RE: [users@httpd] Question about installing 2.4.48 in a non-standard location.

[Jeff Cauhape]

THANK YOU.

That pegged it. Now I'm on to run-of-the-mill problems.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 224-6836 (cell) jpcauh...@detr.nv.gov

-Original Message-
From: Eric Covener  
Sent: Tuesday, September 21, 2021 4:58 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Question about installing 2.4.48 in a non-standard 
location.

On Tue, Sep 21, 2021 at 2:29 PM Jeff Cauhape  wrote:
>
> Folks,
>
>
>
> When I built 2.4.48 from source, I built it in /apps/apache_2.4.48 
> directory. However, because of the way
>
> our servers are managed, I need to install this as /apps/apache_2.4.48_int 
> and /apps/apache_2.4.48_ext.
>
> When I have done this for earlier versions of Apache, I just edited 
> the path names in apachectl, envvars,
>
> envvars_std, and in httpd.conf.
>
>
>
> This doesn’t seem to be adequate anymore.
>
>
>
> I have also changed pathnames in apxs, apu-1-config and apr-1-config, 
> but am still getting an error
>
> message when I run “apachectl configtest”
>
>
>
> [root@appwebdev1ie bin]# ./apachectl configtest
>
> httpd: Could not open configuration file 
> /apps/apache_2.4.48/conf/httpd.conf: No such file or directory

Maybe you need to append a "-d /apps/apache_2.4.48_int" to the line beginning 
with HTTPD= in apachectl?

The default ServerRoot is compiled in, and overriding it in httpd.conf is too 
late.

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

RE: [users@httpd] Question about installing 2.4.48 in a non-standard location.

[Jeff Cauhape]

Carsten,

I use the first method you describe. It's always been pretty simple to 
modify the pathnames before.

I can see how the multiple source trees/build targets would work, but the
problem is that some systems would require 4 build targets. I'd like to 
keep it simple by have just 1 build target, and then configuring it to 
local needs, if necessary.

When I execute the config test, I cd to the bin directory and just give
the command

# ./apachectl configtest

That way there is no doubt as to which apachectl is being executed.

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 224-6836 (cell) jpcauh...@detr.nv.gov

-Original Message-
From: Carsten Reith  
Sent: Tuesday, September 21, 2021 1:42 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Question about installing 2.4.48 in a non-standard 
location.

Hi,

what do you do exactly ?

- Do you build it with configure --prefix=/apps/apache_2.4.48 - make - make 
install and then copy it to the two target directories ?
- Or do you build it two times modifiying the --prefix appropriately ?

I would strongly suggest to install it the second way. Or maybe even to have 
two source tress (unless disk space is a severe issue).

Where do you execute the apachectl configtest ?

Cheers,

Carsten


I would strongly

Am Tue, Sep 21, 2021 at 06:28:34PM +0000 schrieb Jeff Cauhape:
> Folks,
> 
> When I built 2.4.48 from source, I built it in /apps/apache_2.4.48 
> directory. However, because of the way our servers are managed, I need to 
> install this as /apps/apache_2.4.48_int and /apps/apache_2.4.48_ext.
> When I have done this for earlier versions of Apache, I just edited 
> the path names in apachectl, envvars, envvars_std, and in httpd.conf.
> 
> This doesn't seem to be adequate anymore.
> 
> I have also changed pathnames in apxs, apu-1-config and apr-1-config, 
> but am still getting an error message when I run "apachectl configtest"
> 
> [root@appwebdev1ie bin]# ./apachectl configtest
> httpd: Could not open configuration file 
> /apps/apache_2.4.48/conf/httpd.conf: No such file or directory
> 
> Can someone toss me a clue as to where else this needs to be 
> corrected? Obviously  something is checking the default build path and I 
> don't know where this is going on.
> 
> Thank you,
> 
> Jeffrey Cauhape - IT Professional III - Linux and Solaris 
> Administrator Nevada Department of Employment, Training and Rehabilitation
> (775) 224-6836 (cell) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[users@httpd] Question about installing 2.4.48 in a non-standard location.

[Jeff Cauhape]

Folks,

When I built 2.4.48 from source, I built it in /apps/apache_2.4.48 directory. 
However, because of the way
our servers are managed, I need to install this as /apps/apache_2.4.48_int and 
/apps/apache_2.4.48_ext.
When I have done this for earlier versions of Apache, I just edited the path 
names in apachectl, envvars,
envvars_std, and in httpd.conf.

This doesn't seem to be adequate anymore.

I have also changed pathnames in apxs, apu-1-config and apr-1-config, but am 
still getting an error
message when I run "apachectl configtest"

[root@appwebdev1ie bin]# ./apachectl configtest
httpd: Could not open configuration file /apps/apache_2.4.48/conf/httpd.conf: 
No such file or directory

Can someone toss me a clue as to where else this needs to be corrected? 
Obviously  something is checking
the default build path and I don't know where this is going on.

Thank you,

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 224-6836 (cell) jpcauh...@detr.nv.gov

[users@httpd] Looking for advice re getting mod_xml2enc for Apache 2.4.39

[Jeff Cauhape]

Folks,

I built and have been using the 2.4.39 version of Apache for a while, and
been reasonably happy with it. However, I am porting some web pages
that require mod_proxy_html which in turn requires mod_xml2enc.

The problems are that I can’t seem to find mod_xml2enc anywhere,
and my 2.4.39 build environment got toasted. ☹

So … given that I no longer have the build environment, what is the most
expeditious way to get my hands on mod_xml2enc which is compatible
with 2.4.39?

I’m on Red Hat Linux 7.6, if that matters.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

RE: [users@httpd] RE: Need some advice - thread safe php module

[Jeff Cauhape]

Clearly I misread the error message. I thought it was _from_ libargon2….
Now that I got the libargon2 and associated files from epel, it passes muster.

Thanks again.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Yehuda Katz 
Sent: Thursday, May 23, 2019 2:15 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] RE: Need some advice - thread safe php module

It says you are missing libargon2.so. You should be able to get it from 
libargon2 in EPEL.

- Y

On Thu, May 23, 2019 at 4:59 PM Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
Yehuda,

Thank you. I figured that one out. 😊

However, I’m seeing something odd that has me scratching my head.

If I load the wrong module, it’s found but can’t be used (from httpd.conf):

#
# Diagnostic test - loading PHP module
#
LoadModule php5_module   modules/old/libphp5.so
#LoadModule php7_module   modules/old/libphp7-zts.so

and I get

[root@web1e conf]# ../bin/httpd -t
[Thu May 23 13:30:24.323227 2019] [:crit] [pid 2861:tid 139938397767552] Apache 
is running a threaded MPM,
but your PHP Module is not compiled to be threadsafe.  You need to recompile 
PHP.
AH00013: Pre-configuration failed

which is what I suspect. However, comment out the wrong module
and uncomment the correct one:

#
# Diagnostic test - loading PHP module
#
#LoadModule php5_module   modules/old/libphp5.so
LoadModule php7_module   modules/old/libphp7-zts.so

and check again …

[root@web1e conf]# ../bin/httpd -t
httpd: Syntax error on line 173 of /apps/apache_2.4.37/conf/httpd.conf: Cannot 
load modules/old/libphp7-zts.so into server: libargon2.so.0: cannot open shared 
object file: No such file or directory

but both shared objects are in the same directory and have same permissions:

[root@web1e old]# ls -l lib*
-rwxr-xr-x. 1 apache apache 4588168 May 22 09:19 libphp5.so
-rwxr-xr-x. 1 apache apache 5309568 May 23 11:52 libphp7-zts.so

and they have the same magic cookies:

[root@web1e old]# file lib*
libphp5.so: ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), 
dynamically linked, BuildID[sha1]=ffdbbd7feae16b186d72c1cb2abc072ee3d3ceb6, 
stripped

libphp7-zts.so: ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), 
dynamically linked, BuildID[sha1]=dcac17fd34443cb602e1d13f2cb812f6165d7ba3, 
stripped

I thought that maybe the problem was some strange module name that wasn’t 
correct in httpd.conf

[root@web1e old]# strings lib* | grep php | grep module
php_info_print_module
php_session_register_module
_php_find_ps_module
php_get_module_initialized
php_module_startup
php_module_shutdown_for_exec
php_module_shutdown
php_module_shutdown_wrapper
php5_module
/usr/lib64/php/modules

php_info_print_module
php_session_register_module
_php_find_ps_module
php_get_module_initialized
php_module_startup
php_module_shutdown_for_exec
php_module_shutdown
php_module_shutdown_wrapper
php7_module
/usr/lib64/php-zts/modules

But that’s not the case.

Ideas?

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Yehuda Katz mailto:yeh...@ymkatz.net>>
Sent: Thursday, May 23, 2019 11:30 AM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: Re: [users@httpd] RE: Need some advice - thread safe php module

Sorry for the delay. As Rainer said, the system-wide packages include zts 
builds. For example (I have php-73):
/usr/lib64/httpd/modules/libphp7-zts.so
/usr/bin/zts-php

- Y

On Thu, May 23, 2019 at 11:19 AM Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
Thank you!

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

-Original Message-
From: Rainer Canavan 
mailto:rainer.cana...@sevenval.com>>
Sent: Thursday, May 23, 2019 1:27 AM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: Re: [users@httpd] RE: Need some advice - thread safe php module

On Thu, May 23, 2019 at 12:15 AM Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
>
> Yehuda,
>
> But how do you tell if the Apache thread-safe module is included?
>
> I’ve already wasted more than enough time on this task, and I’d like
>
> some way to determine I’m not just wasting more time.

It's in the FAQ, a single mouse click away from the link Yehuda has provided:

https://blog.remirepo.net/pages/English-FAQ#scl

in short: pick the right package from Remi's repositories.

rainer

-
To unsubscribe, e-mail:

RE: [users@httpd] RE: Need some advice - thread safe php module

[Jeff Cauhape]

Yehuda,

Thank you. I figured that one out. 😊

However, I’m seeing something odd that has me scratching my head.

If I load the wrong module, it’s found but can’t be used (from httpd.conf):

#
# Diagnostic test - loading PHP module
#
LoadModule php5_module   modules/old/libphp5.so
#LoadModule php7_module   modules/old/libphp7-zts.so

and I get

[root@web1e conf]# ../bin/httpd -t
[Thu May 23 13:30:24.323227 2019] [:crit] [pid 2861:tid 139938397767552] Apache 
is running a threaded MPM,
but your PHP Module is not compiled to be threadsafe.  You need to recompile 
PHP.
AH00013: Pre-configuration failed

which is what I suspect. However, comment out the wrong module
and uncomment the correct one:

#
# Diagnostic test - loading PHP module
#
#LoadModule php5_module   modules/old/libphp5.so
LoadModule php7_module   modules/old/libphp7-zts.so

and check again …

[root@web1e conf]# ../bin/httpd -t
httpd: Syntax error on line 173 of /apps/apache_2.4.37/conf/httpd.conf: Cannot 
load modules/old/libphp7-zts.so into server: libargon2.so.0: cannot open shared 
object file: No such file or directory

but both shared objects are in the same directory and have same permissions:

[root@web1e old]# ls -l lib*
-rwxr-xr-x. 1 apache apache 4588168 May 22 09:19 libphp5.so
-rwxr-xr-x. 1 apache apache 5309568 May 23 11:52 libphp7-zts.so

and they have the same magic cookies:

[root@web1e old]# file lib*
libphp5.so: ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), 
dynamically linked, BuildID[sha1]=ffdbbd7feae16b186d72c1cb2abc072ee3d3ceb6, 
stripped

libphp7-zts.so: ELF 64-bit LSB shared object, x86-64, version 1 (SYSV), 
dynamically linked, BuildID[sha1]=dcac17fd34443cb602e1d13f2cb812f6165d7ba3, 
stripped

I thought that maybe the problem was some strange module name that wasn’t 
correct in httpd.conf

[root@web1e old]# strings lib* | grep php | grep module
php_info_print_module
php_session_register_module
_php_find_ps_module
php_get_module_initialized
php_module_startup
php_module_shutdown_for_exec
php_module_shutdown
php_module_shutdown_wrapper
php5_module
/usr/lib64/php/modules

php_info_print_module
php_session_register_module
_php_find_ps_module
php_get_module_initialized
php_module_startup
php_module_shutdown_for_exec
php_module_shutdown
php_module_shutdown_wrapper
php7_module
/usr/lib64/php-zts/modules

But that’s not the case.

Ideas?

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Yehuda Katz 
Sent: Thursday, May 23, 2019 11:30 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] RE: Need some advice - thread safe php module

Sorry for the delay. As Rainer said, the system-wide packages include zts 
builds. For example (I have php-73):
/usr/lib64/httpd/modules/libphp7-zts.so
/usr/bin/zts-php

- Y

On Thu, May 23, 2019 at 11:19 AM Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
Thank you!

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

-Original Message-
From: Rainer Canavan 
mailto:rainer.cana...@sevenval.com>>
Sent: Thursday, May 23, 2019 1:27 AM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: Re: [users@httpd] RE: Need some advice - thread safe php module

On Thu, May 23, 2019 at 12:15 AM Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
>
> Yehuda,
>
> But how do you tell if the Apache thread-safe module is included?
>
> I’ve already wasted more than enough time on this task, and I’d like
>
> some way to determine I’m not just wasting more time.

It's in the FAQ, a single mouse click away from the link Yehuda has provided:

https://blog.remirepo.net/pages/English-FAQ#scl

in short: pick the right package from Remi's repositories.

rainer

-
To unsubscribe, e-mail: 
users-unsubscr...@httpd.apache.org<mailto:users-unsubscr...@httpd.apache.org>
For additional commands, e-mail: 
users-h...@httpd.apache.org<mailto:users-h...@httpd.apache.org>

RE: [users@httpd] RE: Need some advice - thread safe php module

[Jeff Cauhape]

Thank you!

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Rainer Canavan  
Sent: Thursday, May 23, 2019 1:27 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] RE: Need some advice - thread safe php module

On Thu, May 23, 2019 at 12:15 AM Jeff Cauhape  wrote:
>
> Yehuda,
>
> But how do you tell if the Apache thread-safe module is included?
>
> I’ve already wasted more than enough time on this task, and I’d like
>
> some way to determine I’m not just wasting more time.

It's in the FAQ, a single mouse click away from the link Yehuda has provided:

https://blog.remirepo.net/pages/English-FAQ#scl

in short: pick the right package from Remi's repositories.

rainer

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

RE: [users@httpd] RE: Need some advice - thread safe php module

[Jeff Cauhape]

Yehuda,

But how do you tell if the Apache thread-safe module is included?
I’ve already wasted more than enough time on this task, and I’d like
some way to determine I’m not just wasting more time.

