NoAuth/webrt.css
HTTP/1.1" 200 12658 "http://132.239.73.52/Admin/"; "Mozilla/5.0
(Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1 (KHTML, like
Gecko) Safari/312.6"

132.239.157.144 - - [19/Jan/2007:09:58:49 -0800] "GET
/NoAuth/printrt.css HTTP/1.1" 200 696 "http://132.239.73.52/Admin/";
"Mozilla/5.0 (Macintosh; U; PPC Mac OS X; en-us) AppleWebKit/312.8.1
(KHTML, like Gecko) Safari/312.6"

127.0.0.1 - - [19/Jan/2007:10:56:31 -0800] "GET
/mrtg/imgdot-1x1-transp-ff.gif HTTP/1.1" 404 306
"http://localhost/mrtg/"; "Mozilla/5.0 (X11; U; Linux i686; en-US;
rv:1.8.0.9) Gecko/20061222 CentOS/1.5.0.9-0.1.el4.centos4
Firefox/1.5.0.9"

132.239.157.153 - - [19/Jan/2007:11:19:35 -0800] "GET /mrtg HTTP/1.1"
403 285 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9)
Gecko/20061206 Firefox/1.5.0.9"

132.239.157.153 - - [19/Jan/2007:11:19:36 -0800] "GET /mrtg HTTP/1.1"
403 285 "-" "Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.8.0.9)
Gecko/20061206 Firefox/1.5.0.9"

132.239.73.52 - - [19/Jan/2007:11:19:53 -0800] "GET /mrtg HTTP/1.1" 403
285 "-" "Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.9)
Gecko/20061222 CentOS/1.5.0.9-0.1.el4.centos4 Firefox/1.5.0.9"

 

Here's the last lines of the error_log:

 

[Fri Jan 19 07:47:28 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg/

[Fri Jan 19 09:00:22 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:09:46 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:28:34 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

[Fri Jan 19 09:29:03 2007] [error] [client 132.239.157.153] client
denied by server configuration: /var/www/mrtg

[Fri Jan 19 09:41:58 2007] [error] [client 127.0.0.1] File does not
exist: /var/www/mrtg/imgdot-1x1-transp-ff.gif, referer:
http://localhost/mrtg/

[Fri Jan 19 10:56:31 2007] [error] [client 127.0.0.1] File does not
exist: /var/www/mrtg/imgdot-1x1-transp-ff.gif, referer:
http://localhost/mrtg/

[Fri Jan 19 11:19:35 2007] [error] [client 132.239.157.153] client
denied by server configuration: /var/www/mrtg

[Fri Jan 19 11:19:36 2007] [error] [client 132.239.157.153] client
denied by server configuration: /var/www/mrtg

[Fri Jan 19 11:19:53 2007] [error] [client 132.239.73.52] client denied
by server configuration: /var/www/mrtg

 



From: Steve Swift [mailto:[EMAIL PROTECTED] 
Sent: Friday, January 19, 2007 11:10 AM
To: users@httpd.apache.org
Subject: Re: [EMAIL PROTECTED] Forbidden web pages

 

Also the entries from the error log would be useful. There are (at
least) two distinct ways to get "Forbidden" - the httpd.conf doesn't say
that apache can server pages from a particular {directory;URL;etc} or,
the httpd.conf says that it *is* OK, but when apache gets to the file it
wants to serve, the operating system says "you can't read that file".

On 19/01/07, Rob Sterenborg <[EMAIL PROTECTED]> wrote:

Lowe, Grant  wrote:
> Hi All.
>
> I'm getting the error:
>
> Forbidden
>
> You don't have permission to access /mrtg on this server. 
>
> I have searched through Google and looked at various web pages and
> numerous USENET news groups.  I have checked the permissions
> on the mrtg and apache directories and files in question.  I have 
> tried different browsers.  I have also looked through the FAQ,
> specifically, under Configuration, question 15 (Why do I get
> "Forbidden/You don't have permission to access / on this server" 
> message whenever I try to access my server).  I have tried
> connecting from different computers.  Still the same result.  I'm
> running Apache 2.0.52 on a CentOS server.  Any ideas?

We don't know how you configured the webserver or virtual-host. 
And since we don't, my advice would be to start looking at thes

Re: [EMAIL PROTECTED] Forbidden web pages

[Jim Austin]

Hello,
Sorry if I have overlooked the answer in the archives but:
I've tried to use a mounted file system for my DocumentRoot to no avail.
Is there a way to do this?
Thanks for any feedback!


