Re: [users@httpd] Virtual Hosts Possible for SSL ?
Le 1 octobre 2013 à 22:25, Eric Covener a écrit : > Don't use domains or IP addresses inside or > NameVirtualHost. It's causing two sets of name-based vhosts. Use > *:80. Hi, When I did that, and restarted the server and then went to my URL, I got a warning about the certificate not being approved or whatever (the same one I used to get when I was testing the domain with a self-signed certificate). And domain2.com still didn't work. J.
Re: [users@httpd] AuthType Digest or AuthType Basic not workin in Apache 2.4.6
Leo: Its start fine when I run it from the command line. On Tue, Oct 1, 2013 at 12:28 PM, Leo Donahue - RDSA IT < leodona...@mail.maricopa.gov> wrote: > From: Ezra Taylor [mailto:ezra.tay...@gmail.com] > Sent: Tuesday, October 01, 2013 7:34 AM > To: users@httpd.apache.org > Subject: Re: [users@httpd] AuthType Digest or AuthType Basic not workin > in Apache 2.4.6 > > Hello Leo: > > Below is what I have. I used htdigest to create a file name > "somefile" and I specified the realm name realm. Note, I'm using a RHEL > clone from Amazon named "Amazon Linux AMI release 2013.03". Note, this > work in version Apache 2.2 but not in 2.4.6 for some reason. Thanks for > your help. > > Authtype Digest > AuthName "realm" > AuthDigestAlgorithm MD5 > AuthDigestDomain / > AuthDigestProvider file > AuthUserFile /etc/httpd/vhosts/secfiles > Require valid-user > > > > -- > > I find that when I start httpd from the command line that I get a better > indication of the potential error in my configuration. When you start > httpd, do you get an error or does it start fine with this configuration? > > Leo > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org > > -- Ezra Taylor
[users@httpd] Configuring mod_authz_host's Redirect and Directory directives
Hello everyone and a special hello to this list's regular. I'm trying to figure out why I can't access some directories over my Apache 2.4.6 web server. There are two machines, the web server which is also the local machine, thus matching both 127.0.0.1 and 192.168.1.101 in my network and my Android mobile phone which had 192.168.1.126 when the excerpts that follow were taken. ## excerpt from /etc/apache2/conf-available/security.conf Require local Require ip 192.168.1.126 ## excerpt from /var/log/apache2/access.log 127.0.0.1 - - [02/Oct/2013:02:07:55 +0300] "GET /foo HTTP/1.1" 200 3633 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130810 Firefox/17.0 Iceweasel/17.0.8" 127.0.0.1 - - [02/Oct/2013:02:07:56 +0300] "GET /moo HTTP/1.1" 403 503 "-" "Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130810 Firefox/17.0 Iceweasel/17.0.8" 192.168.1.126 - - [02/Oct/2013:02:11:15 +0300] "GET /foo HTTP/1.1" 403 506 "-" "Mozilla/5.0 (Linux; U; Android 4.0.4; en-gb; GT-S5301 Build/IMM76D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30" 192.168.1.126 - - [02/Oct/2013:02:11:23 +0300] "GET /moo HTTP/1.1" 403 506 "-" "Mozilla/5.0 (Linux; U; Android 4.0.4; en-gb; GT-S5301 Build/IMM76D) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30" ## excerpt from /var/log/apache2/error.log [Wed Oct 02 02:07:56.110548 2013] [authz_core:error] [pid 32177] [client 127.0.0.1:60877] AH01630: client denied by server configuration: /foo [Wed Oct 02 02:11:15.454957 2013] [access_compat:error] [pid 32180] [client 192.168.1.126:58987] AH01797: client denied by server configuration: /foo [Wed Oct 02 02:11:23.116780 2013] [authz_core:error] [pid 32181] [client 192.168.1.126:58986] AH01630: client denied by server configuration: /moo These excerpts can be also found (at least for now) here: http://pastie.org/pastes/8371021/text Could you help figure out what am I missing? Thanks in advance, Sophoklis - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[users@httpd] Re: Virtual Hosts Possible for SSL ?