Thanks,

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Yehuda Katz 
Sent: Wednesday, May 22, 2019 1:32 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] RE: Need some advice - thread safe php module

We are happy with Remi's Repo:  https://rpms.remirepo.net/wizard/ (Remi is a 
core PHP team member).

You should consider newer versions of PHP (7.1+) as older version are no longer 
maintained, unless you use the version supplied by RedHat (since they are still 
updating it).

- Y

On Wed, May 22, 2019 at 4:12 PM Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
I should mention this is running on RHEL 7.6, x86_64.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Jeff Cauhape mailto:jpcauh...@detr.nv.gov>>
Sent: Wednesday, May 22, 2019 1:07 PM
To: 'users@httpd.apache.org<mailto:users@httpd.apache.org>' 
mailto:users@httpd.apache.org>>
Subject: [users@httpd] Need some advice - thread safe php module

Hi,

I am porting some older web pages from Apache 2.4.6 to Apache 2.4.37 on Linux
and apparently need to find a thread-safe version of libphp5.so to use, since 
we’re
running MPM.


  *   Does anyone know where I can download the apache thread safe php module?
  *   If not, can someone give me a clue about the configuration options I 
should use
to build a new version of PHP which contains the php module for Apache?

I have been unable to find a download for the php module, and building PHP is 
not
producing a php module either.

Thanks,

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

[users@httpd] RE: Need some advice - thread safe php module

[Jeff Cauhape]

I should mention this is running on RHEL 7.6, x86_64.

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Jeff Cauhape 
Sent: Wednesday, May 22, 2019 1:07 PM
To: 'users@httpd.apache.org' 
Subject: [users@httpd] Need some advice - thread safe php module

Hi,

I am porting some older web pages from Apache 2.4.6 to Apache 2.4.37 on Linux
and apparently need to find a thread-safe version of libphp5.so to use, since 
we're
running MPM.


  *   Does anyone know where I can download the apache thread safe php module?
  *   If not, can someone give me a clue about the configuration options I 
should use
to build a new version of PHP which contains the php module for Apache?

I have been unable to find a download for the php module, and building PHP is 
not
producing a php module either.

Thanks,

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

[users@httpd] Need some advice - thread safe php module

[Jeff Cauhape]

Hi,

I am porting some older web pages from Apache 2.4.6 to Apache 2.4.37 on Linux
and apparently need to find a thread-safe version of libphp5.so to use, since 
we're
running MPM.


  *   Does anyone know where I can download the apache thread safe php module?
  *   If not, can someone give me a clue about the configuration options I 
should use
to build a new version of PHP which contains the php module for Apache?

I have been unable to find a download for the php module, and building PHP is 
not
producing a php module either.

Thanks,

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

RE: [users@httpd] Re: Simple file listing issue in browser, 2.2 vs 2.4

[Jeff Cauhape]

Actually I don’t know – but would that have an effect on whether all of the 
file details are displayed?

Also – just to be clear – I can access the file contents when just the names 
are displayed, so I’m thinking
it isn’t a permissions issue but a display issue.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Jim Weill [mailto:moon...@icsi.berkeley.edu]
Sent: Friday, May 3, 2019 1:29 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Re: Simple file listing issue in browser, 2.2 vs 2.4

Doesn't 2.4.x use "Require" instead of the "Order allow, deny Allow from all"?

As I understand it, 2.4.x should have "Require all granted" in place of those 
last two lines in your config.

jim

On Fri, May 3, 2019 at 1:11 PM Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
Yes, the index options are the same.

This system (Apache 2.2.3) shows the filenames and size and mod date. (On Red 
Hat 5.11)

Alias /oracle "/u01/app/oracle"

AuthType Basic
AuthName "Oracle"
AuthBasicProvider file
AuthUserFile /etc/httpd/auth/detr
Require valid-user
Options +Indexes
AllowOverride All Options
Order allow,deny
Allow from all


This system (2.4.29) shows only the file name. (On Solaris 11.3)

Alias /oracle "/export/home/logs"

AuthType  Basic
AuthName  "Oracle Logs"
AuthBasicProvider file
AuthUserFile /usr/apache2/2.4/auth/cap
Require valid-user
Options +Indexes
AllowOverride  All Options
Order allow,deny
Allow from  all



Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Christophe JAILLET 
[mailto:christophe.jail...@wanadoo.fr<mailto:christophe.jail...@wanadoo.fr>]
Sent: Friday, May 3, 2019 12:57 PM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>; Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>>
Subject: [users@httpd] Re: Simple file listing issue in browser, 2.2 vs 2.4

Le 03/05/2019 à 21:26, Jeff Cauhape a écrit :
Folks,

This is probably a simple issue, but so far I haven’t found anything in the
doc that addresses this directly.

A user has pointed out that a listing of a directory on one system running
Apache 2.2.3 shows files with their details – mod time, file size, etc., while
a nearly identical set up (pathnames differ) on a system running Apache 2.4.29
shows only the file names with no other details.

The files ownership and permissions are the same.
Files are accessible in both cases.
Configuration info in the httpd.conf files are identical. “Options +Indexes”, 
etc.

How do I get 2.4.29 to display the other file attributes besides the name?

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>


Hi,

have you checked if the IndexOptions directive is the same in both 
configuration?

CJ

RE: [users@httpd] Re: Simple file listing issue in browser, 2.2 vs 2.4

[Jeff Cauhape]

Yes, the index options are the same.

This system (Apache 2.2.3) shows the filenames and size and mod date. (On Red 
Hat 5.11)

Alias /oracle "/u01/app/oracle"

AuthType Basic
AuthName "Oracle"
AuthBasicProvider file
AuthUserFile /etc/httpd/auth/detr
Require valid-user
Options +Indexes
AllowOverride All Options
Order allow,deny
Allow from all


This system (2.4.29) shows only the file name. (On Solaris 11.3)

Alias /oracle "/export/home/logs"

AuthType  Basic
AuthName  "Oracle Logs"
AuthBasicProvider file
AuthUserFile /usr/apache2/2.4/auth/cap
Require valid-user
Options +Indexes
AllowOverride  All Options
Order allow,deny
Allow from  all



Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Christophe JAILLET [mailto:christophe.jail...@wanadoo.fr]
Sent: Friday, May 3, 2019 12:57 PM
To: users@httpd.apache.org; Jeff Cauhape 
Subject: [users@httpd] Re: Simple file listing issue in browser, 2.2 vs 2.4

Le 03/05/2019 à 21:26, Jeff Cauhape a écrit :
Folks,

This is probably a simple issue, but so far I haven't found anything in the
doc that addresses this directly.

A user has pointed out that a listing of a directory on one system running
Apache 2.2.3 shows files with their details - mod time, file size, etc., while
a nearly identical set up (pathnames differ) on a system running Apache 2.4.29
shows only the file names with no other details.

The files ownership and permissions are the same.
Files are accessible in both cases.
Configuration info in the httpd.conf files are identical. "Options +Indexes", 
etc.

How do I get 2.4.29 to display the other file attributes besides the name?

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>


Hi,

have you checked if the IndexOptions directive is the same in both 
configuration?