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Forbidden web pages

[Steve Swift]

Also the entries from the error log would be useful. There are (at least)
two distinct ways to get "Forbidden" - the httpd.conf doesn't say that
apache can server pages from a particular {directory;URL;etc} or, the
httpd.conf says that it *is* OK, but when apache gets to the file it wants
to serve, the operating system says "you can't read that file".

On 19/01/07, Rob Sterenborg <[EMAIL PROTECTED]> wrote:


Lowe, Grant  wrote:
> Hi All.
>
> I'm getting the error:
>
> Forbidden
>
> You don't have permission to access /mrtg on this server.
>
> I have searched through Google and looked at various web pages and
> numerous USENET news groups.  I have checked the permissions
> on the mrtg and apache directories and files in question.  I have
> tried different browsers.  I have also looked through the FAQ,
> specifically, under Configuration, question 15 (Why do I get
> "Forbidden/You don't have permission to access / on this server"
> message whenever I try to access my server).  I have tried
> connecting from different computers.  Still the same result.  I'm
> running Apache 2.0.52 on a CentOS server.  Any ideas?

We don't know how you configured the webserver or virtual-host.
And since we don't, my advice would be to start looking at these places:
http://httpd.apache.org/docs/2.0/mod/mod_access.html#allow
(And: http://httpd.apache.org/docs/2.0/mod/mod_access.html#deny)
http://httpd.apache.org/docs/2.0/mod/mod_access.html#order

Check in your config files if you used these directives at multiple
places for the same VH.
Or post your config so someone can look at it.


Grts,
Rob


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]





--
Steve Swift
http://www.swiftys.org.uk

RE: [EMAIL PROTECTED] Forbidden web pages

[Rob Sterenborg]

Lowe, Grant  wrote:
> Hi All.
> 
> I'm getting the error:
> 
> Forbidden
> 
> You don't have permission to access /mrtg on this server.
> 
> I have searched through Google and looked at various web pages and
> numerous USENET news groups.  I have checked the permissions
> on the mrtg and apache directories and files in question.  I have
> tried different browsers.  I have also looked through the FAQ,
> specifically, under Configuration, question 15 (Why do I get
> "Forbidden/You don't have permission to access / on this server"
> message whenever I try to access my server).  I have tried
> connecting from different computers.  Still the same result.  I'm
> running Apache 2.0.52 on a CentOS server.  Any ideas? 

We don't know how you configured the webserver or virtual-host.
And since we don't, my advice would be to start looking at these places:
http://httpd.apache.org/docs/2.0/mod/mod_access.html#allow
(And: http://httpd.apache.org/docs/2.0/mod/mod_access.html#deny)
http://httpd.apache.org/docs/2.0/mod/mod_access.html#order

Check in your config files if you used these directives at multiple
places for the same VH.
Or post your config so someone can look at it.


Grts,
Rob


-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Forbidden web pages

[Aaron Wagner]

On 1/19/07, Lowe, Grant <[EMAIL PROTECTED]> wrote:


Hi All.

I'm getting the error:

Forbidden

You don't have permission to access /mrtg on this server.

I have searched through Google and looked at various web pages and
numerous USENET news groups.  I have checked the permissions on the mrtg
and apache directories and files in question.  I have tried different
browsers.  I have also looked through the FAQ, specifically, under
Configuration, question 15 (Why do I get "Forbidden/You don't have
permission to access / on this server" message whenever I try to access
my server).  I have tried connecting from different computers.  Still
the same result.  I'm running Apache 2.0.52 on a CentOS server.  Any
ideas?

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]




Can you see any pages?

Can you post your httpd.conf file?

--
Thanx
Aaron N Wagner

"...what you don't realize is that in the future Google WILL reach
sentience, will [have had] invent[ed] a time machine, and will [have
had] travel[ed] back in time to prevent Bill Gates... only to become
Bill Gates by accident because of a search engine optimization
miscalculation." (Comment on the Dilbert Blog)

[EMAIL PROTECTED] Forbidden web pages

[Lowe, Grant]

Hi All.

I'm getting the error:

Forbidden

You don't have permission to access /mrtg on this server.

