Re: [us...@httpd] problem with uploads
Let's see the literal entry from the error / suexec / php log instead. A 500 is always logged in either of those files. Frank. Its not a php problem the apache process that handle request got SIGCHLD and the php-cgi process is changing the state to zombie Z12:06 0:00 [php-cgi] defunct in apache logs is only Handler for x-httpd-php5 returned invalid result code 9 so its mean that zombie php process is killed itself My question is why the apache child process is killed and got SIGCHLD signal if any time limit is not reached poll([{fd=7661, events=POLLIN}], 1, 36) = ? ERESTART_RESTARTBLOCK (To be restarted) --- SIGCHLD (Child exited) @ 0 (0) --- restart_syscall(... resuming interrupted call ...) = 1 Piotr - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] problem with uploads
Handler for x-httpd-php5 returned invalid result code 9 so its mean that zombie php process is killed itself if the child process was killed before PHP hit an error, nobody would be around to log the error. My question is why the apache child process is killed and got SIGCHLD signal if any time limit is not reached If it was killed, it happened after the bad return code from PHP. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] HTTP - Apache2 /var/www only HTTPS - Tomcat via mod_proxy only
Hi, Is there a simple way to do the following: 1) All http based requests to website www.abc.com go to my Apache2 server regardless of the virtual site 2) All https based requests to website www.abc.com are proxied to a private tomcat server via mod_proxy Only option that I think may work is to do this in sites-enabled/ssl NameVirtualHost *:443 VirtualHost *:443 ServerAdmin webmas...@localhost SSLEngine On SSLCertificateFile /etc/apache2/ssl/apache.pem #=== ProxyPass / balancer://backtcserver/ ..snip. and this in httpd.conf Proxy balancer://backtcserver BalancerMember ajp://localhost:8009/ /Proxy and this in sites-enabled/000-default VirtualHost *:80 ServerAdmin webmas...@localhost DocumentRoot /var/www Directory / Options FollowSymLinks AllowOverride None /Directory This way https uses the proxy server and http does not Thanks Des - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
RE: [us...@httpd] Redirect Command Loses Form Data
Thanks for the reply, unfortunately that is the problem I'm trying to get around. The scenario I'm trying to find a solution for is this. We have 200+ html pages on our web site that call a script which interacts with another server. If this other server becomes unavailable I want to be able to redirect the requests to this script to another one stored locally on the web server without having to change each of the 200+ html pages. Is there any way of doing this or is it a case that we have to change the 200+ html pages to do the redirect? Date: Tue, 17 Aug 2010 11:47:32 -0400 From: cove...@gmail.com To: users@httpd.apache.org Subject: Re: [us...@httpd] Redirect Command Loses Form Data On Tue, Aug 17, 2010 at 11:05 AM, Robert Archer cmsra...@hotmail.com wrote: We're trying to configure apache to re-direct from one script to another by using the redirect statement in the http.conf file. The redirect is running the redirected script but unfortunately when we do this all the form data is being lost. The statement we are using is :- Redirect 301 /cgi-bin/xxx.p1 http://www.mydomain.com/cgi-bin/formpro.pl Does anyone know of a work around for this? Usually this is to be avoided -- redirecting a request with a body. There is some explanation in section 10.3 of RFC2616. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] HTTP - Apache2 /var/www only HTTPS - Tomcat via mod_proxy only
On Wed, Aug 18, 2010 at 8:22 AM, Des Hartman d...@deshartman.com wrote: Hi, Is there a simple way to do the following: 1) All http based requests to website www.abc.com go to my Apache2 server regardless of the virtual site 2) All https based requests to website www.abc.com are proxied to a private tomcat server via mod_proxy You already need two vhosts for the two frontend protocols. Just put ProxyPass directives in the SSL vhost. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] HTTP - Apache2 /var/www only HTTPS - Tomcat via mod_proxy only