CJ

[users@httpd] Simple file listing issue in browser, 2.2 vs 2.4

[Jeff Cauhape]

Folks,

This is probably a simple issue, but so far I haven't found anything in the
doc that addresses this directly.

A user has pointed out that a listing of a directory on one system running
Apache 2.2.3 shows files with their details - mod time, file size, etc., while
a nearly identical set up (pathnames differ) on a system running Apache 2.4.29
shows only the file names with no other details.

The files ownership and permissions are the same.
Files are accessible in both cases.
Configuration info in the httpd.conf files are identical. "Options +Indexes", 
etc.

How do I get 2.4.29 to display the other file attributes besides the name?

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

RE: [users@httpd] Question about configure not answered in documentation

[Jeff Cauhape]

Well,

That almost worked.

I edited the config.layout file and copied  to .
In  I made the following changes only:


prefix:/usr/local/apache2
exec_prefix:   ${prefix}
bindir:${exec_prefix}/bin
sbindir:   ${exec_prefix}/bin
libdir:${exec_prefix}/lib
libexecdir:${exec_prefix}/modules
mandir:${prefix}/man
sysconfdir:${prefix}/conf
datadir:   ${prefix}
installbuilddir: ${datadir}/build
errordir:  ${datadir}/error
iconsdir:  ${datadir}/icons
htdocsdir: /var/www/html <- Changed
manualdir: ${datadir}/manual
cgidir:/var/www/cgi-bin <- Changed
includedir:${prefix}/include
localstatedir: ${prefix}
runtimedir:${localstatedir}/logs
logfiledir:${localstatedir}/logs
proxycachedir: ${localstatedir}/proxy


I then ran config like this from a shell script:
#!/bin/bash

./configure --with-pcre=/usr/local/bin/pcre-config \
--enable-layout=DETR \
--prefix=/apps/apache_2.4.39 \
--enable-proxy-html   \
--enable-socache-shmcb \
--enable-ssl

What happened is that the /var/www/html and /var/www/cgi-bin directories
got created, but in the httpd.conf file had this for the DocumentRoot and 
script locations:

DocumentRoot "/apps/apache_2.4.39/htdocs"

...

and

ScriptAlias  /cgi-bin/   "/apps/apache_2.4.39/cgi-bin/"


It looks like there is someplace where directives in config.layout are being 
ignored. Ideas?

n.b. After I reanthe config command, I ran a 'make clean' prior to the 'make' 
to build a
new server.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Jeff Cauhape [mailto:jpcauh...@detr.nv.gov] 
Sent: Friday, April 5, 2019 1:21 PM
To: users@httpd.apache.org
Subject: RE: [users@httpd] Question about configure not answered in 
documentation

Bingo! That's it!

Thank you very much.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator Nevada 
Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Rainer Jung [mailto:rainer.j...@kippdata.de]
Sent: Friday, April 5, 2019 1:04 PM
To: users@httpd.apache.org; Jeff Cauhape 
Subject: Re: [users@httpd] Question about configure not answered in 
documentation

Hi Jeff,

Am 05.04.2019 um 20:55 schrieb Jeff Cauhape:
> I am guessing the answer to my question is probably “no”, but I’m 
> hoping
> 
> someone here has a silver bullet.
> 
> We are finally getting our act together and updating our Apache server 
> instances.
> 
> Our chosen way to do this is as follows:
> 
> The /apps directory holds application software distributions, suche as
> 
> /apps/apache_2.4.25
> 
> /apps/apache_2.4.37
> 
> /apps/apache_2.4.39
> 
> /apps/apache   (this is a symbolic link to the current
> distribuiton)
> 
> We keep the DocumentRoot directory outside of the distribution tree 
> because
> 
> when we want to update the server, we don’t want to have to copy the 
> HTML
> 
> and cgi files.
> 
> Q: Is there some way to pass a parameter to configure to point to a 
> directory
> 
> outside of the distribution tree?
> 
> For example, if I want our htdocs to go into /etc/html  by default?
> 
> I know, we can just go in and edit httpd.conf to do this, but it would 
> be handy
> 
> to have it point to the right place as part of the build. I have 
> checked
> 
> https://httpd.apache.org/docs/2.4/programs/configure.html
> 
> and I don’t see anything that indicates that.
> 
> Ideas?

In the source distribution there's a file config.layout. Each layout defined in 
the file has a name and consists of a list of paths to use.

You can add you own layout to that file, e.f. a layout named JEFF and then add 
the configure flag "--enable-layout=JEFF" when running configure.

See:

https://httpd.apache.org/docs/2.4/programs/configure.html

I'm not sure whether that suffices to put the manual into a custom directory 
but you should get close.

Regards,

Rainer

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

B CB  [  
X  ܚX KK[XZ[
 \ \  ][  X  ܚX P
 \X K ܙ B  ܈Y][ۘ[  [X[  K[XZ[
 \ \  Z[
 \X K ܙ B

RE: [users@httpd] Question about configure not answered in documentation

[Jeff Cauhape]

It occurred to me that the simplest thing to do with the latest server is to 
just 
copy the httpd.conf file over from the older instance to the newer instance.

Hit the 'Easy' button

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Flaviu Radulescu [mailto:flaviu.radule...@lumminary.com.INVALID] 
Sent: Friday, April 5, 2019 12:53 PM
To: users@httpd.apache.org
Subject: [Unverified Sender] RE: [users@httpd] Question about configure not 
answered in documentation
Importance: Low

Or maybe you can create just a symlink from the apache folder to the correct 
HTML path


---
FLAVIU RADULESCU | Lumminary  |  lumminary.com

PLEASE NOTE:  This email and any file transmitted are confidential and/or 
legally privileged and intended only for the person(s) directly addressed. If 
you are not the intended recipient, any use, copying, transmission, 
distribution, or other forms of dissemination is strictly prohibited. If you 
have received this email in error, please notify the sender immediately and 
permanently delete the email and files, if any.

-Original Message-
From: Dennis Clarke 
Sent: Friday, April 5, 2019 8:39 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Question about configure not answered in 
documentation

On 4/5/19 2:55 PM, Jeff Cauhape wrote:
> I am guessing the answer to my question is probably "no", but I'm 
> hoping
> 
> someone here has a silver bullet.
> 
>


I think this is a basic path thing passed along like so :


beta $ ./configure --prefix=/some/app/path \ --sysconfdir=/usr/local/www/conf \ 
--localstatedir=/usr/local/www/var --datadir=/usr/local/www/data \ 
--htmldir=/usr/local/www/docs \

... etc etc etc



--
Dennis Clarke
RISC-V/SPARC/PPC/ARM/CISC
UNIX and Linux spoken
GreyBeard and suspenders optional

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

RE: [users@httpd] Question about configure not answered in documentation

[Jeff Cauhape]

Bingo! That's it!