I have searched through Google and looked at various web pages and
numerous USENET news groups.  I have checked the permissions on the mrtg
and apache directories and files in question.  I have tried different
browsers.  I have also looked through the FAQ, specifically, under
Configuration, question 15 (Why do I get "Forbidden/You don't have
permission to access / on this server" message whenever I try to access
my server).  I have tried connecting from different computers.  Still
the same result.  I'm running Apache 2.0.52 on a CentOS server.  Any
ideas?

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

Re: [EMAIL PROTECTED] Compiling Apache 1.3.37

[Sander Temme]

On Jan 19, 2007, at 9:17 AM, Val wrote:


After this executing 'make' succeeds, but only a small fraction of the
DSOs I asked for are linked into .so files. More specifically, when I
look in 'apache_1.3.37/src/modules/standard', these modules are  
missing:


It's been a while since I have looked at Apache 1.3, but it may be  
that you have to explicitly enable modules AND tell the build system  
to build them shared. So, if you only ask for a shared build, it  
won't build the modules that are not in the default set. See ./ 
configure --help for a list of the defaults.


So, in your case, you'll have to add:

--enable-module=vhost_alias \
--enable-module=mime_magic

etc.

If you don't want to type the entire configure command again, you can  
edit the config.status file and run that.


S.

--
[EMAIL PROTECTED]http://www.temme.net/sander/
PGP FP: 51B4 8727 466A 0BC3 69F4  B7B8 B2BE BC40 1529 24AF




smime.p7s
Description: S/MIME cryptographic signature

[EMAIL PROTECTED] Compiling Apache 1.3.37

[Val]

Hi.

I've been having a really difficult time compiling apache 1.3.37. It
appears that I am doing something wrong, but I can't figure out what it
is. I hope someone might be able to point me in the right direction.

I tried this:
./configure --prefix=/usr --libexecdir=/usr/libexec/apache
--sysconfdir=/etc/apache \
--enable-module=so \
--enable-shared=vhost_alias \
--enable-shared=env \
--enable-shared=log_config \
--enable-shared=mime_magic \
--enable-shared=mime \
--enable-shared=negotiation \
--enable-shared=status \
--enable-shared=info \
--enable-shared=include \
--enable-shared=autoindex \
--enable-shared=dir \
--enable-shared=cgi \
--enable-shared=asis \
--enable-shared=imap \
--enable-shared=actions \
--enable-shared=speling \
--enable-shared=userdir \
--enable-shared=alias \
--enable-shared=rewrite \
--enable-shared=access \
--enable-shared=auth \
--enable-shared=auth_anon \
--enable-shared=auth_dbm \
--enable-shared=digest \
--enable-shared=proxy \
--enable-shared=cern_meta \
--enable-shared=expires \
--enable-shared=headers \
--enable-shared=usertrack \
--enable-shared=log_forensic \
--enable-shared=unique_id \
--enable-shared=setenvif

After this executing 'make' succeeds, but only a small fraction of the
DSOs I asked for are linked into .so files. More specifically, when I
look in 'apache_1.3.37/src/modules/standard', these modules are missing:

mod_vhost_alias.so
mod_mime_magic.so
mod_negotiation.so
mod_status.so
mod_info.so
mod_speling.so
mod_rewrite.so
mod_auth_anon.so
mod_auth_dbm.so
mod_digest.so
mod_cern_meta.so
mod_expires.so
mod_headers.so
mod_usertrack.so
mod_log_forensic.so
mod_unique_id.so

The others I specified are there. Why would this happen? What is special
about these?

Any ideas would be appreciated. Thanks.

-- 
Val <[EMAIL PROTECTED]>

__
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] mod_proxy_balancer: trying to set a request timeout

[Lucas Brasilino]

Hi All:

I'm doing some tests with Apache 2.2.4 + mod_proxy_balancer where
I have already played with my 2 backend servers in the
following fashion: both up, just one down, getting the down one up
and everything is working just fine.

