Re: [EMAIL PROTECTED] POST message handling
Original-Nachricht Datum: Sun, 19 Aug 2007 01:50:59 -0700 (PDT) Von: Rakesh Agarwal <[EMAIL PROTECTED]> An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] POST message handling > Hi, > > I am new to Apache so please excuse me for asking fundamental question. > I would like to know how is a http message processed by the httpd server. > I have constructed a POST message with the login details for logging in to > a website, I would like to know what are the criteria apart from the > "action" tag with which Apache determines the "PHP" script to be invoked. I > need > some other criteria for invoking the PHP script because I want to hide the > actual PHP script doing the processing. I require this to prevent the PHP > source code from getting leaked > > Generally PHP scripts wouldn't get leaked if you set it correctly. If you really want to hide the reponse details,maybe writting a Apache module by yourself is better.Apache has full APIs to some language interface like C and Perl(mod_perl),you may check their documents. -- Der GMX SmartSurfer hilft bis zu 70% Ihrer Onlinekosten zu sparen! Ideal für Modem und ISDN: http://www.gmx.net/de/go/smartsurfer - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] POST message handling
Original-Nachricht Datum: Sun, 19 Aug 2007 05:07:23 -0700 (PDT) Von: Rakesh Agarwal <[EMAIL PROTECTED]> An: users@httpd.apache.org Betreff: Re: [EMAIL PROTECTED] POST message handling > Hi Jeff, > > Maybe this is a bit off-topic, you mentioned that there are ways to > prevent leaking of my source code. If you do not mind can share some of the > methodolgies to prevent the php source code from getting leaked since the URL > which has the php file name needs to be mentioned in the html pages > Hello, When you compiled php as Apache's handler,Apache can invoke php files correctly by itself.That's to say,when users access the php file with http method,it only output the html content.Given your php file is /auth.php,and user access this php with any useragent,http://www.site.com/auth.php,he only get the html content generated by php,not php script itself. If you need to hide the php script path,I think there's some ways under apache.One way I can think (maybe not best) is use mod_rewrite,for example,you put auth.php into a special dir like /auth,and you config the mod_rewrite rules,when request path include /auth,then rewrite it to /auth/auth.php,then users can't see the full php file path. -- Der GMX SmartSurfer hilft bis zu 70% Ihrer Onlinekosten zu sparen! Ideal für Modem und ISDN: http://www.gmx.net/de/go/smartsurfer - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] How to deny sites
Original-Nachricht Datum: Sun, 19 Aug 2007 15:28:31 +0200 Von: [EMAIL PROTECTED] An: users@httpd.apache.org Betreff: [EMAIL PROTECTED] How to deny sites > Hallo httpd users, > > Quite some time ago I had an option in my configuration which made > it possible to deny sites when they were listed in a file in the > form: > Deny from aaa.bbb.ccc.ddd > Deny from ppp.qqq.rrr.sss > &c > That option disappeared from my configuration somehow and I can't > find how to put it in anymore. > Does anybody know what I'm talking about and can tell me how to > do it? > I'm running Apache httpd 2.0.4 on a SlackWare 12.0 Linux system. > Hello, You may see the document which give you full details about that access control. http://httpd.apache.org/docs/2.0/mod/mod_access.html Good luck. -- Der GMX SmartSurfer hilft bis zu 70% Ihrer Onlinekosten zu sparen! Ideal für Modem und ISDN: http://www.gmx.net/de/go/smartsurfer - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: RE: [EMAIL PROTECTED] How to deny sites
Original-Nachricht Datum: Sun, 19 Aug 2007 14:27:02 +0200 Von: jake borg <[EMAIL PROTECTED]> An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] How to deny sites > > stop spamming m! > mhh?who spam you?I just replied to this list with normal way.If you don't like to get list messages,get off. -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: RE: [EMAIL PROTECTED] How to deny sites
Original-Nachricht Datum: Sun, 19 Aug 2007 14:31:10 +0200 Von: jake borg <[EMAIL PROTECTED]> An: users@httpd.apache.org Betreff: RE: [EMAIL PROTECTED] How to deny sites > how do i remove these msgs from ending up in my email To unsubscribe, send a messages to [EMAIL PROTECTED] -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache consuming lot of memory
Original-Nachricht > Datum: Mon, 20 Aug 2007 18:27:44 +0200 > Von: "David Díaz Díaz" <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: [EMAIL PROTECTED] Apache consuming lot of memory > Hi All, > > I have running Apache 2.2.4 with PHP 5.2 and Mysql 5 on Fedora 5, my > server > has 2GB RAM and only it runs a php runtime with flash embedded that stream > MP3 files for 300 simultaneus users... > > My point is that apache is consuming about 1.80GB I feel that it's not > correct, my prefork MPM config is... > > > StartServers3 > MinSpareServers 5 > MaxSpareServers 10 > MaxClients 300 > MaxRequestsPerChild 1 > > > Other parameters are: > > Timeout 30 > KeepAlive On > MaxKeepAliveRequests 1000 > KeepAliveTimeout 3 > > Also the CPU load is max 6% use.. > > I've been reading differents docs, What can I do to ensure that Apache > just > consume the necesary memory? > There is almost nothing reasons on those parameters setting,but it seems your application program itself is large. Also after install Apache,you could strip httpd to reduce some memory usage. -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Telling one IP address 404 "Nothing found"
Original-Nachricht
> Datum: Thu, 23 Aug 2007 14:54:46 +0700
> Von: "Vincent Bray" <[EMAIL PROTECTED]>
> An: users@httpd.apache.org
> Betreff: Re: [EMAIL PROTECTED] Telling one IP address 404 "Nothing found"
> On 23/08/07, Steve Swift <[EMAIL PROTECTED]> wrote:
> > Is it possible to block a specific IP address such that they get 404
> "Not
> > found" no matter what URL they try?