Thank you very much.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Rainer Jung [mailto:rainer.j...@kippdata.de] 
Sent: Friday, April 5, 2019 1:04 PM
To: users@httpd.apache.org; Jeff Cauhape 
Subject: Re: [users@httpd] Question about configure not answered in 
documentation

Hi Jeff,

Am 05.04.2019 um 20:55 schrieb Jeff Cauhape:
> I am guessing the answer to my question is probably “no”, but I’m 
> hoping
> 
> someone here has a silver bullet.
> 
> We are finally getting our act together and updating our Apache server 
> instances.
> 
> Our chosen way to do this is as follows:
> 
> The /apps directory holds application software distributions, suche as
> 
> /apps/apache_2.4.25
> 
> /apps/apache_2.4.37
> 
> /apps/apache_2.4.39
> 
> /apps/apache   (this is a symbolic link to the current 
> distribuiton)
> 
> We keep the DocumentRoot directory outside of the distribution tree 
> because
> 
> when we want to update the server, we don’t want to have to copy the 
> HTML
> 
> and cgi files.
> 
> Q: Is there some way to pass a parameter to configure to point to a 
> directory
> 
> outside of the distribution tree?
> 
> For example, if I want our htdocs to go into /etc/html  by default?
> 
> I know, we can just go in and edit httpd.conf to do this, but it would 
> be handy
> 
> to have it point to the right place as part of the build. I have 
> checked
> 
> https://httpd.apache.org/docs/2.4/programs/configure.html
> 
> and I don’t see anything that indicates that.
> 
> Ideas?

In the source distribution there's a file config.layout. Each layout defined in 
the file has a name and consists of a list of paths to use.

You can add you own layout to that file, e.f. a layout named JEFF and then add 
the configure flag "--enable-layout=JEFF" when running configure.

See:

https://httpd.apache.org/docs/2.4/programs/configure.html

I'm not sure whether that suffices to put the manual into a custom directory 
but you should get close.

Regards,

Rainer

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[users@httpd] Question about configure not answered in documentation

[Jeff Cauhape]

I am guessing the answer to my question is probably "no", but I'm hoping
someone here has a silver bullet.

We are finally getting our act together and updating our Apache server 
instances.
Our chosen way to do this is as follows:

The /apps directory holds application software distributions, suche as

/apps/apache_2.4.25
/apps/apache_2.4.37
/apps/apache_2.4.39
/apps/apache   (this is a symbolic link to the current distribuiton)

We keep the DocumentRoot directory outside of the distribution tree because
when we want to update the server, we don't want to have to copy the HTML
and cgi files.

Q: Is there some way to pass a parameter to configure to point to a directory
outside of the distribution tree?

For example, if I want our htdocs to go into /etc/html  by default?

I know, we can just go in and edit httpd.conf to do this, but it would be handy
to have it point to the right place as part of the build. I have checked

https://httpd.apache.org/docs/2.4/programs/configure.html

and I don't see anything that indicates that.

Ideas?

Thanks,

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

RE: [users@httpd] Stupid question time - VirtualHost

[Jeff Cauhape]

Ok. I changed the port number in httpd.conf to something I know won’t work, and 
attempted a restart of apache.

[root@web1e conf]# apachectl start
Job for httpd.service failed because the control process exited with error 
code.See "systemctl status httpd.service" and 
"journalctl -xe" for details.

[root@web1e conf]# systemctl status httpd.service
● httpd.service - The Apache HTTP Server
   Loaded: loaded (/usr/lib/systemd/system/httpd.service; enabled; vendor 
preset: disabled)
   Active: failed (Result: exit-code) since Tue 2019-02-05 08:51:13 PST; 1min 
46s ago
 Docs: man:httpd(8)
   man:apachectl(8)
  Process: 16769 ExecStop=/bin/kill -WINCH ${MAINPID} (code=exited, 
status=1/FAILURE)
  Process: 13948 ExecReload=/usr/sbin/httpd $OPTIONS -k graceful (code=exited, 
status=0/SUCCESS)
  Process: 16768 ExecStart=/usr/sbin/httpd $OPTIONS -DFOREGROUND (code=exited, 
status=1/FAILURE)
Main PID: 16768 (code=exited, status=1/FAILURE)

Feb 05 08:51:13 web1e.detr.nv systemd[1]: Starting The Apache HTTP Server...
Feb 05 08:51:13 web1e.detr.nv httpd[16768]: (13)Permission denied: AH00072: 
make_sock: could not ...082  <-- The significant error.

   The full message is “(13) Permission 
denied: AH00072: make sock: could not bind to address 10.xxx.xxx.xx:1082”

Feb 05 08:51:13 web1e.detr.nv httpd[16768]: no listening sockets available, 
shutting down
Feb 05 08:51:13 web1e.detr.nv httpd[16768]: AH00015: Unable to open logs
Feb 05 08:51:13 web1e.detr.nv systemd[1]: httpd.service: main process exited, 
code=exited, statu...LURE
Feb 05 08:51:13 web1e.detr.nv kill[16769]: kill: cannot find process ""
Feb 05 08:51:13 web1e.detr.nv systemd[1]: httpd.service: control process 
exited, code=exited status=1
Feb 05 08:51:13 web1e.detr.nv systemd[1]: Failed to start The Apache HTTP 
Server.
Feb 05 08:51:13 web1e.detr.nv systemd[1]: Unit httpd.service entered failed 
state.
Feb 05 08:51:13 web1e.detr.nv systemd[1]: httpd.service failed.
Hint: Some lines were ellipsized, use -l to show in full.


Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

From: Frank Gingras [mailto:thu...@apache.org]
Sent: Monday, February 4, 2019 4:35 PM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Stupid question time - VirtualHost

Depending on the error returned by the OS, httpd can't do much in some cases. 
It would be useful if you were to share the verbatim error, as a start.

On Mon, 4 Feb 2019 at 13:17, Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> wrote:
Yes, it was the Secure Linux preventing the use of the port.  I wonder if the 
error message should be broadened to include
the possibility that security policies are not allowing it's use, rather than 
just assuming that the port is not available because
it's already in use.

I added the port to the security policy with this command:

# semanage port -a -t http_port_t -p tcp 280

I had already added the port to the firewall

[root@web1e conf]# firewall-cmd --info-zone=public

public (active)
  target: default
  ...
  services: dhcpv6-client https http ssh
  ports: 9100/tcp 9101/tcp   ...  280/tcp
 ...

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

-Original Message-
From: Jeff Cauhape [mailto:jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>]
Sent: Monday, February 4, 2019 8:29 AM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: RE: [users@httpd] Stupid question time - VirtualHost

Luca,

Thanks for the suggestion. It looks like we may have stumbled over the Secure 
Linux policy settings. I'll know more later this morning. I'll post a follow up 
when I figure it out.

Thanks,

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator Nevada 
Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov<mailto:jpcauh...@detr.nv.gov>

-Original Message-
From: Luca Toscano 
[mailto:toscano.l...@gmail.com<mailto:toscano.l...@gmail.com>]
Sent: Saturday, February 2, 2019 11:29 AM
To: users@httpd.apache.org<mailto:users@httpd.apache.org>
Subject: Re: [users@httpd] Stupid question time - VirtualHost

Hi Jeff!

Il giorno ven 1 feb 2019 alle ore 16:02 Jeff Cauhape 
mailto:jpcauh...@detr.nv.gov>> ha scritto:
>
> My usage of Apache has been pretty plain vanilla, and now I am
> required to
>
> add a virtual host to a system, and I’m wondering what doing wrong. My
> hunch
>
> is that it’s obvious to others.
>
>
>
> I am using Apache 2.4.6 as reported by htt

RE: [users@httpd] Stupid question time - VirtualHost

[Jeff Cauhape]

Yes, it was the Secure Linux preventing the use of the port.  I wonder if the 
error message should be broadened to include
the possibility that security policies are not allowing it's use, rather than 
just assuming that the port is not available because
it's already in use.