Top-posting, as it seems to be the trend. This is a portion of how our environment is set up. We have multiple virtual hosts, and two with SSL. We run configurations like this on CentOS 6.4 server with the latest updates. We use a SAN cert to manage multiple domain names. Please note that these are snippets. Place the information in the appropriate places on your server. Change the information to something reasonable. # httpd.conf Listen 80 NameVirtualHost external.ip.address.interface:80 NameVirtualHost internal.ip.address.interface:80 ServerName some.server.name ServerAdmin someper...@some.server.name DocumentRoot /var/www/some # # Other Directives # ServerName another.server.name ServerAdmin anotherper...@another.server.name DocumentRoot /var/www/another # # Other Directives # ServerName three.server.name ServerAdmin w...@three.server.name DocumentRoot /var/www/wee # # Other Directives # ServerName private.server.name ServerAdmin perso...@some.server.name DocumentRoot /var/www/private # # Other Directives # # ssl.conf Listen 443 NameVirtualHost external.ip.address.interface:443 # Certs SSLCertificateFile "san-cert.crt" SSLCertificateKeyFile "san-cert.key" SSLCertificateChainFIle "some-middle-man.crt" # Lots more stuff # logging defaults # SSL protocol defaults # broken IE defaults ServerName some.server.name ServerAdmin someper...@some.server.name DocumentRoot /var/www/some # # Other Directives # ServerName another.server.name ServerAdmin anotherper...@another.server.name DocumentRoot /var/www/another # # Other Directives # This is all happily working (and fronting multiple Tomcat servers). Hope this helps . . . . . . . just my two cents /mde/ On Tue, 01 Oct 2013 21:06:22 +0100, John McIntyre wrote: > So I'm still unable to serve that domain2.com :( > > > > > Le 1 octobre 2013 à 18:04, Nick Tkach a écrit : > >> Okay, if you're not doing ssl on domain2 then, no, that's not related. >> I thought maybe from the post title that you were asking about virtual >> hosts for ssl and that gets complicated depending on exactly what >> you're trying to do. >> >> >> On Tue, Oct 1, 2013 at 11:57 AM, John McIntyre >> wrote: >> Hi, >> Thanks for that. Unfortunately, even after the changes, entering >> domain2.com on a browser still goes directly to domain1.com. >> >> No, I don't have any intention to do SSL on domain2.com. Is this >> causing a problem? >> >> D. >> >> >> Le 1 octobre 2013 à 17:29, Nick Tkach a écrit : >> >>> Well, question is, are you trying to have domain2.com *also* do that >>> same http->https ( http://domain2.com to https://domain2.com )? If >>> so, do you have separate certificates for each (domain1 and domain2)? >>> >>> >>> On Tue, Oct 1, 2013 at 10:36 AM, Pete Houston >>> wrote: >>> On Tue, Oct 01, 2013 at 04:25:05PM +0100, John McIntyre wrote: >>> > Am I doomed to failiure, or is what I'm trying to do, actually >>> > possible? >>> >>> No, you are almost there. The problem is that for some reason you have >>> an asterisk in your VirtualHost declaration for domain2. Change that >>> the the actual IP address (or hostname since you're using that for the >>> others) and you should be fine. >>> >>> I'd also swap out the asterisk the NameVirtualHost directive too. >>> >>> HTH, >>> >>> Pete -- - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Virtual Hosts Possible for SSL ?