But now I'm stucked in an issue: I've wrote a little code to accept
HTTP requests but to *NOT* answer the request. So I'd like to, after
a couple of seconds, mod_proxy_balancer assume it is down and
continues it normal behaviour (fetching data from the other worker).
But this 'response timeout' is taking too long, as we can see at
logs:

[Wed Jan 17 16:38:17 2007] [debug] proxy_util.c(2146): proxy: HTTP:
connection complete to 127.0.0.1:9080 (localhost)
[Wed Jan 17 16:43:17 2007] [error] [client 200.142.53.197] proxy: error
reading status line from remote server localhost, referer:
http://AA.BB.CC.DD/

So it is taking *5 minutes* to timeout, which cause browser to be
'waiting for response'.
I've been reading 2.2 mod_proxy docs but I can't figure out how can
I set this timeout, even if this is possible.

Any help ?

Here comes a config snippet:
As I'm making tests, this configuration is done within server config
context.

ProxyRequests Off

BalancerMember http://server:9080 loadfactor=1
BalancerMember http://localhost:9080 loadfactor=1
ProxySet lbmethod=byrequests

ProxyPass /loadbalancer balancer://webcluster/
ProxyPassReverse /loadbalancer balancer://webcluster/
ProxyHTMLLogVerbose On
LogLevel Debug

Thanks a lot in advance
Lucas Brasilino



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

[EMAIL PROTECTED] Main host goes away

[Bashiro]

Main host goes away

Hello Folks,

I appologise for any stupid question.
I only want to understand apache better.
Accordding to 
http://httpd.apache.org/docs/2.0/vhosts/name-based.html ,Main host goes away:
Does this mean whenever one configure any virtual host
regardless of wheter it's https or http, the main server
delcared in the httpd.conf has to be removed and place in
the virtual host block ? 

My second question is,
i have three subdomains. domain1.myhost.com, domain2.myhost.com, and 
domain3.myhost.com. 
Only domain1.myhost.com is intended to serve as ssl
and has been declared in the virtual host to use port 443.

Now Whenever other subdomains are accessed by https://, apache
serve the files directory from domain1.myhost.com even though these
subdomains have not been declared to be used as ssl.
How do I configure apache to serve only the files that are intended for
use with ss (in this case domain1.myhost.com).

Has this something to do with the main server not bein moved to the virtual 
host block ?


Thanks
bashiro

___
No banners. No pop-ups. No kidding.
Make My Way  your home on the Web - http://www.myway.com



-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
   "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]

RE: [EMAIL PROTECTED] Changing ssl certificate NOW WORKING

[Bashiro]

Hello again,

the solution was among the FAQ link you posted earlier.
ie.http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#removepassphrase

So this solved the problem. It was really about the passphrase. Hope this
completes the thread.

Once again thanks

bashiro


 --- On Fri 01/19, Boyle Owen < [EMAIL PROTECTED] > wrote:
From: Boyle Owen [mailto: [EMAIL PROTECTED]
To: users@httpd.apache.org
Date: Fri, 19 Jan 2007 10:39:19 +0100
Subject: RE: [EMAIL PROTECTED] Changing ssl certificate NOW WORKING

