Re: virtual SSL für Anfänger
Hi Martin, Martin Ebert schrieb: Rainer, liebe Liste, * passenderweise laufen beide Wikis nicht nur unter gleicher Domain - schlimmer noch: Sämtliche Scripts im gleichen (Unix) Verzeichnis. Ganz finster. Verstehe ich nicht. Dann sind es doch dieselben Wikis? Nein. Die _Scripts_ (Perl) mehrerer Wikis liegen in genau _einem_ Verzeichnis. - Im Sinne der Aufgabenstellung: Alles ganz finster. :-( [..] ich bin zu faul, die Dokumentation zu lesen) Da eint uns was. ;-) Hmmm. :/ Aber ernsthaft: Ich will mich gern krumm machen. Aber ich möchte vermeiden Irrwege zu gehen ... wo dann doch jeder sagt: Martin, hätteste mal zugehört! Liebe Liste, hat jemand weitere Tipps insoweit? Bevor ich Dir jetzt die Konfiguration zum Pasten hinschreibe, hier erstmal die Stichworte in welche Richtung es gehen könnte. - Files schuetzenswertes_wiki.pl/Files - IfModule mod_ssl.c - SSLRequireSSL - evtl. auch: Order Allow,Deny Allow from env=HTTPS Und den verschlüsselnden Server auf Port 443 kannst Du dann als IP-basierten VirtualHost anlegen. Wenn Besucher über eine andere Domain zugreifen, könntest Du die per mod_rewrite wieder wegschicken auf den HTTP-only Server. Viel Spass *g*, .max -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] --
Re: virtual SSL für Anfänger
Hallo Martin, [...] 1) XOR. Entweder-oder, Webmaster legt fest. Jedes Skript (!) (ggf allgemeiner: Jede URL) muss eindeutig _NUR_ http oder https sei - _nie_ beides. Vielleicht kann Dir mod_rewrite zusammen mit einer RewriteMap helfen (http://httpd.apache.org/docs/2.0/mod/mod_rewrite.html#rewritemap). Dort koenntest Du per Skript/File definieren, ob es umgeleitet werden soll oder nicht. Bei Aenderungen muesstest Du lediglich die RewriteMap entsprechend anpassen. Gruss frank -- Apache HTTP Server Mailing List users-de unsubscribe-Anfragen an [EMAIL PROTECTED] sonstige Anfragen an [EMAIL PROTECTED] --
Re: [EMAIL PROTECTED] How to cache the responses for XMLHttpRquest
Erica Zhang wrote: Hi, I want to cache the responses for XMLHttpRequest, that is dynamic content. I have configureed http.conf using Expires to add headers to those responses. However, I still could not find those responses to be able to be cached by use of web browser (Firefox 2.0). Also, I tried to add Header to enable Cache-Control and etc. However they could not work either. So I am not sure if there is a way to cache XMLHttpRequest. Thanks, Erica Apache doesn't know that a given request is an XMLHttpRequest - it's no different from a normal request. Are the requests that you're making identical each time? Can you post some examples of the URL that's being requested? What does your access_log say, e.g. is it returning 200 for each request? p - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] How to cache the responses for XMLHttpRquest
Pid wrote: Erica Zhang wrote: Hi, I want to cache the responses for XMLHttpRequest, that is dynamic content. I have configureed http.conf using Expires to add headers to those responses. However, I still could not find those responses to be able to be cached by use of web browser (Firefox 2.0). Also, I tried to add Header to enable Cache-Control and etc. However they could not work either. So I am not sure if there is a way to cache XMLHttpRequest. Thanks, Erica Apache doesn't know that a given request is an XMLHttpRequest - it's no different from a normal request. Are the requests that you're making identical each time? Can you post some examples of the URL that's being requested? What does your access_log say, e.g. is it returning 200 for each request? p - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] might also be worth reading this: http://www.mnot.net/cache_docs/ http://www.mooreds.com/wordpress/archives/000382 the 2nd of which has links to caching support in browsers Basically it is possible, driven by the browser, and different headers take priority, and you have to code your application to use caching, sending if-modified0since and sometimes other headers in order to get the deisired response, use a proxy to discover what your browser says to the server, and replicate that in your xhr calls. -- Matthew Farey - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] (8)Exec format error: exec of 'test.CSS' failed when ScriptAlias
Hi, Using Apache 2.0.59 on Linux, I try to install a ScriptAlias. My DocumentRoot is '/home/project/web', and the ScriptAlias directive within httpd.conf is: - ScriptAlias /videos/ /home/project/modules/videos/web/ Directory /home/project/modules/ AddHandler application/x-httpd-php .php AddHandler text/css css /Directory - 'http://foo/videos/test.php' works ok, but 'http://foo/videos/test.css' doesn't. I get a '500 Internal Server Error', and browsing the error log: - [Wed Mar 07 04:58:55 2007] [error] [client c4e:d008:f82f:8ebf:307f:d300:a00:0] (8)Exec format error: exec of '/home/project/modules/videos/web/test.css' failed [Wed Mar 07 04:58:55 2007] [error] [client c4e:d008:f82f:8ebf:307f:d300:a00:0] Premature end of script headers: test.css - I chmoded 777 all the '/home/project/modules/videos/' directory. What am I doing wrong? Thank you very much. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Re: (8)Exec format error: exec of 'test.CSS' failed when ScriptAlias
Sorry, it works ok. I failed to include the Directory line in the right place :( Regards. On 3/7/07, thomas Armstrong [EMAIL PROTECTED] wrote: Hi, Using Apache 2.0.59 on Linux, I try to install a ScriptAlias. My DocumentRoot is '/home/project/web', and the ScriptAlias directive within httpd.conf is: - ScriptAlias /videos/ /home/project/modules/videos/web/ Directory /home/project/modules/ AddHandler application/x-httpd-php .php AddHandler text/css css /Directory - 'http://foo/videos/test.php' works ok, but 'http://foo/videos/test.css' doesn't. I get a '500 Internal Server Error', and browsing the error log: - [Wed Mar 07 04:58:55 2007] [error] [client c4e:d008:f82f:8ebf:307f:d300:a00:0] (8)Exec format error: exec of '/home/project/modules/videos/web/test.css' failed [Wed Mar 07 04:58:55 2007] [error] [client c4e:d008:f82f:8ebf:307f:d300:a00:0] Premature end of script headers: test.css - I chmoded 777 all the '/home/project/modules/videos/' directory. What am I doing wrong? Thank you very much. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] attempt to invoke directory as script error when accessing root directory
Hi, Using Apache 2.0.59 on Linux, I try to install a ScriptAlias. My DocumentRoot is '/home/project/web', and the ScriptAlias directive within httpd.conf is: - ScriptAlias /videos/ /home/project/modules/videos/web/ Directory /home/project/modules/ AddHandler application/x-httpd-php .php AddHandler text/css css DirectoryIndex index.php /Directory - 'http://foo/videos/index.php' works ok, but if I access 'http://foo/videos/', I get a 403 Forbidden error, and browsing the error log: - [Wed Mar 07 04:37:02 2007] [error] [client ac74:d008:f82f:8abf:306f:d300:a00:0] attempt to invoke directory as script: /home/project/modules/videos/web/ - I chmoded 777 all the '/home/project/modules/videos/' directory. What am I doing wrong? Thank you very much. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Integrationg PHP as module to Apache
Hi All, I'm building and stand alone static linked APACHE +PHP+PGSQL pack. PGSQL is done with static linking but php with apache is troubling. I have configured PHP5 as [code]$ ./configure --enable-static --disable-shared --with-pgsql=/home/sss_user/server/pgsql/ --prefix=/home/sss_user/server/php --without-pear --with-apache=/home/sss_user/sources/apache2/apache1 --disable-inline-optimization --disable-rpath --without-mysql --enable-session --enable-suhosin[/code] and then [code]$ gmake $ gmake install[/code] After that , I have configured apache 1.3.37. as follows: $ [code]./configure --enable-module=ssl --enable-module=rewrite --with-port= --prefix=/home/sss_user/server/apache --enable-module=mime_magic --activate-module=src/modules/php5/libphp5.a --disable-shared=ssl --disable-shared=rewrite --disable-shared=mime_magic --disable-shared=php5 [/code] and then, [code]$ gmake[/code] But when I do this , I get this error [code]modules/php5/libphp5.a(zend_API.o): In function `module_destructor': zend_API.c:(.text+0x5730): undefined reference to `dlclose' modules/php5/libphp5.a(zend_extensions.o): In function `zend_load_extension': zend_extensions.c:(.text+0x18): undefined reference to `dlopen' zend_extensions.c:(.text+0x26): undefined reference to `dlerror' zend_extensions.c:(.text+0x66): undefined reference to `dlsym' zend_extensions.c:(.text+0x82): undefined reference to `dlsym' zend_extensions.c:(.text+0x98): undefined reference to `dlsym' zend_extensions.c:(.text+0xb4): undefined reference to `dlsym' zend_extensions.c:(.text+0xea): undefined reference to `dlclose' zend_extensions.c:(.text+0x16e): undefined reference to `dlclose' zend_extensions.c:(.text+0x1e2): undefined reference to `dlclose' zend_extensions.c:(.text+0x24d): undefined reference to `dlclose' zend_extensions.c:(.text+0x2b5): undefined reference to `dlclose' modules/php5/libphp5.a(zend_extensions.o):zend_extensions.c:(.text+0x43e): more undefined references to `dlclose' follow modules/php5/libphp5.a(dl.o): In function `php_dl': dl.c:(.text+0x397): undefined reference to `dlopen' dl.c:(.text+0x3a5): undefined