Don't use domains or IP addresses inside or NameVirtualHost. It's causing two sets of name-based vhosts. Use *:80. On Tue, Oct 1, 2013 at 4:06 PM, John McIntyre wrote: > So I'm still unable to serve that domain2.com :( > > > > > Le 1 octobre 2013 à 18:04, Nick Tkach a écrit : > > Okay, if you're not doing ssl on domain2 then, no, that's not related. I > thought maybe from the post title that you were asking about virtual hosts > for ssl and that gets complicated depending on exactly what you're trying to > do. > > > On Tue, Oct 1, 2013 at 11:57 AM, John McIntyre wrote: >> >> Hi, >> Thanks for that. Unfortunately, even after the changes, entering >> domain2.com on a browser still goes directly to domain1.com. >> >> No, I don't have any intention to do SSL on domain2.com. Is this causing >> a problem? >> >> D. >> >> >> Le 1 octobre 2013 à 17:29, Nick Tkach a écrit : >> >> Well, question is, are you trying to have domain2.com *also* do that same >> http->https ( http://domain2.com to https://domain2.com )? If so, do you >> have separate certificates for each (domain1 and domain2)? >> >> >> On Tue, Oct 1, 2013 at 10:36 AM, Pete Houston >> wrote: >>> >>> On Tue, Oct 01, 2013 at 04:25:05PM +0100, John McIntyre wrote: >>> > Am I doomed to failiure, or is what I'm trying to do, actually >>> > possible? >>> >>> No, you are almost there. The problem is that for some reason you have >>> an asterisk in your VirtualHost declaration for domain2. Change that the >>> the actual IP address (or hostname since you're using that for the >>> others) and you should be fine. >>> >>> I'd also swap out the asterisk the NameVirtualHost directive too. >>> >>> HTH, >>> >>> Pete >>> -- >>> Openstrike - improving business through open source >>> http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107 >> >> >> > > -- Eric Covener cove...@gmail.com - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Virtual Hosts Possible for SSL ?
So I'm still unable to serve that domain2.com :( Le 1 octobre 2013 à 18:04, Nick Tkach a écrit : > Okay, if you're not doing ssl on domain2 then, no, that's not related. I > thought maybe from the post title that you were asking about virtual hosts > for ssl and that gets complicated depending on exactly what you're trying to > do. > > > On Tue, Oct 1, 2013 at 11:57 AM, John McIntyre wrote: > Hi, > Thanks for that. Unfortunately, even after the changes, entering domain2.com > on a browser still goes directly to domain1.com. > > No, I don't have any intention to do SSL on domain2.com. Is this causing a > problem? > > D. > > > Le 1 octobre 2013 à 17:29, Nick Tkach a écrit : > >> Well, question is, are you trying to have domain2.com *also* do that same >> http->https ( http://domain2.com to https://domain2.com )? If so, do you >> have separate certificates for each (domain1 and domain2)? >> >> >> On Tue, Oct 1, 2013 at 10:36 AM, Pete Houston wrote: >> On Tue, Oct 01, 2013 at 04:25:05PM +0100, John McIntyre wrote: >> > Am I doomed to failiure, or is what I'm trying to do, actually possible? >> >> No, you are almost there. The problem is that for some reason you have >> an asterisk in your VirtualHost declaration for domain2. Change that the >> the actual IP address (or hostname since you're using that for the >> others) and you should be fine. >> >> I'd also swap out the asterisk the NameVirtualHost directive too. >> >> HTH, >> >> Pete >> -- >> Openstrike - improving business through open source >> http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107 >> > >
[users@httpd] Problem rendering pages via SSL over Internet
Hi, I've been searching though the archive and I haven't been able to find a posting that talks about exactly the problem we're having, so I hope folks will be patient if I'm duplicating some questions here. I'm running a test system which hosts several applications, one of which is required to use an SSL connection. I created a virtual host for this purpose, which can field requests from either our internal network or the Internet (the test system replicates our production DMZ). However, while the internal connection works fine, trying to connect over SSL from the Internet only generates a 404 error (although it is connecting via SSL, the page I'm requesting comes back as unavailable). Here's the configuration I'm using (this is on Apache 2.2.25, running on Windows Server 2003 R2): Listen 443 NameVirtualHost *:443 ServerName server.com DocumentRoot "E:/sites" ErrorLog "C:\Apache2.2\logs\ssl.log" SSLEngine on SSLCertificateFile "C:/Apache2.2/conf/crt/mycert.crt" SSLCertificateKeyFile "C:/Apache2.2/conf/crt/mykey.key" RewriteEngine On RewriteCond %{HTTPS} !=on RewriteRule ^/?(.*) https://{SERVER_NAME}/$1 [R,L] SetHandler weblogic-handler WebLogicHost wl_server_ip WebLogicPort 7102 Debug On WLLogFile "C:\Apache2.2\logs\wl-module.log" DebugConfigInfo On ErrorPage /Error/wl_bridge_failure.htm (IPs and server names are changed for obvious reasons). Does anyone have any idea why I'm unable to reach our page from the outside? I'm not even sure it's an Apache issue, but I've verified that port 443 is open on the machine, and Apache is the only application listening on that port. Thanks! Dave Willis
Re: [users@httpd] Virtual Hosts Possible for SSL ?