Eric Thanks for the reply. I tried this: NameVirtualHost *:443 VirtualHost *:443 ServerAdmin webmas...@localhost SSLEngine On SSLCertificateFile /etc/apache2/ssl/apache.pem #=== ProxyPass /SFXServer/ balancer://backtcserver/ and it seem to work. Issue I now hit is I get a 404 from my backend Tomcat 203.217.63.195 - - [18/Aug/2010:13:47:14 +] POST /SFXServer/spring/messagebroker/amf HTTP/1.1 404 522 - Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/533.4 (KHTML, like Gecko) Chrome/5.0.375.126 Safari/533.4 Is there a way to enable more detailed debugging to see why? If I have the proxy pass in httpd.conf, I do not get this error, but I can reach the backend Tomcat on the same URL using http and https, which is not what I want. Thanks Des On 18/08/2010, at 11:51 PM, Eric Covener wrote: On Wed, Aug 18, 2010 at 8:22 AM, Des Hartman d...@deshartman.com wrote: Hi, Is there a simple way to do the following: 1) All http based requests to website www.abc.com go to my Apache2 server regardless of the virtual site 2) All https based requests to website www.abc.com are proxied to a private tomcat server via mod_proxy You already need two vhosts for the two frontend protocols. Just put ProxyPass directives in the SSL vhost. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] segmentation fault at ap_mpm_pod_check at read
thanks, On Tue, Aug 17, 2010 at 1:52 PM, Jeff Trawick traw...@gmail.com wrote: On Tue, Aug 17, 2010 at 10:40 AM, Brad Lira snmp.apa...@gmail.comwrote: I am getting segmentation fault at ap_mpm_pod_check at pod.c : 54 function rc = read(fd, c, 1); no, the crash is happening on some other thread; the main thread is asleep in the kernel, waiting for data on a pipe check the other threads with gdb or whatever tool you're using I am using 2.2.14, I googled and the problem was there in 2.2.3. Does anyone know if this was fixed post 2.2.14? the main thread will be in read() for any crash during request handling, so don' t expect a common root cause with a problem where somebody else noticed the main thread blocked in read()
[us...@httpd] nested Require group?
I have outer and inner directories that I want to protect with different Require groups directives: Directory /var/www/html Require group outer /Directory Directory /var/www/html/inner Require group inner /Directory My hope was that the inner Require directive would override the outer one, allowing me to protect the inner directory with the more restrictive inner group. Or equivalently, that the two Require group directives would be ANDed together. Instead, it appears that the two directives are being ORed together, resulting in a *less* restrictive policy for the inner directory - the opposite of what I wanted. Anyone in either the outer *or* the inner is allowed access to inner. Does this seem right? Does anyone know of a way to AND Require group directives? The Apache documentation says that when multiple groups are put on the same Require group line, e.g. Require group outer inner then the user has to belong to only one of the listed groups, i.e. the groups are ORed. However, it says nothing at all AFAICT about what happens when you use multiple Require group statements. One might infer that those are also ORed, and that seems to be what happens... but the documentation doesn't say. Thanks, Andrew - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [us...@httpd] OCSP-validation fails
On Tue, Aug 17, 2010 at 05:26:22PM +0200, Ulf Wahlqvist wrote: CASE 1/ If I set: SSLOCSPDefaultResponder http://ocsp.trust.telia.com SSLOCSPOverrideResponder on The validation will fail with SSL Library Error: error:2707307F:OCSP routines:OCSP_check_validity:status too old Presuming this is not a system clock skew issue - mod_ssl enforces a max response age of 6 minutes at the moment. This should be configurable but isn't; if you could file a bug on that it'd be great. CASE 3/ If I set: SSLOCSPDefaultResponder http://ocsp.trust.telia.com - Try to authenticate - It will fail as in 2 above. - Do NOT close the browser (IE, by the way) - set: SSLOCSPDefaultResponder http://ocsp.trust.telia.com SSLOCSPOverrideResponder on - restart using apachectl graceful - Retry to authenticate - It will now SUCCEED! You can reproduce this every time? You have to misconfigure then reconfigure and restart the server to get it working? Weird. Regards, Joe - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] how to needed for apache
I am looking for some good how to's if maintained by Apache foundation. Some time ago I was told that the documents here are just technical references. Can any one tell who maintains how to's for Apache.