reference to `dlerror' dl.c:(.text+0x3d0): undefined reference to `dlerror' dl.c:(.text+0x40e): undefined reference to `dlsym' dl.c:(.text+0x42a): undefined reference to `dlsym' dl.c:(.text+0x43e): undefined reference to `dlclose' dl.c:(.text+0x569): undefined reference to `dlclose' dl.c:(.text+0x5be): undefined reference to `dlclose' dl.c:(.text+0x5fa): undefined reference to `dlclose' dl.c:(.text+0x672): undefined reference to `dlclose' /usr/lib/libxml2.a(threads.o): In function `xmlRMutexLock': (.text+0x4b8): undefined reference to `pthread_cond_wait' /usr/lib/libssl.a(kssl.o): In function `get_rc_clockskew': (.text+0x111): undefined reference to `krb5_rc_default' /usr/lib/libssl.a(kssl.o): In function `get_rc_clockskew': (.text+0x12c): undefined reference to `krb5_rc_initialize' /usr/lib/libssl.a(kssl.o): In function `get_rc_clockskew': (.text+0x152): undefined reference to `krb5_rc_get_lifespan' /usr/lib/libssl.a(kssl.o): In function `get_rc_clockskew': (.text+0x16c): undefined reference to `krb5_rc_destroy' /usr/lib/libssl.a(kssl.o): In function `kssl_validate_times': (.text+0x1a4): undefined reference to `krb5_init_context' /usr/lib/libssl.a(kssl.o): In function `kssl_validate_times': (.text+0x1c7): undefined reference to `krb5_timeofday' /usr/lib/libssl.a(kssl.o): In function `kssl_validate_times': (.text+0x1ea): undefined reference to `krb5_free_context' /usr/lib/libssl.a(kssl.o): In function `kssl_krb5_free_data_contents': (.text+0x271): undefined reference to `krb5_free_data_contents' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x2ea): undefined reference to `krb5_init_context' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x306): undefined reference to `krb5_free_principal' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x31c): undefined reference to `krb5_free_principal' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x32b): undefined reference to `krb5_free_context' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x36b): undefined reference to `krb5_sname_to_principal' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x385): undefined reference to `krb5_cc_default' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x3a6): undefined reference to `krb5_cc_get_principal' /usr/lib/libssl.a(kssl.o): In function `kssl_tgt_is_available': (.text+0x3d8): undefined reference to `krb5_get_credentials' /usr/lib/libssl.a(kssl.o): In function `kssl_keytab_is_available': (.text+0x445): undefined reference to `krb5_init_context' /usr/lib/libssl.a(kssl.o): In function `kssl_keytab_is_available': (.text+0x46e): undefined reference to `krb5_kt_resolve' /usr/lib/libssl.a(kssl.o): In function `kssl_keytab_is_available': (.text+0x4aa): undefined
Re: [EMAIL PROTECTED] mod_actions.c: Action to take more arguments
On 06/03/07, Jan van den Berg [EMAIL PROTECTED] wrote: Action takes two arguments, a media type followed by a script name Is this easy to fix/workaround, do I have to hack the source for this? Are there other ways of doing this? Just write a wrapper script that calls your cgi with the argument, passing on stdin and stdout and the enviroment. -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] attempt to invoke directory as script error when accessing root directory
On 07/03/07, thomas Armstrong [EMAIL PROTECTED] wrote: Hi, Using Apache 2.0.59 on Linux, I try to install a ScriptAlias. My DocumentRoot is '/home/project/web', and the ScriptAlias directive within httpd.conf is: - ScriptAlias /videos/ /home/project/modules/videos/web/ Directory /home/project/modules/ AddHandler application/x-httpd-php .php AddHandler text/css css DirectoryIndex index.php /Directory - 'http://foo/videos/index.php' works ok, but if I access 'http://foo/videos/', I get a 403 Forbidden error, and browsing the error log: - [Wed Mar 07 04:37:02 2007] [error] [client ac74:d008:f82f:8abf:306f:d300:a00:0] attempt to invoke directory as script: /home/project/modules/videos/web/ - I chmoded 777 all the '/home/project/modules/videos/' directory. What am I doing wrong? Everything it seems. Your config is wrong in lots of ways. First, AddHandler text/css css doesn't make any sense. text/css is a mime type, not a handler and it's highly likely that your server already knows about it. See your mime.types file to make sure. Second, why are you using ScriptAlias? That's only useful for situations where every file in a directory is a directly executable cgi script, not usually the case with php scripts and certainly not when there are things like css files in that directory. On the off chance that you are actually forced to run php as a bunch of cgi scripts then the error message is explained here: http://wiki.apache.org/httpd/Errors/DirectoryAsScript however I expect that you shouldn't be using ScriptAlias at all. One last thing, never, ever, use 777 permissions. -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] mod_actions.c: Action to take more arguments
I am familiar with this option, however this is not really what I want. My wrapper is a bash shell script so for every invoke (Action) Apache spawns a shell process. I don't want that. Jan -Oorspronkelijk bericht- Van: Vincent Bray [mailto:[EMAIL PROTECTED] Verzonden: woensdag 7 maart 2007 12:43 Aan: users@httpd.apache.org Onderwerp: Re: [EMAIL PROTECTED] mod_actions.c: Action to take more arguments On 06/03/07, Jan van den Berg [EMAIL PROTECTED] wrote: Action takes two arguments, a media type followed by a script name Is this easy to fix/workaround, do I have to hack the source for this? Are there other ways of doing this? Just write a wrapper script that calls your cgi with the argument, passing on stdin and stdout and the enviroment. -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] apache httpd + jboss + mod_jk : Failed opening socket to (172.16.2.229:8009) (errno=13)
Hello All I am trying to configure apache and jboss using mod_jk connector. I am using httpd-2.2.3-5, jboss-4.0.3SP1 and jk tomcat-connectors-1.2.21. After the proper configuration when I try to access my webapp at http://172.16.2.229/rcs I get Service Temporarily Unavailable error. In mod_jk.log log I found this: Attaching shm:/etc/httpd/logs/jk-runtime-status errno=13 Failed opening socket to (172.16.2.229:8009) (errno=13) Full log is given below. I would really appreciate if someone help me in this regards ! BTW I am using Fedora core 6. and I compiled tomcat-connectors-1.2.21 on it. And sorry for the long mail. ( I have done this on Windows successfully in past but not able to do this time :( ) Thanks Best Regards ~Preetam LOG : [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [error] init_jk::mod_jk.c (2638): Initializing shm:/etc/httpd/logs/jk-runtime-status errno=13 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] jk_map_resolve_references::jk_map.c (644): Checking for references with prefix worker. with wildcard (recursion 1) [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] build_worker_map::jk_worker.c (239): creating worker worker1 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] wc_create_worker::jk_worker.c (144): about to create instance worker1 of ajp13 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] wc_create_worker::jk_worker.c (157): about to validate and init worker1 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_validate::jk_ajp_common.c (1985): worker worker1 contact is 'dhgweb:8009' [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2112): setting endpoint options: [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2115): keepalive:0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2119): timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2123): buffer size: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2127): pool timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2131): connect timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2135): reply timeout:0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2139): prepost timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2143): recovery options: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2147): retries: 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2151): max packet size: 8192 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_create_endpoint_cache::jk_ajp_common.c (2022): setting connection pool size to 1 with min 1 [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:36 2007] [22160:18128] [error] init_jk::mod_jk.c (2638): Initializing shm:/etc/httpd/logs/jk-runtime-status errno=13 [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] jk_map_resolve_references::jk_map.c (644): Checking for references with prefix worker. with wildcard (recursion 1) [Wed Mar 07
[EMAIL PROTECTED] Automatic Redirect to a Secure Page in Apache 2.2.2
Hi there -- I have set up SquirrelMail on our e-mail server and I would like to have users be automatically redirected to a secure or https page when they type in the URL to get to the initial login page. The apache server is version 2.2.2. What file(s) should I modify to make this happen? Thanks. The information transmitted in this electronic communication is intended only for the person or entity to whom it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this information in error, please contact the Compliance HelpLine at 800-856-1983 and properly dispose of this information.