Okay, if you're not doing ssl on domain2 then, no, that's not related. I thought maybe from the post title that you were asking about virtual hosts for ssl and that gets complicated depending on exactly what you're trying to do. On Tue, Oct 1, 2013 at 11:57 AM, John McIntyre wrote: > Hi, > Thanks for that. Unfortunately, even after the changes, entering > domain2.com on a browser still goes directly to domain1.com. > > No, I don't have any intention to do SSL on domain2.com. Is this causing > a problem? > > D. > > > Le 1 octobre 2013 à 17:29, Nick Tkach a écrit : > > Well, question is, are you trying to have domain2.com *also* do that same > http->https ( http://domain2.com to https://domain2.com )? If so, do you > have separate certificates for each (domain1 and domain2)? > > > On Tue, Oct 1, 2013 at 10:36 AM, Pete Houston wrote: > >> On Tue, Oct 01, 2013 at 04:25:05PM +0100, John McIntyre wrote: >> > Am I doomed to failiure, or is what I'm trying to do, actually possible? >> >> No, you are almost there. The problem is that for some reason you have >> an asterisk in your VirtualHost declaration for domain2. Change that the >> the actual IP address (or hostname since you're using that for the >> others) and you should be fine. >> >> I'd also swap out the asterisk the NameVirtualHost directive too. >> >> HTH, >> >> Pete >> -- >> Openstrike - improving business through open source >> http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107 >> > > >
Re: [users@httpd] Virtual Hosts Possible for SSL ?
Hi, Thanks for that. Unfortunately, even after the changes, entering domain2.com on a browser still goes directly to domain1.com. No, I don't have any intention to do SSL on domain2.com. Is this causing a problem? D. Le 1 octobre 2013 à 17:29, Nick Tkach a écrit : > Well, question is, are you trying to have domain2.com *also* do that same > http->https ( http://domain2.com to https://domain2.com )? If so, do you > have separate certificates for each (domain1 and domain2)? > > > On Tue, Oct 1, 2013 at 10:36 AM, Pete Houston wrote: > On Tue, Oct 01, 2013 at 04:25:05PM +0100, John McIntyre wrote: > > Am I doomed to failiure, or is what I'm trying to do, actually possible? > > No, you are almost there. The problem is that for some reason you have > an asterisk in your VirtualHost declaration for domain2. Change that the > the actual IP address (or hostname since you're using that for the > others) and you should be fine. > > I'd also swap out the asterisk the NameVirtualHost directive too. > > HTH, > > Pete > -- > Openstrike - improving business through open source > http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107 >
Re: [users@httpd] 2.4 mod_ldap subgroup filter
thanks, committed to trunk and proposed for 2.4.x On Tue, Oct 1, 2013 at 11:03 AM, David Hawes wrote: > When performing subgroup searches, an LDAP search with scope base is > issued on the DN of a group with a hard-coded filter of "cn=*". If the > group does not have a cn, the search will fail. > > Since we simply want to get the group members, the default filter of > "objectClass=*" should be used. > > A patch is attached that sets the filter to NULL, which defaults to > "objectClass=*". > > > - > To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org > For additional commands, e-mail: users-h...@httpd.apache.org -- Eric Covener cove...@gmail.com - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Virtual Hosts Possible for SSL ?