 > -Original Message-> From: Bashiro [mailto:[EMAIL PROTECTED] > Sent: 
 > Friday, January 19, 2007 10:36 AM> To: users@httpd.apache.org> Subject: RE: 
 > [EMAIL PROTECTED] Changing ssl certificate NOW WORKING> > > Owen Thanks a 
 > lot. Everything seems to be fine now.> Thank you very much for all the help 
 > and support.> and thanks to the mailing list administrators.Glad you got it 
 > going...Just to complete the thread, would you mind posting exactly what 
 > thesolution was?Rgds,Owen BoyleDisclaimer: Any disclaimer attached to this 
 > message may be ignored. > > Have a nice day!> Bashiro> >  --- On Fri 01/19, 
 > Boyle Owen < [EMAIL PROTECTED] > wrote:> From: Boyle Owen [mailto: [EMAIL 
 > PROTECTED]> To: users@httpd.apache.org> Date: Fri, 19 Jan 2007 08:17:21 
 > +0100> Subject: RE: [EMAIL PROTECTED] Changing ssl certificate> > > 
 > -Original Message-> From: Bashiro > [mailto:[EMAIL PROTECTED] > 
 > Sent: Thursday, January 18, 2007 > 10:30 PM> To: Boyle OwenI guess you made 
 > an error here and > meant 
to send this to the list andnot to me directly...> > Subject: RE: [EMAIL 
PROTECTED] Changing ssl certificate> > > > Hello again,> > > > I deleted the 
error log and started > apache again.> > > > This is what it puts in the eeror 
log> > > > > [Thu Jan 18 22:24:48 2007] [error] Init: > SSLPassPhraseDialog > 
builtin is not supported on Win32 (key > file > 
C:/Apache/Apache2.2/conf/ssl/myserver.key)Your > directive (SSLPassPhraseDialog 
builtin) is not supported on > your OS(win32). So you can't use it. I've no 
experience of > SSL on windows socan't advise further.A work-around would be > 
to remove the pass-phrase from the > 
cert(http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#removep> 
assphrase).Rgds,Owen BoyleDisclaimer: Any disclaimer attached > to this message 
may be ignored. > > > > How do I go about it > ? > > Thanks in advance> > > > > 
> > Bashiro> > > >  --- On Thu 01/18, Boyle Owen < > [EMAIL PROTECTED] > 
wrote:> > From: Boyle Owen [mailto: > [EMAIL PROTECTED]> > To: 
users@httpd.apache.org, > [EMAIL PROTECTED]> > Date: Thu, 18 Jan 2007 10:26:11 
+0100> > > Subject: RE: [EMAIL PROTECTED] Changing ssl certificate> > > >  > > 
-Original Message-> From: Bashiro > > [mailto:[EMAIL PROTECTED] > Sent: 
Thursday, January 18, 2007 > > 10:21 AM> To: users@httpd.apache.org> Subject: 
RE: > > [EMAIL PROTECTED] Changing ssl certificate> > > Hello,> I > > 
appreciate any help I do get here.> > I thought the problem > > is solved. But 
I was editing the wrong > httpd.conf file. So > > the problem has not benn 
solved. that is > why I was still > > seeing the old certificate in browser.> > 
Apache does not > > start when I change the certificate path anyway.> What am I 
> > doing wrong ? Apache gives a popup windows failed > to start > > the 
serviceerror log?> > Thanks> > Bashiro> >  --- On Thu > > 01/18, Boyle Owen < 
[EMAIL PROTECTED] > wrote:> From: Boyle > > Owen [mailto: [EMAIL PROTECTED]> 
To: > > users@httpd.apache.org> Date: Thu, 18 Jan 2007 08:11:13 > 
> +0100> Subject: RE: [EMAIL PROTECTED] Changing ssl certificate> > > > > 
> -Original Message-> From: Bashiro > > > [mailto:[EMAIL PROTECTED] > 
> Sent: Wednesday, January 17, > > > 2007 10:30 PM> To: > 
> users@httpd.apache.org> Subject: RE: > > [EMAIL PROTECTED] Changing > ssl 
> certificate> > > > Thanks again > > Owen,> This is my code > snip> > 
> SSLCertificateKeyFile > > > C:/Apache/Apache2.2/conf/ssl/myserver.key> 
> SSLCertificateFile > > > C:/Apache/Apache2.2/conf/ssl/myserver.crt> > Before 
> > apache > > does not start when I change it. Biut now it does > start.> > 
> But > the problem is: I still see the old > certificate when I > ask > the > 
> browser to show me (during > an alert).Make sure > you are > not seeing a 
> cached version - > clear the browser > cache(stop > and restart it).Also, you 
> > need to do a full stop > then start > of apache to reload a > cert -apache 
> restart or > graceful is not > sufficient.> > 1.>   > > How do I change this 
> to > take effect of > the  new > 
certificate > in browser.> > 2. > I > have only > declared > only one subdomain 
as secure host > > example, > > https://secure.myhost.com in the virtual host. 
But > > when > other sub > domains are accessed with https:// it does > > > 
display the > files intended only for ssl > virtual domain. > How > do I tell > 
apache not to show ssl > files when any > other sub > domain is > accessed 
using https, > i

RE: [EMAIL PROTECTED] Changing ssl certificate NOW WORKING

[Boyle Owen]

 

> -Original Message-
> From: Bashiro [mailto:[EMAIL PROTECTED] 
> Sent: Friday, January 19, 2007 10:36 AM
> To: users@httpd.apache.org
> Subject: RE: [EMAIL PROTECTED] Changing ssl certificate NOW WORKING
> 
> 
> Owen Thanks a lot. Everything seems to be fine now.
> Thank you very much for all the help and support.
> and thanks to the mailing list administrators.

Glad you got it going...

Just to complete the thread, would you mind posting exactly what the
solution was?