RE: [EMAIL PROTECTED] Apache on Windows
Run it on Windows Server 2003 and XP with no real issues. Use with OpenSSL and PHP. Good resources to use for Apache on Windows can be found at: http://hunter.campbus.com/ http://hunter.campbus.com/ http://www.apachelounge.com/ http://www.apachelounge.com/ Gary T. Schultz IT Administrator Wisconsin Department of Commerce 608-266-1283 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] _ From: Randall Fox [mailto:[EMAIL PROTECTED] Sent: Tuesday, March 06, 2007 2:39 PM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] Apache on Windows Hello, I am wondering if any of you use Apache on Windows, and if so what your experience has been like so far. Thanks, RL. Fox. Internet E-mail Disclaimer This message contains confidential information and is intended only for the individual(s) named. If you are not the named addressee you should not disseminate, distribute or copy this E-mail. Please notify the sender immediately by E-mail if you have received this E-mail by mistake and delete this E-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The recipient should check this E-mail and any attachments for the presence of viruses. The sender and Helzberg Diamond Shops, Inc. therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of E-mail transmission. Views of this E-mail and of Helzberg Diamond Shops, Inc. employees do not necessarily reflect the views of Helzberg Diamond Shops, Inc. If verification is required please request a hard-copy version. Helzberg Diamond Shops, Inc. - 1825 Swift Ave. - N. Kansas City, MO - USA - www.helzberg.com
Re: [EMAIL PROTECTED] Automatic Redirect to a Secure Page in Apache 2.2.2
On 07/03/07, Kaplan, Andrew H. [EMAIL PROTECTED] wrote: Hi there -- I have set up SquirrelMail on our e-mail server and I would like to have users be automatically redirected to a secure or https page when they type in the URL to get to the initial login page. The apache server is version 2.2.2. What file(s) should I modify to make this happen? The simplest way to do this is via: RedirectPermanent / https://example.com/ in a non-ssl vhost. You can get more complicated by using RedirectMatch ^/something$ https:// if you wish to redirect only certain urls, and more complicated yet using mod_rewrite. See here if you like complication: http://rewrite.drbacchus.com/rewritewiki/SSL -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Automatic Redirect to a Secure Page in Apache 2.2.2
Hi there -- I checked the ssl.conf file, and there is a RedirectPermanent line already in place. The line reads as follows: RedirectPermanent http://website/alias https://website/alias I can get to the secure website if I manually enter the following text in the web browser: https://website/alias However, if I enter http://website/alias, I get the insecure connection and am not automatically redirected to the secure site. What else do I need to do? Thanks. -Original Message- From: Vincent Bray [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 07, 2007 9:08 AM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] Automatic Redirect to a Secure Page in Apache 2.2.2 On 07/03/07, Kaplan, Andrew H. [EMAIL PROTECTED] wrote: Hi there -- I have set up SquirrelMail on our e-mail server and I would like to have users be automatically redirected to a secure or https page when they type in the URL to get to the initial login page. The apache server is version 2.2.2. What file(s) should I modify to make this happen? The simplest way to do this is via: RedirectPermanent / https://example.com/ in a non-ssl vhost. You can get more complicated by using RedirectMatch ^/something$ https:// if you wish to redirect only certain urls, and more complicated yet using mod_rewrite. See here if you like complication: http://rewrite.drbacchus.com/rewritewiki/SSL -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] The information transmitted in this electronic communication is intended only for the person or entity to whom it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this information in error, please contact the Compliance HelpLine at 800-856-1983 and properly dispose of this information. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Re: mod_proxy doesn't proxy with %2F
* on the Wed, Mar 07, 2007 at 10:28:22AM +, Mike Cardwell wrote: Using the standard Redhat Enterprise 4, Apache 2.0.52 RPMs here. I have a CommunigatePro server. It runs it's own http daemon for the administration interface, and webmail. We needed to extend it in several ways, so I stuck an Apache mod_proxy in front of it. Here's the config I used which works fine: ProxyPass/ https://127.0.0.1:9100/ ProxyPassReverse / https://127.0.0.1:9100/ However. When using webmail, if you go to view an attachment like for example filename.txt from message message_id in folder INBOX the url would look like: https://the.domain/session/session_id/MessagePart/INBOX/message_id/filename.txt That works absolutely fine. The problem is when the file is in a subfolder, eg INBOX/Archive. Then the url becomes: https://the.domain/session/session_id/MessagePart/INBOX%2FArchive/message_id/filename.txt With the url above, mod_proxy simply does *nothing*, I get an Apache 404 error message because the path doesn't exist locally because mod_proxy hasn't attempted to do the proxying. I've used tcpdump to verify that there is no connection to port 9100 when I make the request. Is this a bug, or am I doing something dumb? This was on the dev list. I've brought it onto the users list as I no longer think it's a bug as such. Please see my original email above, and my update below for the issue. Right. I've made a *little* progress. Reading the core docs I found: The AllowEncodedSlashes directive allows URLs which contain encoded path separators (%2F for / and additionally %5C for \ on according systems) to be used. Normally such URLs are refused with a 404 (Not found) error. So these requests are being 404'd simply for containing %2F's in the path. When I turn on encoded slashes with: AllowEncodedSlashes On It starts to proxy. But it starts to proxy the wrong thing Requests for: https://the.domain/session/session_id/MessagePart/INBOX%2FArchive/message_id/filename.txt Get proxied to: https://127.0.0.1:9100/session/session_id/MessagePart/INBOX/Archive/message_id/filename.txt I need it to be proxied to: https://127.0.0.1:9100/session/session_id/MessagePart/INBOX%2FArchive/message_id/filename.txt Where do I go from here? Mike - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] Antwort: [EMAIL PROTECTED] apache httpd + jboss + mod_jk : Failed opening socket to (172.16.2.229:8009) (errno=13)
Is tomcat on this this server / port running and apj configured? regards Dietmar Preetam Palwe [EMAIL PROTECTED] 07.03.2007 14:35 Bitte antworten an users@httpd.apache.org An users@httpd.apache.org Kopie Thema [EMAIL PROTECTED] apache httpd + jboss + mod_jk : Failed opening socket to (172.16.2.229:8009) (errno=13) Hello All I am trying to configure apache and jboss using mod_jk connector. I am using httpd-2.2.3-5, jboss-4.0.3SP1 and jk tomcat-connectors-1.2.21. After the proper configuration when I try to access my webapp at http://172.16.2.229/rcs I get Service Temporarily Unavailable error. In mod_jk.log log I found this: Attaching shm:/etc/httpd/logs/jk-runtime-status errno=13 Failed opening socket to (172.16.2.229:8009) (errno=13) Full log is given below. I would really appreciate if someone help me in this regards ! BTW I am using Fedora core 6. and I compiled tomcat-connectors-1.2.21 on it. And sorry for the long mail. ( I have done this on Windows successfully in past but not able to do this time :( ) Thanks Best Regards ~Preetam LOG : [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [error] init_jk::mod_jk.c (2638): Initializing shm:/etc/httpd/logs/jk-runtime-status errno=13 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] jk_map_resolve_references::jk_map.c (644): Checking for references with prefix worker. with wildcard (recursion 1) [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] build_worker_map::jk_worker.c (239): creating worker worker1 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] wc_create_worker::jk_worker.c (144): about to create instance worker1 of ajp13 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] wc_create_worker::jk_worker.c (157): about to validate and init worker1 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_validate::jk_ajp_common.c (1985): worker worker1 contact is 'dhgweb:8009' [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2112): setting endpoint options: [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2115): keepalive:0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2119): timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2123): buffer size: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2127): pool timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2131): connect timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2135): reply timeout:0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2139): prepost timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2143): recovery options: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2147): retries: 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2151): max packet size: 8192 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_create_endpoint_cache::jk_ajp_common.c (2022): setting connection pool size to 1 with min 1 [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:36 2007] [22160:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:36 2007]