Well, question is, are you trying to have domain2.com *also* do that same http->https ( http://domain2.com to https://domain2.com )? If so, do you have separate certificates for each (domain1 and domain2)? On Tue, Oct 1, 2013 at 10:36 AM, Pete Houston wrote: > On Tue, Oct 01, 2013 at 04:25:05PM +0100, John McIntyre wrote: > > Am I doomed to failiure, or is what I'm trying to do, actually possible? > > No, you are almost there. The problem is that for some reason you have > an asterisk in your VirtualHost declaration for domain2. Change that the > the actual IP address (or hostname since you're using that for the > others) and you should be fine. > > I'd also swap out the asterisk the NameVirtualHost directive too. > > HTH, > > Pete > -- > Openstrike - improving business through open source > http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107 >
RE: [users@httpd] AuthType Digest or AuthType Basic not workin in Apache 2.4.6
From: Ezra Taylor [mailto:ezra.tay...@gmail.com] Sent: Tuesday, October 01, 2013 7:34 AM To: users@httpd.apache.org Subject: Re: [users@httpd] AuthType Digest or AuthType Basic not workin in Apache 2.4.6 Hello Leo: Below is what I have. I used htdigest to create a file name "somefile" and I specified the realm name realm. Note, I'm using a RHEL clone from Amazon named "Amazon Linux AMI release 2013.03". Note, this work in version Apache 2.2 but not in 2.4.6 for some reason. Thanks for your help. Authtype Digest AuthName "realm" AuthDigestAlgorithm MD5 AuthDigestDomain / AuthDigestProvider file AuthUserFile /etc/httpd/vhosts/secfiles Require valid-user -- I find that when I start httpd from the command line that I get a better indication of the potential error in my configuration. When you start httpd, do you get an error or does it start fine with this configuration? Leo - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
[users@httpd] UNSUBSCRIBE
UNSUBSCRIBE From: John McIntyre [mailto:joh98@gmail.com] Sent: Tuesday, October 1, 2013 10:25 AM To: users@httpd.apache.org Subject: [users@httpd] Virtual Hosts Possible for SSL ? Hi, I have an apache 2.2.15 instance running on a CentOS 6.4 server. This server is (or will be, if I ever get it working...) two domains. One of them has an SSL certificate, and one doesn't. I've been struggling with this for two days solid, and if my research is correct, then the SSL handshake takes place before the browser sends the server name, and so what I'm trying to do isn't possible. Is this true? The appropriate sections from my httpd.conf are as follows: NameVirtualHost *:80 ServerAdmin r...@domain1.com DocumentRoot /var/www/html ServerName domain1.com ErrorLog /var/log/httpd/error_log CustomLog /var/log/httpd/access.log combined Redirect permanent / https://domain1.com/ SSLEngine On SSLCertificateFile /etc/httpd/ssl/httpd.pem SSLCertificateKeyFile /etc/httpd/ssl/httpd.key ServerAdmin r...@domain1.com ServerName domain1.com DocumentRoot /var/www/html ErrorLog /var/log/httpd/error_log CustomLog /var/log/httpd/access.log combined ServerName domain2.com ServerAlias domain2.com *.domain2.com DocumentRoot /var/www/html/domain2 Here is what I want to happen. i) User types http://domain1.com into his browser. The server automatically redirects this to the secure connection, namely https://domain1.com. This content is in /var/www/html So far, this works perfectly. ii) User types http://domain2.com into his browser. The server sends back what is in /var/www/html/domain2 This doesn't work. In fact, what happens is that whenever someone asks for domain2, he gets domain1. Am I doomed to failiure, or is what I'm trying to do, actually possible? Thanks.
[users@httpd] Virtual Hosts Possible for SSL ?