I added the port to the security policy with this command:

# semanage port -a -t http_port_t -p tcp 280

I had already added the port to the firewall

[root@web1e conf]# firewall-cmd --info-zone=public

public (active)
  target: default
  ...
  services: dhcpv6-client https http ssh
  ports: 9100/tcp 9101/tcp   ...  280/tcp
 ...

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-----
From: Jeff Cauhape [mailto:jpcauh...@detr.nv.gov] 
Sent: Monday, February 4, 2019 8:29 AM
To: users@httpd.apache.org
Subject: RE: [users@httpd] Stupid question time - VirtualHost

Luca,

Thanks for the suggestion. It looks like we may have stumbled over the Secure 
Linux policy settings. I'll know more later this morning. I'll post a follow up 
when I figure it out.

Thanks,

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator Nevada 
Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Luca Toscano [mailto:toscano.l...@gmail.com]
Sent: Saturday, February 2, 2019 11:29 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Stupid question time - VirtualHost

Hi Jeff!

Il giorno ven 1 feb 2019 alle ore 16:02 Jeff Cauhape  ha 
scritto:
>
> My usage of Apache has been pretty plain vanilla, and now I am 
> required to
>
> add a virtual host to a system, and I’m wondering what doing wrong. My 
> hunch
>
> is that it’s obvious to others.
>
>
>
> I am using Apache 2.4.6 as reported by httpd -v
>
>
>
> In my httpd.conf file I have:
>
> …
>
> Listen web1e.detr.nv:80
>
> Listen web1e.detr.nv:280
>
> …
>
> and
>
> 
>
> ServerName survey.nvdetr.org
>
> UseCanonicalName Off
>
> DocumentRoot "/var/www/html/survey/"
>
> ScriptAlias /cgi-bin/ "/var/www/cig-bin/survey/cgi-bin/"
>
> …
>
> 
>
>
>
> Question: Isn’t it true that I must have a Listen directive for each 
> VirtualHost?
>
>
>
> However, if I try to start the apache server configured like this I 
> get an error message that
>
> the port 8090 (or any other number I choose) is already in use and not 
> available. This causes
>
> apache to fail to start.
>
>
>
> # lsof -I :280
>
>
>
> and
>
>
>
> # netstat -ltnp
>
>
>
> Do not show the port in use by anything. I can change the port number 
> to anything I choose
>
> and the results are the same. This suggests to me that the problem is in 
> apache config somewhere.
>
>
>
> If I comment out the Listen director for the VirtualHost, I don’t get 
> the error, but I don’t see any
>
> process listening on the port either.
>
>
>
> Ideas? Suggestions?

Did you check https://httpd.apache.org/docs/2.4/vhosts/examples.html ?
There are useful examples in there, it should clarify all doubts.

Hope that helps!

Luca

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

B CB  [  
X  ܚX KK[XZ[
 \ \  ][  X  ܚX P
 \X K ܙ B  ܈Y][ۘ[  [X[  K[XZ[
 \ \  Z[
 \X K ܙ B

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

RE: [users@httpd] Stupid question time - VirtualHost

[Jeff Cauhape]

Luca,

Thanks for the suggestion. It looks like we may have stumbled over the Secure 
Linux
policy settings. I'll know more later this morning. I'll post a follow up when 
I figure it out.

Thanks,

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Luca Toscano [mailto:toscano.l...@gmail.com] 
Sent: Saturday, February 2, 2019 11:29 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Stupid question time - VirtualHost

Hi Jeff!

Il giorno ven 1 feb 2019 alle ore 16:02 Jeff Cauhape  ha 
scritto:
>
> My usage of Apache has been pretty plain vanilla, and now I am 
> required to
>
> add a virtual host to a system, and I’m wondering what doing wrong. My 
> hunch
>
> is that it’s obvious to others.
>
>
>
> I am using Apache 2.4.6 as reported by httpd -v
>
>
>
> In my httpd.conf file I have:
>
> …
>
> Listen web1e.detr.nv:80
>
> Listen web1e.detr.nv:280
>
> …
>
> and
>
> 
>
> ServerName survey.nvdetr.org
>
> UseCanonicalName Off
>
> DocumentRoot "/var/www/html/survey/"
>
> ScriptAlias /cgi-bin/ "/var/www/cig-bin/survey/cgi-bin/"
>
> …
>
> 
>
>
>
> Question: Isn’t it true that I must have a Listen directive for each 
> VirtualHost?
>
>
>
> However, if I try to start the apache server configured like this I 
> get an error message that
>
> the port 8090 (or any other number I choose) is already in use and not 
> available. This causes
>
> apache to fail to start.
>
>
>
> # lsof -I :280
>
>
>
> and
>
>
>
> # netstat -ltnp
>
>
>
> Do not show the port in use by anything. I can change the port number 
> to anything I choose
>
> and the results are the same. This suggests to me that the problem is in 
> apache config somewhere.
>
>
>
> If I comment out the Listen director for the VirtualHost, I don’t get 
> the error, but I don’t see any
>
> process listening on the port either.
>
>
>
> Ideas? Suggestions?

Did you check https://httpd.apache.org/docs/2.4/vhosts/examples.html ?
There are useful examples in there, it should clarify all doubts.

Hope that helps!

Luca

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[users@httpd] Stupid question time - VirtualHost

[Jeff Cauhape]

My usage of Apache has been pretty plain vanilla, and now I am required to
add a virtual host to a system, and I'm wondering what doing wrong. My hunch
is that it's obvious to others.

I am using Apache 2.4.6 as reported by httpd -v

In my httpd.conf file I have:
...
Listen web1e.detr.nv:80
Listen web1e.detr.nv:280
...
and

ServerName survey.nvdetr.org
UseCanonicalName Off
DocumentRoot "/var/www/html/survey/"
ScriptAlias /cgi-bin/ "/var/www/cig-bin/survey/cgi-bin/"
...


Question: Isn't it true that I must have a Listen directive for each 
VirtualHost?

However, if I try to start the apache server configured like this I get an 
error message that
the port 8090 (or any other number I choose) is already in use and not 
available. This causes
apache to fail to start.

# lsof -I :280

and

# netstat -ltnp

Do not show the port in use by anything. I can change the port number to 
anything I choose
and the results are the same. This suggests to me that the problem is in apache 
config somewhere.

If I comment out the Listen director for the VirtualHost, I don't get the 
error, but I don't see any
process listening on the port either.

Ideas? Suggestions?

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

RE: [users@httpd] SSL Handshake Exception in call from Android

[Jeff Cauhape]

Jerry,

Have you set LogLevel  to "debug" in httpd.conf and then check the sever error 
logs?
Could be helpful to see what the server is objecting to.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: Jerry Malcolm [mailto:techst...@malcolms.com] 
Sent: Friday, November 2, 2018 1:59 PM
To: users@httpd.apache.org
Subject: [users@httpd] SSL Handshake Exception in call from Android

I am writing an Android app that needs to make calls to my httpd server (Apache 
2.4.33).  I am getting the following exception in my Android app:

Exception: javax.net.ssl.SSLHandshakeException: 
javax.net.ssl.SSLProtocolException: SSL handshake aborted: 
ssl=0x809adc78: Failure in SSL library, usually a protocol error
     error:14077410:SSL routines:SSL23_GET_SERVER_HELLO:sslv3 alert handshake 
failure (external/openssl/ssl/s23_clnt.c:744
0x725e0cfc:0x)

The same Android app calls Google Maps https with no problem and also calls 
another server with https that I do not own with no problem.  So I'm assuming I 
have something wrong in my httpd config.  But I need some help figuring it out.