Re: [EMAIL PROTECTED] Automatic Redirect to a Secure Page in Apache 2.2.2
On 07/03/07, Kaplan, Andrew H. [EMAIL PROTECTED] wrote: Hi there -- I checked the ssl.conf file, and there is a RedirectPermanent line already in place. The line reads as follows: RedirectPermanent http://website/alias https://website/alias That's wrong for two reasons. The first argument to Redirect(Permanent) is a local uri reference such as / or /foo/bar.baz etc. Using http://.. for that argument will never match. And speaking of never matching, the directive is in the wrong place if it's in the ssl vhost. non-ssl requests are governed by a separate context (a different VirtualHost) so if you want to redirect http://.. requests, you must edit the http://.. vhost. Makes sense? -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Render an image for a 404 on images
Hi, Thank you guys. Unfortunately i didn't succed with the Directory directive soluion because of some other rewrite rules. But with mod rewrite i succeded doing this: RewriteCond %{REQUEST_URI} /img/folder/(.*)\.jpg$ RewriteCond /usr/local/apache2/htdocs/%{REQUEST_URI} !-f RewriteRule ^(.+)/img/folder/no.gif Regards, Phil why not have a rewrite that says if the request is an image, and is not present, then redirect to the 404 images, you can capture the type of extension in the rewrite and direct to the appropriate pre-rendered image. philguillard wrote: Hi, I'd like to render a specific 404.gif file when the requested gif/png/jpg image is not found on the file system while other documents are still redirected to a 404.html document with ErrorDocument 504 /404.html directive. Is there a way to do that in http.conf? I can do it within my application (i use tomcat) but i think it is bad idea for performance reasons. Regards, Phil - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Matthew Farey Web App Sec. 25 The Polygon, Southampton, Hants, SO15 2BP, UK Phone +44(0)2380 631449 - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Automatic Redirect to a Secure Page in Apache 2.2.2
Hi there -- I got it to work using the following syntax in the httpd.conf file: VirtualHost FQDN:80 ServerName FQDN ServerAdmin email address DocumentRoot/var/www/html DirectoryIndex index.html index.shtml RewriteEngine on RewtireCond %{SERVER_PORT} ^80$ RewriteRule ^/premium(.*)$ https:FQDN/registered$l [L,R] RewriteLog /var/log/httpd/rewrite.log RewriteLogLevel 4 Redirect / https:FQDN/ /VirtualHost I restarted Apache, and when I entered the text http:FQDN/mail, I was redirected to the secure page. Thanks for the help. -Original Message- From: Vincent Bray [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 07, 2007 9:52 AM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] Automatic Redirect to a Secure Page in Apache 2.2.2 On 07/03/07, Kaplan, Andrew H. [EMAIL PROTECTED] wrote: Hi there -- I checked the ssl.conf file, and there is a RedirectPermanent line already in place. The line reads as follows: RedirectPermanent http://website/alias https://website/alias That's wrong for two reasons. The first argument to Redirect(Permanent) is a local uri reference such as / or /foo/bar.baz etc. Using http://.. for that argument will never match. And speaking of never matching, the directive is in the wrong place if it's in the ssl vhost. non-ssl requests are governed by a separate context (a different VirtualHost) so if you want to redirect http://.. requests, you must edit the http://.. vhost. Makes sense? -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] The information transmitted in this electronic communication is intended only for the person or entity to whom it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this information in error, please contact the Compliance HelpLine at 800-856-1983 and properly dispose of this information. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] RE: Apache on Windows
We've been using Apache 2.2.X on Windows Server 2003 for a number of months now and still haven't been able to pin down why it periodically stops communicating with our backend servers when reverse proxying. Also, there are some enhancements for performance on Windows that are suggested to be disabled if you have certain issues. If you have the choice and have a good sysadmin in house that can keep Linux secure, I would recommend Apache on Linux vs. on Windows. Steven - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Antwort: [EMAIL PROTECTED] apache httpd + jboss + mod_jk : Failed opening socket to (172.16.2.229:8009) (errno=13)
Thanks Dietmar Yes Jboss (tomcat) is on same machine. And is running fine. JK is configured. I can see it by $ netstat -a tcp0 0 *:8009 *:* LISTEN Java process is listening on 8009. Even I can connect to 172.16.2.229:8009 using a simple java program and can write data on this socket. I have done this and seen this in Jboss log. This means there is nothing like firewall. My iptables are not running. Any clue? -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 07, 2007 8:23 PM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] Antwort: [EMAIL PROTECTED] apache httpd + jboss + mod_jk : Failed opening socket to (172.16.2.229:8009) (errno=13) Is tomcat on this this server / port running and apj configured? regards Dietmar Preetam Palwe [EMAIL PROTECTED] 07.03.2007 14:35 Bitte antworten an users@httpd.apache.org An users@httpd.apache.org Kopie Thema [EMAIL PROTECTED] apache httpd + jboss + mod_jk : Failed opening socket to (172.16.2.229:8009) (errno=13) Hello All I am trying to configure apache and jboss using mod_jk connector. I am using httpd-2.2.3-5, jboss-4.0.3SP1 and jk tomcat-connectors-1.2.21. After the proper configuration when I try to access my webapp at http://172.16.2.229/rcs I get Service Temporarily Unavailable error. In mod_jk.log log I found this: Attaching shm:/etc/httpd/logs/jk-runtime-status errno=13 Failed opening socket to (172.16.2.229:8009) (errno=13) Full log is given below. I would really appreciate if someone help me in this regards ! BTW I am using Fedora core 6. and I compiled tomcat-connectors-1.2.21 on it. And sorry for the long mail. ( I have done this on Windows successfully in past but not able to do this time :( ) Thanks Best Regards ~Preetam LOG : [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_open::jk_uri_worker_map.c (423): rule map size is 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (372): exact rule '/rcs=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] uri_worker_map_add::jk_uri_worker_map.c (364): wildchar rule '/rcs/*=worker1' source 'JkMount' was added [Wed Mar 07 18:48:35 2007] [22159:18128] [error] init_jk::mod_jk.c (2638): Initializing shm:/etc/httpd/logs/jk-runtime-status errno=13 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] jk_map_resolve_references::jk_map.c (644): Checking for references with prefix worker. with wildcard (recursion 1) [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] build_worker_map::jk_worker.c (239): creating worker worker1 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] wc_create_worker::jk_worker.c (144): about to create instance worker1 of ajp13 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] wc_create_worker::jk_worker.c (157): about to validate and init worker1 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_validate::jk_ajp_common.c (1985): worker worker1 contact is 'dhgweb:8009' [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2112): setting endpoint options: [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2115): keepalive:0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2119): timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2123): buffer size: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2127): pool timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2131): connect timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2135): reply timeout:0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2139): prepost timeout: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2143): recovery options: 0 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2147): retries: 2 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_init::jk_ajp_common.c (2151): max packet size: 8192 [Wed Mar 07 18:48:35 2007] [22159:18128] [debug] ajp_create_endpoint_cache::jk_ajp_common.c (2022): setting connection pool size to