Hi, I have an apache 2.2.15 instance running on a CentOS 6.4 server. This server is (or will be, if I ever get it working...) two domains. One of them has an SSL certificate, and one doesn't. I've been struggling with this for two days solid, and if my research is correct, then the SSL handshake takes place before the browser sends the server name, and so what I'm trying to do isn't possible. Is this true? The appropriate sections from my httpd.conf are as follows: NameVirtualHost *:80 ServerAdmin r...@domain1.com DocumentRoot /var/www/html ServerName domain1.com ErrorLog /var/log/httpd/error_log CustomLog /var/log/httpd/access.log combined Redirect permanent / https://domain1.com/ SSLEngine On SSLCertificateFile /etc/httpd/ssl/httpd.pem SSLCertificateKeyFile /etc/httpd/ssl/httpd.key ServerAdmin r...@domain1.com ServerName domain1.com DocumentRoot /var/www/html ErrorLog /var/log/httpd/error_log CustomLog /var/log/httpd/access.log combined ServerName domain2.com ServerAlias domain2.com *.domain2.com DocumentRoot /var/www/html/domain2 Here is what I *want* to happen. i) User types http://domain1.com into his browser. The server automatically redirects this to the secure connection, namely http*s*:// domain1.com. This content is in /var/www/html So far, this works perfectly. ii) User types http://domain2.com into his browser. The server sends back what is in /var/www/html/domain2 This doesn't work. In fact, what happens is that whenever someone asks for domain2, he gets domain1. Am I doomed to failiure, or is what I'm trying to do, actually possible? Thanks.
Re: [users@httpd] Virtual Hosts Possible for SSL ?
On Tue, Oct 01, 2013 at 04:25:05PM +0100, John McIntyre wrote: > Am I doomed to failiure, or is what I'm trying to do, actually possible? No, you are almost there. The problem is that for some reason you have an asterisk in your VirtualHost declaration for domain2. Change that the the actual IP address (or hostname since you're using that for the others) and you should be fine. I'd also swap out the asterisk the NameVirtualHost directive too. HTH, Pete -- Openstrike - improving business through open source http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107 pgpgdajGgDATe.pgp Description: PGP signature
[users@httpd] 2.4 mod_ldap subgroup filter
When performing subgroup searches, an LDAP search with scope base is issued on the DN of a group with a hard-coded filter of "cn=*". If the group does not have a cn, the search will fail. Since we simply want to get the group members, the default filter of "objectClass=*" should be used. A patch is attached that sets the filter to NULL, which defaults to "objectClass=*". oc.patch Description: Binary data - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] AuthType Digest or AuthType Basic not workin in Apache 2.4.6
Hello Leo: Below is what I have. I used htdigest to create a file name "somefile" and I specified the realm name realm. Note, I'm using a RHEL clone from Amazon named "Amazon Linux AMI release 2013.03". Note, this work in version Apache 2.2 but not in 2.4.6 for some reason. Thanks for your help. Authtype Digest AuthName "realm" AuthDigestAlgorithm MD5 AuthDigestDomain / AuthDigestProvider file AuthUserFile /etc/httpd/vhosts/secfiles Require valid-user On Mon, Sep 30, 2013 at 10:31 AM, Leo Donahue - RDSA IT < leodona...@mail.maricopa.gov> wrote: > >From: Ezra Taylor [mailto:ezra.tay...@gmail.com ] > > >Subject: [users@httpd] AuthType Digest or AuthType Basic not workin in > Apache 2.4.6 > > > >I've been banging on this issues for a couple of days now. I have all > modules installed and can't get AuthType Basic or AuthType Digest to work. > > For Digest, I believe all you need is: LoadModule auth_digest_module > modules/mod_auth_digest.so > > >I even have a setup for LDAP that >doesn't work. The same setup works as > in Apache 2.2. Can you guys give me some pointers as to were I went > astray? thanks all for your help. I used >htdigest to generate password > and >realm for Digest. > > > >My setup is as follows. > > > > AuthType Digest > >AuthName "apache24" > >AuthDigestAlgorithm MD5 > >AuthDigestDomain / http://amazon-node > >AuthDigestProvider file > >AuthUserFile /usr/local/apache24/conf/secfile > >Require valid-user > >-- > >Ezra Taylor > > When you issued the htdigest command: did you ue use apache24 as the realm > name? Did you make a mistake entering the password? > > For your AuthDigestDomain, are you trying to register two URI? The root > and the amazon-node? > > -- Ezra Taylor