The same web site responds just fine to https calls from browsers.  It just 
doesn't work when called from my Android app. It also works fine if I use http 
instead of https.  But I need https.

Suggestions as to what might be wrong?

Thx.

Jerry


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org


-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

RE: [users@httpd] Is there a way to intercept all IP accesses in real time?

[Jeff Cauhape]

David,

I'm probably being pedantic, but I don't think you are looking for a literal 
"real time"
system, just something that operates quickly. A legitimate real time system can 
guarantee
response to an interrupt within a specified length of time. People often 
confuse this with
being fast, but they aren't really the same thing.

I think you might be able to accomplish your goals with some high quality log 
analysis software.
Since all the threads write to the same logs, checking the logs takes care of 
the multiple thread issue.

If that doesn't sound fast enough, you might look to see if any of the switches 
or routers in your
network have hacking detection software that can be installed or activated. 
This works faster than
anything you could put on the server itself.

Jeffrey Cauhape – IT Professional III – Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

-Original Message-
From: David Spector [mailto:david...@springtimesoftware.com] 
Sent: Thursday, November 1, 2018 7:05 AM
To: users@httpd.apache.org
Subject: [users@httpd] Is there a way to intercept all IP accesses in real time?

I would like to write a short real-time PHP program to detect unusual or 
malicious access patterns to httpd under all OSs for the usual methods, such as 
GET and POST, the goal being to protect authentication procedures from being 
repeatedly tested by unauthorized visitors to websites.

My understanding is that Apache generates a pool of worker processes to handle 
remote accesses to the server, so that accesses are processed efficiently and 
possibly concurrently if the OS supports process concurrency.

So, I'm afraid if I simply write a PHP function that gets called at the start 
of displaying the home page of a website, it will intercept only a subset of 
the remote accesses, which would be insufficient for analyzing access patterns.

Is there a way to have a piece of efficient real-time PHP code stay in memory 
(for efficiency, so its code and database can be resident in
memory) and be called for every remote IP access? Its results (a short, often 
updated IP blacklist) could be sent to the website through a slower route or 
could be used right there in the real-time PHP code to block the access.

David Spector
Springtime Software

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[users@httpd] Which PCRE to use to build Apache 2.4.37?

[Jeff Cauhape]

Folks,

I am building Apache 2.4.37 and it's been awhile since I built Apache, and in 
reading my instructions
it's not clear whether I need pcre-8.42 or pcre2-10.32 or both. Can someone 
throw me a bone and
explain this piece of it, or post a link that does?

Thanks for your time,

Jeffrey Cauhape - IT Professional III - Linux and Solaris Administrator
Nevada Department of Employment, Training and Rehabilitation
(775) 684-3804 (office) jpcauh...@detr.nv.gov

[users@httpd] Probably small problem with SSL config

[Jeff Cauhape]

I'm setting up an Apache server 2.4.25 in our DMZ for the first time,
and having an issue with getting SSL configured correctly.

I am using links text based browser to connect from a second machine
to the first machine. The connection works with HTTP but not with HTTPS.

When I try to connect with HTTPS, I get the error:

"Unable to retrieve https://https://%3cip> address>/:

SSL error"

Unfortunately I'm not finding any useful log information to
help me figure out what I'm doing wrong.

Here's the relevant bits from the httpd.conf file:


SSLRandomSeed startup builtin
SSLRandomSeed connect builtin
SSLSessionCache dbm:/apps/apache_2.4.25/ssl/ssl_cache


Listen 443

  ServerName   
  SSLEngineon
  SSLCertificateFile"/apps/apache_2.4.25/ssl/nvdetr.crt"
  SSLCertificateKeyFile "/apps/apache_2.4.25/ssl/nvdetr.key"


I'm loading modules ssl_module, authn_dbm_module among others.

The ssl directory is  755, root/root and the crt and key files are daemon/root 
644.

>From the error_log file:

[Mon Feb 05 15:42:00.247694 2018] [mpm_event:notice] [pid 5604:tid 
139772366497600] AH00489: Apache/2.4.25 (Unix) OpenSSL/1.0.1e-fips configured 
-- resuming normal operations
[Mon Feb 05 15:42:00.247945 2018] [core:notice] [pid 5604:tid 139772366497600] 
AH00094: Command line: '/apps/apache_2.4.25/bin/httpd'

There is no HTTPS reference in the access_log file.

The only references to http in /var/log/messages is referring to syslogd.

The /var/log/dmesg just has boot info.

nb - this is RHEL 7.4

Ideas? Suggestions where to look?

Thanks,

Jeff Cauhape
IT Professional III
Department of Employment, Training and Rehabilitation
Phone 1-775-684-3804
Email: jpcauh...@nvdetr.org

[users@httpd] 'found' mod_proxy_html and mod_ssl

[Jeff Cauhape]

Ok,

I did eventually figure out that these modules were created (or not)
by the configure script. Is this true of all of the modules supported
by Apache that aren't core functionality?

Jeff Cauhape
IT Professional III
Department of Employment, Training and Rehabilitation
Phone 1-775-684-3804
Email: jpcauh...@nvdetr.org

RE: [users@httpd] Looking for direction: porting server from Apache 2.2.2 to 2.4.6 - ProxyHTMLURLMap ?

[Jeff Cauhape]

I don’t think I’m a stupid person, nor do I think I am blind, but
I am unable to find the location at the apache.org site where I
can down load the source code for modules, such as mod_proxy_html.

The only download location I see is for either downloading
Apache itself (done that, and have built it), or for 2 or 3 particular
modules (mod_fcgid, mod_ftp).

When I look at the source distribution for Apache 2.4.25, I do
find some files for mod_proxy_html, but they are for a Windows build.

I went to the webthing site, and they suggest getting the code from
apache.org as it’s more up to date. Arg…..

If someone could throw me a clue as to HOW to find the source
for the modules that are supposed to be supported, I would greatly
appreciate it.

Thanks,

Jeff

From: Luca Toscano [mailto:toscano.l...@gmail.com]
Sent: Thursday, April 27, 2017 1:10 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] Looking for direction: porting server from Apache 
2.2.2 to 2.4.6 - ProxyHTMLURLMap ?

Hi Jeff,

2017-04-26 19:35 GMT+02:00 Jeff Cauhape 
mailto:jpcauh...@nvdetr.org>>:
Hi,

I’ve been given the task of moving a website from Apache 2.2.2 on Solaris to 
Apache 2.4.6 on Linux.

So far, so good, but I’m running into a ‘syntax’ error when a config file uses 
the ProxyHTMLURLMap
function. Apache 2.4.6 does not recognize this, and I don’t have the module 
(proxy_html_module /
mod_proxy_html.so) required to support it.

So… should I substitute calls to ProxyHTMLURLMap to some other function in 
2.4.6 (if so which),
or if not, where can I get the compiled function or source code?  From my take 
on the doc, proxy_html_module
is supposed to be available, but is not included. It would be handy to know 
where I can get the source
and compile my own, if that’s the way to go.