RE: [EMAIL PROTECTED] RE: Apache on Windows
Thanks! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 07, 2007 10:14 AM To: users@httpd.apache.org Subject: [EMAIL PROTECTED] RE: Apache on Windows We've been using Apache 2.2.X on Windows Server 2003 for a number of months now and still haven't been able to pin down why it periodically stops communicating with our backend servers when reverse proxying. Also, there are some enhancements for performance on Windows that are suggested to be disabled if you have certain issues. If you have the choice and have a good sysadmin in house that can keep Linux secure, I would recommend Apache on Linux vs. on Windows. Steven - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] Internet E-mail Disclaimer This message contains confidential information and is intended only for the individual(s) named. If you are not the named addressee you should not disseminate, distribute or copy this E-mail. Please notify the sender immediately by E-mail if you have received this E-mail by mistake and delete this E-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The recipient should check this E-mail and any attachments for the presence of viruses. The sender and Helzberg Diamond Shops, Inc. therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of E-mail transmission. Views of this E-mail and of Helzberg Diamond Shops, Inc. employees do not necessarily reflect the views of Helzberg Diamond Shops, Inc. If verification is required please request a hard-copy version. Helzberg Diamond Shops, Inc. - 1825 Swift Ave. - N. Kansas City, MO - USA - www.helzberg.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Render an image for a 404 on images
philguillard wrote: Hi, Thank you guys. Unfortunately i didn't succed with the Directory directive soluion because of some other rewrite rules. But with mod rewrite i succeded doing this: RewriteCond %{REQUEST_URI} /img/folder/(.*)\.jpg$ RewriteCond /usr/local/apache2/htdocs/%{REQUEST_URI} !-f RewriteRule ^(.+)/img/folder/no.gif you can modify this if you want to make sure you always serve the 404 image with the same mimetype as the failed image. RewriteCond %{REQUEST_URI} \.(jpg|jpeg|gif|png)$ RewriteCond %{REQUEST_FILENAME} !-f RewriteRule .* /img/folder/no.%1 Regards, Phil why not have a rewrite that says if the request is an image, and is not present, then redirect to the 404 images, you can capture the type of extension in the rewrite and direct to the appropriate pre-rendered image. philguillard wrote: Hi, I'd like to render a specific 404.gif file when the requested gif/png/jpg image is not found on the file system while other documents are still redirected to a 404.html document with ErrorDocument 504 /404.html directive. Is there a way to do that in http.conf? I can do it within my application (i use tomcat) but i think it is bad idea for performance reasons. Regards, Phil - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Matthew Farey Web App Sec. 25 The Polygon, Southampton, Hants, SO15 2BP, UK Phone +44(0)2380 631449 - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Matthew Farey - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache on Windows
I've been running apache on windows (2003, 2000, XP) for the last 4 years. One server is for proxying (mod_proxy and OpenSSL) and the other is for running php apps. The servers get about 5000 visitors daily. There haven't been any serious issues. My experience is that it's more challenging running apache on windows than *nix. Of course, it all depends on what you are trying to do... --- Randall Fox [EMAIL PROTECTED] wrote: Hello, I am wondering if any of you use Apache on Windows, and if so what your experience has been like so far. Thanks, RL. Fox. Internet E-mail Disclaimer This message contains confidential information and is intended only for the individual(s) named. If you are not the named addressee you should not disseminate, distribute or copy this E-mail. Please notify the sender immediately by E-mail if you have received this E-mail by mistake and delete this E-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The recipient should check this E-mail and any attachments for the presence of viruses. The sender and Helzberg Diamond Shops, Inc. therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of E-mail transmission. Views of this E-mail and of Helzberg Diamond Shops, Inc. employees do not necessarily reflect the views of Helzberg Diamond Shops, Inc. If verification is required please request a hard-copy version. Helzberg Diamond Shops, Inc. - 1825 Swift Ave. - N. Kansas City, MO - USA - www.helzberg.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
RE: [EMAIL PROTECTED] Apache on Windows
One caution for Apache on XP. The licensing for XP limits you to 10 simultaneous incoming tcp connections. -Original Message- From: Paul Simon [mailto:[EMAIL PROTECTED] Sent: Wednesday, March 07, 2007 10:33 AM To: users@httpd.apache.org Subject: Re: [EMAIL PROTECTED] Apache on Windows I've been running apache on windows (2003, 2000, XP) for the last 4 years. One server is for proxying (mod_proxy and OpenSSL) and the other is for running php apps. The servers get about 5000 visitors daily. There haven't been any serious issues. My experience is that it's more challenging running apache on windows than *nix. Of course, it all depends on what you are trying to do... --- Randall Fox [EMAIL PROTECTED] wrote: Hello, I am wondering if any of you use Apache on Windows, and if so what your experience has been like so far. Thanks, RL. Fox. Internet E-mail Disclaimer This message contains confidential information and is intended only for the individual(s) named. If you are not the named addressee you should not disseminate, distribute or copy this E-mail. Please notify the sender immediately by E-mail if you have received this E-mail by mistake and delete this E-mail from your system. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The recipient should check this E-mail and any attachments for the presence of viruses. The sender and Helzberg Diamond Shops, Inc. therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of E-mail transmission. Views of this E-mail and of Helzberg Diamond Shops, Inc. employees do not necessarily reflect the views of Helzberg Diamond Shops, Inc. If verification is required please request a hard-copy version. Helzberg Diamond Shops, Inc. - 1825 Swift Ave. - N. Kansas City, MO - USA - www.helzberg.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache on Windows
Arthur Kreitman wrote: One caution for Apache on XP. The licensing for XP limits you to 10 simultaneous incoming tcp connections. Of course that's the word of the license. Obviously 'what's a connection' is always interesting, you end up with far more than 10 connections using email/web/chat all at the same time, browsers will create two parallel connections at once (pipelining images/scripts/css as they are referenced by the main document), ftp is actually two sockets (data and control), etc... the spirit of the document implies 10 users. In fact it is metered by NTLM authentication, if you loaded mod_auth_sspi or configured IIS for auth, you will observe this to be enforced. Ten authenticated clients is a hard limit. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite problem