Re: [users@httpd] Name based virtualhosts with default
On Tue, Oct 1, 2013 at 10:02 AM, Redalert Commander < redalert.comman...@gmail.com> wrote: > Our configuration has the typical include of > "/etc/httpd/conf.d/*.conf", it is here that the vhosts are defined in > separate files. Should the default also be placed in here or does it > have to be defined at the end of the httpd.conf (master) configuration > file? > > It is currently my understanding that I should place it at the bottom > of httpd.conf; so to be sure it is that last that is matched, but I > would like to hear from someone with more knowledge and/or experience > about apache than myself. > I would prefer it to be placed in the conf.d folder if possible. > It might depend on which distribution you are using. Some systems (Debian, for example) will always load the config files in alphabetical order, so the efault vhost is usually named 000-default to ensure it loads first. I don't think you can guarantee that on other systems. If you do decide to include the default vhost in the httpd.conf, you would need to put it before the line that includes conf.d - Y
[users@httpd] Name based virtualhosts with default
Hi, I was reading the documentation and testing out some things. We have multiple name based virtual hosts, but would like to display a page when not match is found. According to the documentation at [1] and [2], the first matching servername or alias is used, with no precedence for wildcards. What appears to be working in our case is a 'default' host with 'ServerName *', but how would I know for certain that this is the one that is always used? Our configuration has the typical include of "/etc/httpd/conf.d/*.conf", it is here that the vhosts are defined in separate files. Should the default also be placed in here or does it have to be defined at the end of the httpd.conf (master) configuration file? It is currently my understanding that I should place it at the bottom of httpd.conf; so to be sure it is that last that is matched, but I would like to hear from someone with more knowledge and/or experience about apache than myself. I would prefer it to be placed in the conf.d folder if possible. Best regards, Steven [1] http://httpd.apache.org/docs/2.2/vhosts/name-based.html [2] https://httpd.apache.org/docs/2.4/vhosts/name-based.html#defaultvhost - To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org For additional commands, e-mail: users-h...@httpd.apache.org
Re: [users@httpd] Apache - 64bit Unix
./configure should default to the same type as the system you are running it on. You can override it with the correct environment variables set when you call configure (I think it is something like CFLAGS="-m32" CPPFLAGS="-m32" LDFLAGS="-L/usr/lib32" to build x86 on x64) - Y On Tue, Oct 1, 2013 at 5:32 AM, Kumar, Rajeev wrote: > Dear Expert, > > ** ** > > I am wondering apache 2.4.6 for UNIX available at “ > http://httpd.apache.org/docs/2.4/ “ . > > Is it 64 bit or 32 bit or it depends on the machine we compile. > > ** ** > > Thanks and Regards > > Rajeev >
[users@httpd] Apache - 64bit Unix
Dear Expert, I am wondering apache 2.4.6 for UNIX available at "http://httpd.apache.org/docs/2.4/ " . Is it 64 bit or 32 bit or it depends on the machine we compile. Thanks and Regards Rajeev
Re: [users@httpd] Apache not recording client addresses correctly
On Mon, Sep 30, 2013 at 06:03:37PM -0700, Andrew Daviel wrote: > huh! wtf? - if I enable /server-status, the correct address for the > client asking for /server-status, is not just logged, but resolved, > even though HostnameLookups is off. But other requests still get the > 98.32 address. This reverse resolution will almost certainly be because you are restricting access to that location (/server-status) by name rather than by IP address (perhaps inadvertently). It doesn't explain what you are seeing for other locations, unfortunately. Are you using any third-party modules? Pete -- Openstrike - improving business through open source http://www.openstrike.co.uk/ or call 01722 770036 / 07092 020107 pgp9dXuo8pyMw.pgp Description: PGP signature