Rgds,
Owen Boyle
Disclaimer: Any disclaimer attached to this message may be ignored. 

> 
> Have a nice day!
> Bashiro
> 
>  --- On Fri 01/19, Boyle Owen < [EMAIL PROTECTED] > wrote:
> From: Boyle Owen [mailto: [EMAIL PROTECTED]
> To: users@httpd.apache.org
> Date: Fri, 19 Jan 2007 08:17:21 +0100
> Subject: RE: [EMAIL PROTECTED] Changing ssl certificate
> 
> > -Original Message-> From: Bashiro 
> [mailto:[EMAIL PROTECTED] > Sent: Thursday, January 18, 2007 
> 10:30 PM> To: Boyle OwenI guess you made an error here and 
> meant to send this to the list andnot to me directly...> 
> Subject: RE: [EMAIL PROTECTED] Changing ssl certificate> > > 
> Hello again,> > > > I deleted the error log and started 
> apache again.> > > > This is what it puts in the eeror log> > 
> > > [Thu Jan 18 22:24:48 2007] [error] Init: 
> SSLPassPhraseDialog > builtin is not supported on Win32 (key 
> file > C:/Apache/Apache2.2/conf/ssl/myserver.key)Your 
> directive (SSLPassPhraseDialog builtin) is not supported on 
> your OS(win32). So you can't use it. I've no experience of 
> SSL on windows socan't advise further.A work-around would be 
> to remove the pass-phrase from the 
> cert(http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#removep
> assphrase).Rgds,Owen BoyleDisclaimer: Any disclaimer attached 
> to this message may be ignored. > > > > How do I go about it 
> ? > > Thanks in advance> > > > > 
> > Bashiro> > > >  --- On Thu 01/18, Boyle Owen < 
> [EMAIL PROTECTED] > wrote:> > From: Boyle Owen [mailto: 
> [EMAIL PROTECTED]> > To: users@httpd.apache.org, 
> [EMAIL PROTECTED]> > Date: Thu, 18 Jan 2007 10:26:11 +0100> > 
> Subject: RE: [EMAIL PROTECTED] Changing ssl certificate> > > >  > 
> -Original Message-> From: Bashiro > 
> [mailto:[EMAIL PROTECTED] > Sent: Thursday, January 18, 2007 
> > 10:21 AM> To: users@httpd.apache.org> Subject: RE: > 
> [EMAIL PROTECTED] Changing ssl certificate> > > Hello,> I > 
> appreciate any help I do get here.> > I thought the problem > 
> is solved. But I was editing the wrong > httpd.conf file. So 
> > the problem has not benn solved. that is > why I was still 
> > seeing the old certificate in browser.> > Apache does not > 
> start when I change the certificate path anyway.> What am I > 
> doing wrong ? Apache gives a popup windows failed > to start 
> > the serviceerror log?> > Thanks> > Bashiro> >  --- On Thu > 
> 01/18, Boyle Owen < [EMAIL PROTECTED] > wrote:> From: Boyle 
> > Owen [mailto: [EMAIL PROTECTED]> To: > 
> users@httpd.apache.org> Date: Thu, 18 Jan 2007 08:11:13 > 
> +0100> Subject: RE: [EMAIL PROTECTED] Changing ssl certificate> > 
> > > -Original Message-> From: Bashiro > > 
> [mailto:[EMAIL PROTECTED] > Sent: Wednesday, January 17, > > 
> 2007 10:30 PM> To: > users@httpd.apache.org> Subject: RE: > 
> [EMAIL PROTECTED] Changing > ssl certificate> > > > Thanks again 
> > Owen,> This is my code > snip> > SSLCertificateKeyFile > > 
> C:/Apache/Apache2.2/conf/ssl/myserver.key> SSLCertificateFile 
> > > C:/Apache/Apache2.2/conf/ssl/myserver.crt> > Before 
> apache > > does not start when I change it. Biut now it does 
> start.> > But > the problem is: I still see the old 
> certificate when I > ask > the > browser to show me (during 
> an alert).Make sure > you are > not seeing a cached version - 
> clear the browser > cache(stop > and restart it).Also, you 
> need to do a full stop > then start > of apache to reload a 
> cert -apache restart or > graceful is not > sufficient.> > 1.
>   
> > How do I change this to > take effect of > the  new 
> certificate > in browser.> > 2. > I > have only > declared 
> only one subdomain as secure host > > example, > 
> https://secure.myhost.com in the virtual host. But > > when 
> other sub > domains are accessed with https:// it does > > 
> display the > files intended only for ssl > virtual domain. 
> How > do I tell > apache not to show ssl > files when any 
> other sub > domain is > accessed using https, > if that 
> subdomain is not > declared as > secure in the > virtual 
> host.What exactly do you mean by > subdomain? Do you > mean 
> you have severalsites on the same IP? > Then you have > 
> name-based virtual-hosting and youcannot > distinguish > 
> between the sites in HTTPS > > 
> (seehttp://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2)
> > > Rgds,Owen BoyleDisclaimer: Any disclaimer attached to 
> this > > message may be ignored. > > I beguine to suspect 
> this > code:> > > May be the 
> default is > what is > allowing ot