On 08/03/07, Israel Brewster [EMAIL PROTECTED] wrote: Looking at the rewrite log shows the following entries: xxx.xxx.xxx.xxx - - [07/Mar/2007:08:28:03 -0900] [izzy.homeip.net/ sid#1802648][rid#1838c38/initial] (2) init rewrite engine with requested uri /nagios xxx.xxx.xxx.xxx - - [07/Mar/2007:08:28:03 -0900] [izzy.homeip.net/ sid#1802648][rid#1838c38/initial] (1) pass through /nagios xxx.xxx.xxx.xxx - - [07/Mar/2007:08:28:03 -0900] [izzy.homeip.net/ sid#1802648][rid#1838c38/initial] (2) [per-dir /WebServer/Documents/] rewrite nagios - index.php?/categories/8-Nagios xxx.xxx.xxx.xxx - - [07/Mar/2007:08:28:03 -0900] [izzy.homeip.net/ sid#1802648][rid#1838c38/initial] (2) [per-dir /WebServer/Documents/] trying to replace prefix /WebServer/Documents/ with / xxx.xxx.xxx.xxx - - [07/Mar/2007:08:28:03 -0900] [izzy.homeip.net/ sid#1802648][rid#1838c38/initial] (1) [per-dir /WebServer/Documents/] internal redirect with /index.php [INTERNAL REDIRECT] Hi, welcome to rewrite-in-htaccess pain and suffering. As you're able to use RewriteLog, why put rewrite rules in htaccess? I expect this error will go away if you do because.. It would appear that your rule is having the desired effect of rewriting http://example.com/nagios to http://example.com/index.php?/categories/8-Nagios however, don't count on [L] stopping the rest of your rules from running. Because this is in a htaccess file, a subrequest is used to figure out if rewriting is done yet. I'm not exactly sure why, and I could be totally wrong, but see what your complete ruleset would do with the original request. Otherwise (as suggested by rbowen) try adding PT to your flags to mitigate RewriteBase confusion. -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Re: mod_proxy doesn't proxy with %2F
Mike, I was running into the exact same issue with proxying to a lotus Workplace (Quickplace) application. Can you give me more indepth information on how you resolved this. Thanks a bunch! Jack On 3/7/07, Mike Cardwell [EMAIL PROTECTED] wrote: * on the Wed, Mar 07, 2007 at 02:48:16PM +, Mike Cardwell wrote: This was on the dev list. I've brought it onto the users list as I no longer think it's a bug as such. Please see my original email above, and my update below for the issue. Right. I've made a *little* progress. Reading the core docs I found: The AllowEncodedSlashes directive allows URLs which contain encoded path separators (%2F for / and additionally %5C for \ on according systems) to be used. Normally such URLs are refused with a 404 (Not found) error. So these requests are being 404'd simply for containing %2F's in the path. When I turn on encoded slashes with: AllowEncodedSlashes On It starts to proxy. But it starts to proxy the wrong thing Requests for: https://the.domain/session/session_id/MessagePart/INBOX%2FArchive/message_id/filename.txt Get proxied to: https://127.0.0.1:9100/session/session_id/MessagePart/INBOX/Archive/message_id/filename.txt I need it to be proxied to: https://127.0.0.1:9100/session/session_id/MessagePart/INBOX%2FArchive/message_id/filename.txt Where do I go from here? I've sorted this now. Using a combination of AllowEncodedSlashes, mod_rewrite and an external script called as a RewriteMap to change /'s to %2F's. A horrible, unholy hack, but it works. Mike - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache on Windows
Does this mean that an XP box running Apache would be limited to 10 concurrent web browser users? My impression of this was that the connection limit only applied to the Windows Network connections and not to http/https/etc... In fact it is metered by NTLM authentication, if you loaded mod_auth_sspi or configured IIS for auth, you will observe this to be enforced. Ten authenticated clients is a hard limit. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Awstats and re-write rule for Zope
Thank you all of your help, but I am still having problems in setting this up. Here is the vhosts entry in my /etc/apache2/vhosts.d/domain.conf file VirtualHost *:80 ServerName domain.com ServerAlias www.domain.com RewriteEngine On #DenyHosts Rules RewriteMaphosts-deny txt:/home/user/apache/hosts.deny RewriteCond ${hosts-deny:%{REMOTE_HOST}|NOT-FOUND} !=NOT-FOUND [OR] RewriteCond ${hosts-deny:%{REMOTE_ADDR}|NOT-FOUND} !=NOT-FOUND [OR] RewriteCond ${hosts-deny:%{HTTP:true-client-ip}|NOT-FOUND} !=NOT-FOUND RewriteRule ^/.* - [F] #AWStats Rules RewriteRule ^/awstats/(.*) /awstats/$1 [L,PT] RewriteRule ^/awstatsclasses/(.*) /awstatsclasses/$1 [L,PT] RewriteRule ^/awstatscss/(.*) /awstatscss/$1 [L,PT] RewriteRule ^/awstatsicons/(.*) /awstatsicons/$1 [L,PT] #Zope Rules RewriteRule ^/(.*) http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/$1 [L,P] Alias /awstatsclasses /usr/share/webapps/awstats/6.5-r1/htdocs/ Alias /awstatscss /usr/share/webapps/awstats/6.5-r1/htdocs/css/ Alias /awstatsicons /usr/share/webapps/awstats/6.5-r1/htdocs/icon/ Alias /icon /usr/share/webapps/awstats/6.5-r1/htdocs/icon/ ScriptAlias /awstats/ /usr/share/webapps/awstats/6.5-r1/hostroot/cgi-bin/ #Logs ErrorLog /var/log/apache2/domain_error.log CustomLog /var/log/apache2/domain_access.log combined RewriteLog /var/log/apache2/domain_rewrite_log RewriteLogLevel 9 /VirtualHost The RewriteLog does not give me any information as the site returned when I go to http://domain.com/awstats is the one from the Zope server and then I get a Zope Error that the page is not found. If I remove the Rule for zope, and then go to http://domain.com/awstats it works fine. Here is part of the RewriteLog 74.6.74.199 - - [07/Mar/2007:19:42:42 +0100] [domain.com/sid#82b9c88][rid#84fa898/initial] (2) rewrite /catalogue/c13586/c13840/c13956/c13965 - http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/catalogue/c13586/c13840/c13956/c13965 74.6.74.199 - - [07/Mar/2007:19:42:42 +0100] [domain.com/sid#82b9c88][rid#84fa898/initial] (2) forcing proxy-throughput with http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/catalogue/c13586/c13840/c13956/c13965 74.6.74.199 - - [07/Mar/2007:19:42:42 +0100] [domain.com/sid#82b9c88][rid#84fa898/initial] (1) go-ahead with proxy request proxy:http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/catalogue/c13586/c13840/c13956/c13965 [OK] 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (2) init rewrite engine with requested uri /information/terms_conditions 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (3) applying pattern '^/.*' to uri '/information/terms_conditions' 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (6) cache lookup FAILED, forcing new map lookup 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (5) map lookup FAILED: map=hosts-deny[txt] key=74.6.69.116 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (4) RewriteCond: input='NOT-FOUND' pattern='!=NOT-FOUND' = not-matched 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (5) cache lookup OK: map=hosts-deny[txt] key=74.6.69.116 - val= 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (4) RewriteCond: input='NOT-FOUND' pattern='!=NOT-FOUND' = not-matched 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (5) cache lookup OK: map=hosts-deny[txt] key= - val= 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (4) RewriteCond: input='NOT-FOUND' pattern='!=NOT-FOUND' = not-matched 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (3) applying pattern '^/awstats/(.*)' to uri '/information/terms_conditions' 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (3) applying pattern '^/awstatsclasses/(.*)' to uri '/information/terms_conditions' 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (3) applying pattern '^/awstatscss/(.*)' to uri '/information/terms_conditions' 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (3) applying pattern '^/awstatsicons/(.*)' to uri '/information/terms_conditions' 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (3) applying pattern '^/(.*)' to uri '/information/terms_conditions' 74.6.69.116 - - [07/Mar/2007:19:44:27 +0100] [domain.com/sid#82b9c88][rid#85158f8/initial] (2) rewrite /information/terms_conditions -
Re: [EMAIL PROTECTED] Apache on Windows
Nathan Kellogg wrote: Does this mean that an XP box running Apache would be limited to 10 concurrent web browser users? My impression of this was that the connection limit only applied to the Windows Network connections and not to http/https/etc... if you don't patch the tcp stack, service pack 2, sort of. HTTP/1.1 provides for pipelining requests via keepalives, so this is the 2concurrent requests per domain - and this is how the whole web works, - unless you use many sub domains (3rd level domains) in your (x)html markup, its not an issue for the individual. However hitting the limit would be similar to a DoS but in web terms this never really arises unless you are serving large files, because the connection is over quickly, chances are anyone using XP is at home on ADSL so the bandwidth issue crops up before the concurrent connection limit anyhooo. When you consider that this connection limit was introduced to help stop worms proliferating, and that this is an exponential growth anyway, it seems obvious that its fine to patch it back to more than 10! In fact it is metered by NTLM authentication, if you loaded mod_auth_sspi or configured IIS for auth, you will observe this to be enforced. Ten authenticated clients is a hard limit. - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] -- Matthew Farey - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Awstats and re-write rule for Zope