Re: [us...@httpd] how to needed for apache
James Godrej wrote: I am looking for some good how to's if maintained by Apache foundation. Some time ago I was told that the documents here are just technical references. Can any one tell who maintains how to's for Apache. The documentation for the HTTP server, and all other Apache Software Foundation projects are complete documentation, not just technical references. The different modules for the httpd project each supply their own documentation as well. So whoever told you that he ASF only has technical references was sadly misinformed. Jaqui - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[us...@httpd] mod_balancer_proxy not balancing as expected (not sticky)
Hello, I'm trying to configure Apache as a reverse proxy to load balance across 3 web/app servers. It must be sticky for sessions to work properly, and JSESSIONID is apparently the value I should use for this app. For some reason, even though it detects the JSESSIONID value and assigns the request to the correct route, the request is routed to an incorrect (ie didn't remain sticky) server. For example, it sends me to app1 then app2. I thought if I started with app1 it would stick with app1 assuming it detected my JSESSIONID. For some reason, it's jumping all around. See debug log below and you'll see the way it's doing this. RHEL 5.5 Server version: Apache/2.2.3 Server built: Mar 4 2010 09:57:54 Server's Module Magic Number: 20051115:3 Server loaded: APR 1.2.7, APR-Util 1.2.7 Compiled using: APR 1.2.7, APR-Util 1.2.7 Architecture: 64-bit Server MPM: Prefork threaded: no forked: yes (variable process count) Server compiled with -D APACHE_MPM_DIR=server/mpm/prefork -D APR_HAS_SENDFILE -D APR_HAS_MMAP -D APR_HAVE_IPV6 (IPv4-mapped addresses enabled) -D APR_USE_SYSVSEM_SERIALIZE -D APR_USE_PTHREAD_SERIALIZE -D SINGLE_LISTEN_UNSERIALIZED_ACCEPT -D APR_HAS_OTHER_CHILD -D AP_HAVE_RELIABLE_PIPED_LOGS -D DYNAMIC_MODULE_LIMIT=128 -D HTTPD_ROOT=/etc/httpd -D SUEXEC_BIN=/usr/sbin/suexec -D DEFAULT_PIDLOG=run/httpd.pid -D DEFAULT_SCOREBOARD=logs/apache_runtime_status -D DEFAULT_LOCKFILE=logs/accept.lock -D DEFAULT_ERRORLOG=logs/error_log -D AP_TYPES_CONFIG_FILE=conf/mime.types -D SERVER_CONFIG_FILE=conf/httpd.conf Here's my config: -- NameVirtualHost *:80 NameVirtualHost *:8080 ProxyVia Full VirtualHost *:80 ServerName bwd1finpxy01.corpadds.com /VirtualHost VirtualHost *:8080 LogLevel Debug ServerName oebs.finprod.ceridian.net ProxyRequests Off Proxy * Order deny,allow Allow from all /Proxy Location /balancer-manager SetHandler balancer-manager Order Deny,Allow Deny from all Allow from 10.0.0.0/8 Allow from 170.153.0.0/16 Allow from 127.0.0.1 /Location ProxyPreserveHost On ProxyPass /balancer-manager ! ProxyPass / balancer://internalapp/ lbmethod=byrequests stickysession=JSESSIONID|jsessionid nofailover=On ProxyPassReverse / balancer://internalapp/ Proxy balancer://internalapp BalancerMember http://bwd1finapp01.corpadds.com:8001 route=app01 loadfactor=1 BalancerMember http://bwd1finapp02.corpadds.com:8001 route=app02 loadfactor=1 BalancerMember http://bwd1finapp03.corpadds.com:8001 route=app03 loadfactor=1 /Proxy /VirtualHost --- and here's some output from the debug log, where you see it sending requests to different bancer members: - [Wed Aug 18 13:57:49 2010] [debug] mod_proxy_balancer.c(276): proxy: BALANCER: Found value de92e7414f39683a7a8066a272f1271fe0e55951b07c202f1799f225c14459b8.e38Lax8PchqPbO0TbhqNahmRc3b0 for stickysession JSESSIONID|jsessionid [Wed Aug 18 13:57:49 2010] [debug] mod_proxy_balancer.c(286): proxy: BALANCER: Found route e38Lax8PchqPbO0TbhqNahmRc3b0 [Wed Aug 18 13:57:49 2010] [debug] mod_proxy_balancer.c(535): proxy: BALANCER (balancer://internalapp) worker ( http://bwd1finapp02.corpadds.com:8001) rewritten to http://bwd1finapp02.corpadds.com:8001/OA_HTML/AppsLogin [Wed Aug 18 13:57:49 2010] [debug] mod_proxy_balancer.c(276): proxy: BALANCER: Found value de92e7414f39683a7a8066a272f1271fe0e55951b07c202f1799f225c14459b8.e38Lax8PchqPbO0TbhqNahmRc3b0 for stickysession JSESSIONID|jsessionid [Wed Aug 18 13:57:49 2010] [debug] mod_proxy_balancer.c(286): proxy: BALANCER: Found route e38Lax8PchqPbO0TbhqNahmRc3b0 [Wed Aug 18 13:57:49 2010] [debug] mod_proxy_balancer.c(535): proxy: BALANCER (balancer://internalapp) worker ( http://bwd1finapp03.corpadds.com:8001) rewritten to http://bwd1finapp03.corpadds.com:8001/OA_HTML/AppsLocalLogin.jsp?langCode=US [Wed Aug 18 13:57:54 2010] [debug] mod_proxy_balancer.c(276): proxy: BALANCER: Found value de92e7414f39683a7a8066a272f1271fe0e55951b07c202f1799f225c14459b8.e38Lax8PchqPbO0TbhqNahmRc3b0 for stickysession JSESSIONID|jsessionid [Wed Aug 18 13:57:54 2010] [debug] mod_proxy_balancer.c(286): proxy: BALANCER: Found route e38Lax8PchqPbO0TbhqNahmRc3b0 [Wed Aug 18 13:57:54 2010] [debug] mod_proxy_balancer.c(535): proxy: BALANCER (balancer://internalapp) worker ( http://bwd1finapp03.corpadds.com:8001) rewritten to http://bwd1finapp03.corpadds.com:8001/OA_HTML/RF.jsp?function_id=28566resp_id=-1resp_appl_id=-1security_group_id=0lang_code=USparams=PxXpiqMs416s7FG5eW95o8UFiVkywaIKgiQWsKNGTFYoas=L2Ypksutic3wM1XKz7SKEg. . [Wed Aug 18 13:57:55 2010] [debug] mod_proxy_balancer.c(276): proxy: BALANCER: Found value de92e7414f39683a7a8066a272f1271fe0e55951b07c202f1799f225c14459b8.e38Lax8PchqPbO0TbhqNahmRc3b0 for stickysession JSESSIONID|jsessionid [Wed Aug 18 13:57:55 2010]
Re: [us...@httpd] HTTP - Apache2 /var/www only HTTPS - Tomcat via mod_proxy only
Solved the problem. The config below is correct, but I needed to configure my BlazeDS channelset to use htpps instead of http. The Flex html page loads fine for htpp or https, but since I have opened ONLY https for the backend server, I needed https for BlazeDS. Hope this helps someone else as well Here is my service-config.xml file now ?xml version=1.0 encoding=UTF-8? services-config services default-channels channel ref=https-amf/ /default-channels /services channels channel-definition id=https-amf class=mx.messaging.channels.SecureAMFChannel endpoint url=https://{server.name}:{server.port}/{context.root}/spring/messagebroker/amfsecure; class=flex.messaging.endpoints.SecureAMFEndpoint/ /channel-definition /channels /services-config Thanks Des On 19/08/2010, at 12:01 AM, Des Hartman wrote: Eric Thanks for the reply. I tried this: NameVirtualHost *:443 VirtualHost *:443 ServerAdmin webmas...@localhost SSLEngine On SSLCertificateFile /etc/apache2/ssl/apache.pem #=== ProxyPass /SFXServer/ balancer://backtcserver/ and it seem to work. Issue I now hit is I get a 404 from my backend Tomcat 203.217.63.195 - - [18/Aug/2010:13:47:14 +] POST /SFXServer/spring/messagebroker/amf HTTP/1.1 404 522 - Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_6_4; en-US) AppleWebKit/533.4 (KHTML, like Gecko) Chrome/5.0.375.126 Safari/533.4 Is there a way to enable more detailed debugging to see why? If I have the proxy pass in httpd.conf, I do not get this error, but I can reach the backend Tomcat on the same URL using http and https, which is not what I want. Thanks Des On 18/08/2010, at 11:51 PM, Eric Covener wrote: On Wed, Aug 18, 2010 at 8:22 AM, Des Hartman d...@deshartman.com wrote: Hi, Is there a simple way to do the following: 1) All http based requests to website www.abc.com go to my Apache2 server regardless of the virtual site 2) All https based requests to website www.abc.com are proxied to a private tomcat server via mod_proxy You already need two vhosts for the two frontend protocols. Just put ProxyPass directives in the SSL vhost. -- Eric Covener cove...@gmail.com - The official User-To-User support forum of the Apache HTTP Server Project. See URL:http://httpd.apache.org/userslist.html for more info. To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org from the digest: users-digest-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org