RE: [EMAIL PROTECTED] Changing ssl certificate NOW WORKING

[Bashiro]

Owen Thanks a lot. Everything seems to be fine now.
Thank you very much for all the help and support.
and thanks to the mailing list administrators.

Have a nice day!
Bashiro

 --- On Fri 01/19, Boyle Owen < [EMAIL PROTECTED] > wrote:
From: Boyle Owen [mailto: [EMAIL PROTECTED]
To: users@httpd.apache.org
Date: Fri, 19 Jan 2007 08:17:21 +0100
Subject: RE: [EMAIL PROTECTED] Changing ssl certificate

> -Original Message-> From: Bashiro [mailto:[EMAIL PROTECTED] > Sent: 
> Thursday, January 18, 2007 10:30 PM> To: Boyle OwenI guess you made an error 
> here and meant to send this to the list andnot to me directly...> Subject: 
> RE: [EMAIL PROTECTED] Changing ssl certificate> > > Hello again,> > > > I 
> deleted the error log and started apache again.> > > > This is what it puts 
> in the eeror log> > > > [Thu Jan 18 22:24:48 2007] [error] Init: 
> SSLPassPhraseDialog > builtin is not supported on Win32 (key file > 
> C:/Apache/Apache2.2/conf/ssl/myserver.key)Your directive (SSLPassPhraseDialog 
> builtin) is not supported on your OS(win32). So you can't use it. I've no 
> experience of SSL on windows socan't advise further.A work-around would be to 
> remove the pass-phrase from the 
> cert(http://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#removepassphrase).Rgds,Owen
>  BoyleDisclaimer: Any disclaimer attached to this message may be ignored. > > 
> > > How do I go about it ? > > Thanks in advance> > > > > 
> Bashiro> > > >  --- On Thu 01/18, Boyle Owen < [EMAIL PROTECTED] > wrote:> > 
> From: Boyle Owen [mailto: [EMAIL PROTECTED]> > To: users@httpd.apache.org, 
> [EMAIL PROTECTED]> > Date: Thu, 18 Jan 2007 10:26:11 +0100> > Subject: RE: 
> [EMAIL PROTECTED] Changing ssl certificate> > > >  > -Original 
> Message-> From: Bashiro > [mailto:[EMAIL PROTECTED] > Sent: Thursday, 
> January 18, 2007 > 10:21 AM> To: users@httpd.apache.org> Subject: RE: > 
> [EMAIL PROTECTED] Changing ssl certificate> > > Hello,> I > appreciate any 
> help I do get here.> > I thought the problem > is solved. But I was editing 
> the wrong > httpd.conf file. So > the problem has not benn solved. that is > 
> why I was still > seeing the old certificate in browser.> > Apache does not > 
> start when I change the certificate path anyway.> What am I > doing wrong ? 
> Apache gives a popup windows failed > to start > the serviceerror log?> > 
> Thanks> > Bashiro> >  --- On Thu > 01/18, Boyle Owen < [EMAIL PROTECTED] > 
> wrote:> From: Boyle 
> Owen [mailto: [EMAIL PROTECTED]> To: > users@httpd.apache.org> Date: Thu, 18 
> Jan 2007 08:11:13 > +0100> Subject: RE: [EMAIL PROTECTED] Changing ssl 
> certificate> > > > -Original Message-> From: Bashiro > > 
> [mailto:[EMAIL PROTECTED] > Sent: Wednesday, January 17, > > 2007 10:30 PM> 
> To: > users@httpd.apache.org> Subject: RE: > [EMAIL PROTECTED] Changing > ssl 
> certificate> > > > Thanks again > Owen,> This is my code > snip> > 
> SSLCertificateKeyFile > > C:/Apache/Apache2.2/conf/ssl/myserver.key> 
> SSLCertificateFile > > C:/Apache/Apache2.2/conf/ssl/myserver.crt> > Before 
> apache > > does not start when I change it. Biut now it does start.> > But > 
> the problem is: I still see the old certificate when I > ask > the > browser 
> to show me (during an alert).Make sure > you are > not seeing a cached 
> version - clear the browser > cache(stop > and restart it).Also, you need to 
> do a full stop > then start > of apache to reload a cert -apache restart or > 
> graceful is not > sufficient.> > 1.
  