On 08/03/07, Norman Khine [EMAIL PROTECTED] wrote: VirtualHost *:80 ServerName domain.com ServerAlias www.domain.com RewriteEngine On #DenyHosts Rules RewriteMaphosts-deny txt:/home/user/apache/hosts.deny RewriteCond ${hosts-deny:%{REMOTE_HOST}|NOT-FOUND} !=NOT-FOUND [OR] RewriteCond ${hosts-deny:%{REMOTE_ADDR}|NOT-FOUND} !=NOT-FOUND [OR] RewriteCond ${hosts-deny:%{HTTP:true-client-ip}|NOT-FOUND} !=NOT-FOUND RewriteRule ^/.* - [F] #AWStats Rules RewriteRule ^/awstats/(.*) /awstats/$1 [L,PT] RewriteRule ^/awstatsclasses/(.*) /awstatsclasses/$1 [L,PT] RewriteRule ^/awstatscss/(.*) /awstatscss/$1 [L,PT] RewriteRule ^/awstatsicons/(.*) /awstatsicons/$1 [L,PT] #Zope Rules RewriteRule ^/(.*) http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/$1 [L,P] Alias /awstatsclasses /usr/share/webapps/awstats/6.5-r1/htdocs/ Alias /awstatscss /usr/share/webapps/awstats/6.5-r1/htdocs/css/ Alias /awstatsicons /usr/share/webapps/awstats/6.5-r1/htdocs/icon/ Alias /icon /usr/share/webapps/awstats/6.5-r1/htdocs/icon/ ScriptAlias /awstats/ /usr/share/webapps/awstats/6.5-r1/hostroot/cgi-bin/ #Logs ErrorLog /var/log/apache2/domain_error.log CustomLog /var/log/apache2/domain_access.log combined RewriteLog /var/log/apache2/domain_rewrite_log RewriteLogLevel 9 /VirtualHost The RewriteLog does not give me any information as the site returned when I go to http://domain.com/awstats is the one from the Zope server and then I get a Zope Error that the page is not found. If I remove the Rule for zope, and then go to http://domain.com/awstats it works fine. Could you post a rewrite log of a request for /awstats? Your last post didn't include that and if as you say requesting /awstats proxies the request to zope, then your rewrite rules must be running, in one form or other. Also, did you try my initial suggestion of putting a negative condition for /awstats prior to the proxy rule? # No anchor before awstats RewriteCond %{REQUEST_URI} !awstats RewriteRule ^/(.*) http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/$1 [L,P] -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite problem
Thanks for your response and suggestions. On Mar 7, 2007, at 9:48 AM, Vincent Bray wrote: Hi, welcome to rewrite-in-htaccess pain and suffering. As you're able to use RewriteLog, why put rewrite rules in htaccess? When I tried that my RewriteRules stopped working entirely :P I suspect that was just a mis-configuration on my part, however, so I'll keep looking. [snip] Otherwise (as suggested by rbowen) try adding PT to your flags to mitigate RewriteBase confusion. That didn't help -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --- Israel Brewster Computer Support Technician Frontier Flying Service Inc. 5245 Airport Industrial Rd Fairbanks, AK 99709 (907) 450-7250 x293 --- - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite problem
On 08/03/07, Israel Brewster [EMAIL PROTECTED] wrote: Thanks for your response and suggestions. On Mar 7, 2007, at 9:48 AM, Vincent Bray wrote: Hi, welcome to rewrite-in-htaccess pain and suffering. As you're able to use RewriteLog, why put rewrite rules in htaccess? When I tried that my RewriteRules stopped working entirely :P I suspect that was just a mis-configuration on my part, however, so I'll keep looking. http://httpd.apache.org/docs/2.2/mod/mod_rewrite.html#rewriterule in the note 'per directory Rewrites' is important when moving rewrite rules from .htaccess files or Directory blocks, to per-server (VirtualHost, or main server) contexts. In this case, ^nagios never matches because the per-directory prefix isn't stripped. ^/nagios is what you need, in addition to simillar changes for the rest of your rules. This annoyance aside, putting rewrite rules in server context has other advantages, mainly increased speed (regexen are compiled once at startup and the uri-filepath translation stage can be skipped) but also decreased confusion; rewrite in htaccess involves extra steps beyond what seems reasonable to figure out the resulting url. -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite problem
[snip] In this case, ^nagios never matches because the per-directory prefix isn't stripped. ^/nagios is what you need, in addition to simillar changes for the rest of your rules. Ok, yeah- that made the rewrite rules start matching when in the httpd.conf file, unfortunately the behavior I'm getting with that particular rule is the same. Maybe it's time to consider a different approach entirely. This annoyance aside, putting rewrite rules in server context has other advantages, mainly increased speed (regexen are compiled once at startup and the uri-filepath translation stage can be skipped) but also decreased confusion; rewrite in htaccess involves extra steps beyond what seems reasonable to figure out the resulting url. -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Awstats and re-write rule for Zope
Vincent Bray wrote: On 08/03/07, Norman Khine [EMAIL PROTECTED] wrote: VirtualHost *:80 ServerName domain.com ServerAlias www.domain.com RewriteEngine On #DenyHosts Rules RewriteMaphosts-deny txt:/home/user/apache/hosts.deny RewriteCond ${hosts-deny:%{REMOTE_HOST}|NOT-FOUND} !=NOT-FOUND [OR] RewriteCond ${hosts-deny:%{REMOTE_ADDR}|NOT-FOUND} !=NOT-FOUND [OR] RewriteCond ${hosts-deny:%{HTTP:true-client-ip}|NOT-FOUND} !=NOT-FOUND RewriteRule ^/.* - [F] #AWStats Rules RewriteRule ^/awstats/(.*) /awstats/$1 [L,PT] RewriteRule ^/awstatsclasses/(.*) /awstatsclasses/$1 [L,PT] RewriteRule ^/awstatscss/(.*) /awstatscss/$1 [L,PT] RewriteRule ^/awstatsicons/(.*) /awstatsicons/$1 [L,PT] #Zope Rules RewriteRule ^/(.*) http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/$1 [L,P] Alias /awstatsclasses /usr/share/webapps/awstats/6.5-r1/htdocs/ Alias /awstatscss /usr/share/webapps/awstats/6.5-r1/htdocs/css/ Alias /awstatsicons /usr/share/webapps/awstats/6.5-r1/htdocs/icon/ Alias /icon /usr/share/webapps/awstats/6.5-r1/htdocs/icon/ ScriptAlias /awstats/ /usr/share/webapps/awstats/6.5-r1/hostroot/cgi-bin/ #Logs ErrorLog /var/log/apache2/domain_error.log CustomLog /var/log/apache2/domain_access.log combined RewriteLog /var/log/apache2/domain_rewrite_log RewriteLogLevel 9 /VirtualHost The RewriteLog does not give me any information as the site returned when I go to http://domain.com/awstats is the one from the Zope server and then I get a Zope Error that the page is not found. If I remove the Rule for zope, and then go to http://domain.com/awstats it works fine. Could you post a rewrite log of a request for /awstats? Your last post didn't include that and if as you say requesting /awstats proxies the request to zope, then your rewrite rules must be running, in one form or other. Also, did you try my initial suggestion of putting a negative condition for /awstats prior to the proxy rule? # No anchor before awstats RewriteCond %{REQUEST_URI} !awstats RewriteRule ^/(.*) http://domain.com:4080/VirtualHostBase/http/domain.com:80/shops/shop1/VirtualHostRoot/$1 [L,P] Nice one Vincent, many thanks the RewriteCond %{REQUEST_URI} !awstats did the trick. Thank you all. Regards Norman - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite problem
On 08/03/07, Israel Brewster [EMAIL PROTECTED] wrote: Ok, yeah- that made the rewrite rules start matching when in the httpd.conf file, unfortunately the behavior I'm getting with that particular rule is the same. Maybe it's time to consider a different approach entirely. Like, posting the rest of your rules, perhaps? As you're rewriting to a php script, are you able to edit it to show a dump of the environment? phpinfo(); die(); does that job. Also, are there any Alias directives for nagios? Seeing your config in more detail would help. -- noodl - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite problem