Thanks in advance for any tips or suggestions,

mod_proxy_html is included in the official httpd release so you can easily find 
it in https://httpd.apache.org. I think that your distribution might offer it 
under a separate package, but it is difficult to say without more info.

Hope that helps!

Luca

RE: [users@httpd] A curious thing - apachectl status in Apache 2.4.25

[Jeff Cauhape]

Rick,

That could be, except that if I just gave the stop command and it's "still" 
running
it doesn't nearly concern me as much as getting an Elinks error and wondering
if it's because it isn't running or whether there is some other issue.

Besides, this It's DEAD/ALIVE message comes _ after _ the call to links to 
output
status, so if there are still running processes from a graceful shutdown, the 
output
just above it should make that clear. This does not replace the call to links, 
but is
in addition to it.

I could probably take out the "It's ALIVE" message and achieve my goals, but 
I've
always been a fan of sci-fi and this just seemed too good to pass up. :)

Jeff

-Original Message-
From: Houser, Rick [mailto:rick.hou...@jackson.com] 
Sent: Monday, May 15, 2017 1:54 PM
To: users@httpd.apache.org
Subject: RE: [users@httpd] A curious thing - apachectl status in Apache 2.4.25

> I just added a couple of lines of shell script following the links 
> command after
the 'status' command line switch. It checks for the number of httpd processes, 
and if there are none, it echoes "It's DEAD, Jim!".  Otherwise It echoes "It's 
ALIVE!!!".

Isn't that just going to give bad results, though?  For example, if you had 
issued apachectl stop, there would still be processes handling the graceful 
stop, but your script would say it's alive.


Rick Houser
Web Administration

> -Original Message-
> From: Jeff Cauhape [mailto:jpcauh...@nvdetr.org]
> Sent: Monday, May 15, 2017 16:22
> To: users@httpd.apache.org
> Subject: RE: [users@httpd] A curious thing - apachectl status in 
> Apache 2.4.25
> 
> EXTERNAL EMAIL
> 
> 
> Eric,
> 
> Yes, I went from 2.4.6 bundled with Red Hat to a plain source code build.
> It didn't occur to me that it might be that simple. Thanks! :o
> 
> Mgmt has decided that they want the ability to easily have multiple 
> versions of Apache on our servers and to be able to switch from one 
> build to another by having symbolic links that are generic that point 
> to the active directory.
> Somewhat
> like the way Java does.
> 
> I just added a couple of lines of shell script following the links 
> command after the 'status' command line switch. It checks for the 
> number of httpd processes, and if there are none, it echoes "It's 
> DEAD, Jim!".  Otherwise It echoes "It's ALIVE!!!".
> 
> That seems pretty clear.
> 
> Jeff
> 
> -Original Message-----
> From: Eric Covener [mailto:cove...@gmail.com]
> Sent: Monday, May 15, 2017 10:24 AM
> To: users@httpd.apache.org
> Subject: Re: [users@httpd] A curious thing - apachectl status in 
> Apache 2.4.25
> 
> On Mon, May 15, 2017 at 1:22 PM, Jeff Cauhape 
> wrote:
> > In the Apache 2.4.6 shell script apachectl, a call to “apachectl status”
> >
> > invokes systemctl status  httpd.service. This gives you easy-to-read
> >
> > output regardless if the server is running or not.
> 
> Did you go from a vendor package to a source install? The former 
> probably just customized apachectl.
> 
> 
> --
> Eric Covener
> cove...@gmail.com
> 
> -
> To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
> For additional commands, e-mail: users-h...@httpd.apache.org

B CB  [  
X  ܚX KK[XZ[
 \ \  ][  X  ܚX P
 \X K ܙ B  ܈Y][ۘ[  [X[  K[XZ[
 \ \  Z[
 \X K ܙ B

RE: [users@httpd] A curious thing - apachectl status in Apache 2.4.25

[Jeff Cauhape]

Eric,

Yes, I went from 2.4.6 bundled with Red Hat to a plain source code build.
It didn't occur to me that it might be that simple. Thanks! :o

Mgmt has decided that they want the ability to easily have multiple versions
of Apache on our servers and to be able to switch from one build to another by
having symbolic links that are generic that point to the active directory. 
Somewhat
like the way Java does.

I just added a couple of lines of shell script following the links command after
the 'status' command line switch. It checks for the number of httpd processes,
and if there are none, it echoes "It's DEAD, Jim!".  Otherwise It echoes "It's 
ALIVE!!!".

That seems pretty clear.

Jeff

-Original Message-
From: Eric Covener [mailto:cove...@gmail.com] 
Sent: Monday, May 15, 2017 10:24 AM
To: users@httpd.apache.org
Subject: Re: [users@httpd] A curious thing - apachectl status in Apache 2.4.25

On Mon, May 15, 2017 at 1:22 PM, Jeff Cauhape  wrote:
> In the Apache 2.4.6 shell script apachectl, a call to “apachectl status”
>
> invokes systemctl status  httpd.service. This gives you easy-to-read
>
> output regardless if the server is running or not.

Did you go from a vendor package to a source install? The former probably just 
customized apachectl.


--
Eric Covener
cove...@gmail.com

-
To unsubscribe, e-mail: users-unsubscr...@httpd.apache.org
For additional commands, e-mail: users-h...@httpd.apache.org

[users@httpd] A curious thing - apachectl status in Apache 2.4.25

[Jeff Cauhape]

I recently built Apache 2.4.25 and am running it on RHEL 7.3.
I've found something that seems a step backwards from 2.4.6
and I'm hoping someone can shed some light on it.

In the Apache 2.4.6 shell script apachectl, a call to "apachectl status"
invokes systemctl status  httpd.service. This gives you easy-to-read
output regardless if the server is running or not.

In the Apache 2.4.25 version of apachectl, "apachectl status" instead
calls links with the /server-status URL. When the server is up, you
get a lot of info. When the server is down, you get a Elinks error,
which is a little ambiguous, as there could be other reasons for
links not working correctly.

Doesn't this seem like a step backwards?

Can someone explain the rationale for this?

(Please note: I can fix this, but I'm curious as to why it was done this way)

Thanks,

Jeff Cauhape
IT Professional III
Department of Employment, Training and Rehabilitation
Phone 1-775-684-3804
Email: jpcauh...@nvdetr.org

[users@httpd] Looking for direction: porting server from Apache 2.2.2 to 2.4.6 - ProxyHTMLURLMap ?

[Jeff Cauhape]

Hi,

I've been given the task of moving a website from Apache 2.2.2 on Solaris to 
Apache 2.4.6 on Linux.

So far, so good, but I'm running into a 'syntax' error when a config file uses 
the ProxyHTMLURLMap
function. Apache 2.4.6 does not recognize this, and I don't have the module 
(proxy_html_module /
mod_proxy_html.so) required to support it.

So... should I substitute calls to ProxyHTMLURLMap to some other function in 
2.4.6 (if so which),
or if not, where can I get the compiled function or source code?  From my take 
on the doc, proxy_html_module
is supposed to be available, but is not included. It would be handy to know 
where I can get the source
and compile my own, if that's the way to go.

Thanks in advance for any tips or suggestions,

Jeff Cauhape
IT Professional III
Department of Employment, Training and Rehabilitation
Phone 1-775-684-3804
Email: jpcauh...@nvdetr.org