> How do I change this to > take effect of > the  new certificate > in 
> browser.> > 2. > I > have only > declared only one subdomain as secure host > 
> > example, > https://secure.myhost.com in the virtual host. But > > when 
> other sub > domains are accessed with https:// it does > > display the > 
> files intended only for ssl > virtual domain. How > do I tell > apache not to 
> show ssl > files when any other sub > domain is > accessed using https, > if 
> that subdomain is not > declared as > secure in the > virtual host.What 
> exactly do you mean by > subdomain? Do you > mean you have severalsites on 
> the same IP? > Then you have > name-based virtual-hosting and youcannot > 
> distinguish > between the sites in HTTPS > > 
> (seehttp://httpd.apache.org/docs/2.2/ssl/ssl_faq.html#vhosts2)> > Rgds,Owen 
> BoyleDisclaimer: Any disclaimer attached to this > > message may be ignored. 
> > > I beguine to suspect this > code:> > > May be 
> the default is > what is > allowing other 
subdomains to be > accessed in > https.> > > > Thanks> Bashiro> >  --- On Wed 
01/17, Boyle > Owen < > [EMAIL PROTECTED] > wrote:> From: Boyle Owen > [mailto: 
> [EMAIL PROTECTED]> To: users@httpd.apache.org> > Date: Wed, > 17 Jan 2007 
11:14:32 +0100> Subject: RE: > [EMAIL PROTECTED] Changing ssl > certificate> > 
> -Original > Message-> From: Bashiro > !>  > > [mailto:[EMAIL 
PROTECTED] > Sent: Wednesday, January 17, > > > 2007 10:27 AM> To: 
users@httpd.apache.org> Subject: > 

[EMAIL PROTECTED] compilation and accentued char

[Jean-Philippe Battu]

Hello

I use a FC4 linux box where I would like to disable the apache server given
by the
distrib and to compile another version
1 / I disabled and stopped the original one
2 / I download the new one
3 / untar and launched ./configure --prefix

result : it works well but the accentued characters aren't well displayed by
the new
apache server and they are ok if I use the original one. I checked the
original one
is launched with LANG=C and HTTPD_LANG=C and the new one too.
I didn't modified /etc/sysconfig/i18n before the compilation and my
httpd.conf are
the same (I use AddDefaultCharset UTF-8)

Do you have any clues to help me to find back my accentued chars ?

Thanks !

Jean-Philippe Battu
Grenoble

Re: [EMAIL PROTECTED] dynamic configuration

[Krist van Besien]

On 1/18/07, Jason Keltz <[EMAIL PROTECTED]> wrote:


I'm wondering whether Apache allows me to have a dynamic Local directive
where I could do something like this:


.
SVNParentPath /local/subversion/repos/$1
.
AuthUserFile /local/suversion/auth/$1/svnpasswd
.
.
.
AuthzSVNAccessFile /local/subversion/auth/$1/authz
.
.


If Apache lets me do this, I don't need a Location directive for EACH
repository.


The way I would do this is by using mod_perl. Then you can use perl in
your apache config, and use this to iterate over a set of dirs, and
add location blocks to your config.

Krist

--
[EMAIL PROTECTED]
Bremgarten b. Bern, Switzerland
--
"...what you don't realize is that in the future Google WILL reach
sentience, will [have had] invent[ed] a time machine, and will [have
had] travel[ed] back in time to prevent Bill Gates... only to become
Bill Gates by accident because of a search engine optimization
miscalculation." (Comment on the Dilbert Blog)

-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
  "   from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]