On Mar 7, 2007, at 1:16 PM, Vincent Bray wrote: Like, posting the rest of your rules, perhaps? As you're rewriting to a php script, are you able to edit it to show a dump of the environment? phpinfo(); die(); does that job. Also, are there any Alias directives for nagios? Seeing your config in more detail would help. -- noodl Oh, sure. Sorry- not trying to make things difficult here, it's just that I spent several hours yesterday working on the issue, so I'm a bit frustrated, and quite possibly not thinking straight any more :P. Anyway, the rewrite rules I'm currently working with are as follows: RewriteLog /var/log/httpd/rewrite.log RewriteLogLevel 2 RewriteRule ^/nagios[/A-Za-z0-9]* /categories/8-Nagios [NC,QSA,L,R] RewriteRule ^(/archives/([0-9]+)-[0-9a-z\.\_!;,\+\-\%]+\.html) / index.php?/$1 [NC,L,QSA] RewriteRule ^(/authors/([0-9]+)-[0-9a-z\.\_!;,\+\-\%]+) /index.php?/ $1 [NC,L,QSA] RewriteRule ^(/feeds/categories/([0-9;]+)-[0-9a-z\.\_!;,\+\-\%]+ \.rss) /index.php?/$1 [NC,L,QSA] RewriteRule ^(/feeds/authors/([0-9]+)-[0-9a-z\.\_!;,\+\-\%]+\.rss) / index.php?/$1 [NC,L,QSA] RewriteRule ^(/categories/([0-9;]+)-[0-9a-z\.\_!;,\+\-\%]+) / index.php?/$1 [NC,L,QSA] RewriteRule ^/archives([/A-Za-z0-9]+)\.html /index.php?url=/archives/ $1.html [NC,L,QSA] RewriteRule ^(/[0-9]+)[_\-][0-9a-z_\-]*\.html /index.php?url=$1- article.html [L,NC,QSA] RewriteRule ^/feeds/(.*) /index.php?url=/feeds/$1 [L,QSA] RewriteRule ^/unsubscribe/(.*)/([0-9]+) /index.php?url=/unsubscribe/ $1/$2 [L,QSA] RewriteRule ^/approve/(.*)/(.*)/([0-9]+) /index.php?url=approve/$1/$2/ $3 [L,QSA] RewriteRule ^/delete/(.*)/(.*)/([0-9]+) /index.php?url=delete/$1/$2/ $3 [L,QSA] RewriteRule ^(/admin|entries)(/.+)? /index.php?url=admin/ [L,QSA] RewriteRule ^/archive/? /index.php?url=/archive [L,QSA] RewriteRule ^(/index|atom[0-9]*|rss|b2rss|b2rdf).(rss|rdf|rss2|xml) / rss.php?file=$1ext=$2 RewriteRule ^(/plugin|plugin)/(.*) /index.php?url=$1/$2 [L,QSA] RewriteRule ^/search/(.*) /index.php?url=/search/$1 [L,QSA] RewriteRule ^/comments/(.*) /index.php?url=/comments/$1 [L,QSA] RewriteRule ^(serendipity\.css|serendipity_admin\.css) index.php?url=/ $1 [L,QSA] RewriteRule ^index\.(html?|php.+) index.php?url=index.html [L,QSA] RewriteRule ^htmlarea/(.*) htmlarea/$1 [L,QSA] Aside from the nagios one that I added, this is the standard set of rules for a serendipity (www.s9y.org) install. I have tried commenting out all of them (completely breaking my site, of course) except for the nagios one, but I still wind up at the index page when I try accessing /nagios. The Directory block for the root directory (which this is all running out of) is the following: Directory /WebServer/Documents Options -Indexes FollowSymLinks MultiViews AllowOverride All Order allow,deny Allow from all RewriteEngine On /Directory the rest of my httpd.conf is default, the only other parts I have edited being the server name and UseCanonicalName directives. I could potentially edit the php file, but I really don't know php- my programing skills are primarily limited to shell scripting and C+ + :) Where would I stick that code, or would that depend on the script (as I suspect would be the case)? It is the serendipity index.php file if you want to download it and take a look. Thank you VERY much for your help. I greatly appreciate it :) --- Israel Brewster Computer Support Technician Frontier Flying Service Inc. 5245 Airport Industrial Rd Fairbanks, AK 99709 (907) 450-7250 x293 --- - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite problem
On 08/03/07, Israel Brewster [EMAIL PROTECTED] wrote: Oh, sure. Sorry- not trying to make things difficult here, it's just that I spent several hours yesterday working on the issue, so I'm a bit frustrated, and quite possibly not thinking straight any more :P. Anyway, the rewrite rules I'm currently working with are as follows: So far you've moved your initial config: RewriteEngine On RewriteBase / RewriteRule ^nagios[/A-Za-z0-9]* index.php?/categories/8-Nagios [NC,QSA,L] from a htaccess file to httpd.conf. Was this stuff alone there, with these other parts in the httpd.conf file, or were they together? What's also changed and also puzzling is there's now two steps where there was just one. RewriteLog /var/log/httpd/rewrite.log RewriteLogLevel 2 ### here: RewriteRule ^/nagios[/A-Za-z0-9]* /categories/8-Nagios [NC,QSA,L,R] RewriteRule ^(/archives/([0-9]+)-[0-9a-z\.\_!;,\+\-\%]+\.html) / index.php?/$1 [NC,L,QSA] RewriteRule ^(/authors/([0-9]+)-[0-9a-z\.\_!;,\+\-\%]+) /index.php?/ $1 [NC,L,QSA] RewriteRule ^(/feeds/categories/([0-9;]+)-[0-9a-z\.\_!;,\+\-\%]+ \.rss) /index.php?/$1 [NC,L,QSA] RewriteRule ^(/feeds/authors/([0-9]+)-[0-9a-z\.\_!;,\+\-\%]+\.rss) / index.php?/$1 [NC,L,QSA] ### and then here: RewriteRule ^(/categories/([0-9;]+)-[0-9a-z\.\_!;,\+\-\%]+) / index.php?/$1 [NC,L,QSA] RewriteRule ^/archives([/A-Za-z0-9]+)\.html /index.php?url=/archives/ $1.html [NC,L,QSA] RewriteRule ^(/[0-9]+)[_\-][0-9a-z_\-]*\.html /index.php?url=$1- article.html [L,NC,QSA] RewriteRule ^/feeds/(.*) /index.php?url=/feeds/$1 [L,QSA] RewriteRule ^/unsubscribe/(.*)/([0-9]+) /index.php?url=/unsubscribe/ $1/$2 [L,QSA] RewriteRule ^/approve/(.*)/(.*)/([0-9]+) /index.php?url=approve/$1/$2/ $3 [L,QSA] RewriteRule ^/delete/(.*)/(.*)/([0-9]+) /index.php?url=delete/$1/$2/ $3 [L,QSA] RewriteRule ^(/admin|entries)(/.+)? /index.php?url=admin/ [L,QSA] RewriteRule ^/archive/? /index.php?url=/archive [L,QSA] RewriteRule ^(/index|atom[0-9]*|rss|b2rss|b2rdf).(rss|rdf|rss2|xml) / rss.php?file=$1ext=$2 RewriteRule ^(/plugin|plugin)/(.*) /index.php?url=$1/$2 [L,QSA] RewriteRule ^/search/(.*) /index.php?url=/search/$1 [L,QSA] RewriteRule ^/comments/(.*) /index.php?url=/comments/$1 [L,QSA] RewriteRule ^(serendipity\.css|serendipity_admin\.css) index.php?url=/ $1 [L,QSA] RewriteRule ^index\.(html?|php.+) index.php?url=index.html [L,QSA] RewriteRule ^htmlarea/(.*) htmlarea/$1 [L,QSA] However, the first [L] should cause the second rule to not be reached, assuming that the [R] isn't meant to be there as you pointed out in the OP. ... And the last three rules shouldn't do anything (but let's let that drop). Aside from the nagios one that I added, this is the standard set of rules for a serendipity (www.s9y.org) install. I have tried commenting out all of them (completely breaking my site, of course) except for the nagios one, but I still wind up at the index page when I try accessing /nagios. The Directory block for the root directory (which this is all running out of) is the following: This looks like a general case of mod_rewrite overuse. It's often a better idea to use a blanket rewrite with exceptions for static files and then let the application split the url from the environment. But that's not your problem :) Directory /WebServer/Documents Options -Indexes FollowSymLinks MultiViews AllowOverride All Order allow,deny Allow from all RewriteEngine On /Directory Just an aside, don't mix relative and absolute Options. That directive does what you probably think it should but it wouldn't if -Indexes weren't the first argument and besides: Options FollowSymLinks MultiViews has the same effect and requires less typing. the rest of my httpd.conf is default, the only other parts I have edited being the server name and UseCanonicalName directives. I could potentially edit the php file, but I really don't know php- my programing skills are primarily limited to shell scripting and C+ + :) Where would I stick that code, or would that depend on the script (as I suspect would be the case)? It is the serendipity index.php file if you want to download it and take a look. Thank you VERY much for your help. I greatly appreciate it :) Hrmph, I don't seem to be really helping much. About the script, php is a pretty brute-force and ignorance kind of environment so just adding: phpinfo(); die(); to the start of the script after the opening ?php tag will show you what's getting passed in, just in case the problem is with the app. -- noodl PS. I'm about to pass out for a few hours, good luck : ) - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
[EMAIL PROTECTED] How to pass a Client Certificate through a Reverse Proxy
Hi all, I've configured Apache as a reverse proxy in the following kind of arrangement: Client's browser --- Apache Reverse Proxy -- External Server When the External Server requires Basic Authentication or SSL from the client, this works fine through the proxy. I have configured this using a RewriteRule with the Use Proxy option like so: RewriteRule ^/call/(.*)$ $1 [P] However this setup does not seem to work when I want to pass a Client Certificate from the browser to the External Server for Authentication. I get the following error messages: [Thu Mar 08 11:43:29 2007] [warn] Proxy client certificate callback: (localhost:80) downstream server wanted client certificate but none are configured [Thu Mar 08 11:43:29 2007] [error] (502)Unknown error: proxy: pass request body failed to 10.43.125.11:8443 It seems as if the reverse proxy isn't passing through the client certificate from the browser. I realise that it is possible to setup the reverse proxy with a client certificate, but I need the client certificate to come from the client's browser. Does anyone have any suggestions about how to configure the reverse proxy to pass through client certificates? Thanks for your help... Daniel Alexiuc - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]