> >
> > I don't want to use "Deny From" or other IP address blocking schemes,
> > because that will just alert them to the fact that I have my shields up.
> > I just want this particular IP address to think that my website is
> > completely empty.
> > And yes, it is a fixed IP address, so it's worth doing. It will cause
> them a
> > lot more grief to negotiate a different IP address, and hopefully they
> will
> > abandon their probing.
> >
> > Then they'll stop pestering my server with request that all fail
>
> Ok, then let's ignore proper http and try:
>
> RewriteEngine On
> RewriteCond ${REMOTE_ADDR} 1\.2\.3\.4
> RewriteRule ^ - [R=404]
>
I'm not sure but would this reject IP like 11.2.3.44?since this also match the
regex 1\.2\.3\.4
or set RewriteCond ${REMOTE_ADDR} ^1\.2\.3\.4$ ?
--
GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS.
Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Telling one IP address 404 "Nothing found"
Original-Nachricht
> Datum: Thu, 23 Aug 2007 10:25:03 +0100
> Von: "Steve Swift" <[EMAIL PROTECTED]>
> An: users@httpd.apache.org
> Betreff: Re: [EMAIL PROTECTED] Telling one IP address 404 "Nothing found"
> Incidentally, I forgot one part of my original plan. I presume this will
> get logged in our access/error logs? I don't suppose there's a way to stop
> that.
I'm not sure if Apache's default config directive can do this.
But for me,I once meet some more complicated filter conditions than yours.Then
I wrote an Apache module for it.It's simple to write an Apache module if you're
familiar with its API (C API or modperl).In modperl you can use
$r->log_error("...") to write error_log.
Good luck!
--
Ist Ihr Browser Vista-kompatibel? Jetzt die neuesten
Browser-Versionen downloaden: http://www.gmx.net/de/go/browser
-
The official User-To-User support forum of the Apache HTTP Server Project.
See http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: [EMAIL PROTECTED]
" from the digest: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Forbidden error on .exe files in apache on RH 4.0
Original-Nachricht > Datum: Thu, 23 Aug 2007 11:35:30 -0700 > Von: "Ali, Saqib" <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: [EMAIL PROTECTED] Forbidden error on .exe files in apache on RH 4.0 > Hello All, > > I just installed a RH 4.0 box with apache, and I am getting a > "Forbidden" error when trying to d/l .EXE files. > > The log says: > Options ExecCGI is off in this directory: /path/path/file.exe > because this directory doesn't have ExecCGI options,you can add it if needed.like, AllowOverride None Options ExecCGI -- GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS. Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Apache Permmisions error
Original-Nachricht > Datum: Thu, 23 Aug 2007 18:49:33 -0700 (PDT) > Von: John Wyatt <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: [EMAIL PROTECTED] Apache Permmisions error > Hey folks, i'm coding a php blog from a IBM's developerWorks tutorial and > I get this error with permissions. > > Main blog page > > > Warning: mkdir() [function.mkdir]: Permission denied in > /home/www/edit/index.php on line 9 > > Warning: fopen(../blogs/Aug 2007/Aug 23 2007 18 13) [function.fopen]: > failed to open stream: No such file or directory in /home/www/edit/index.php > on line 11 > > Warning: fwrite(): supplied argument is not a valid stream resource in > /home/www/edit/index.php on line 12 > > Warning: fclose(): supplied argument is not a valid stream resource in > /home/www/edit/index.php on line 13 > Blog entry saved/updated > > This is most likely because PHP doesn't have the privileges to read/write special directory or files.By default apache/php are running as nobody user,so at first you take a look at that php program to find out which directory/file it try to access,then set the correct privileges to that directory/file. Under unix,you can use 'chmod' or 'chown' to ajust the privileges on dir/files. -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite and dynamic content
Original-Nachricht > Datum: Fri, 24 Aug 2007 16:54:11 +0200 > Von: Jens Danneschewski <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: [EMAIL PROTECTED] mod_rewrite and dynamic content > hi there, > > i have the following problem that i cannot really solve, although i am > familiar with mod_rewrite (and i have searchedbelive me). > > my company has a webserver with the name www.abcde.com > on this webserver there is apache2 and tomcat, and tomcat creates > dynamic content, starting with: > > http://www.abcde.com/MAIN/pages/public/index.xhtml > > so, initially i wrote a redirect, that would send any instance of > www.abcde.com to the above address. > this workes fine BUT my boss wants to have www.abcde.com as the URL > adress and leave the other stuff hidden. > so, like a hidden redirect...but i cannot get this to work. the url > changes regardless of rewrite rules i set. > can anyone out there please point me in the right direction? > do i have to use mod_proxy to load the content under the server name? > I think you need an Apache inner redirection (without the [R] option). -- GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS. Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Rewrite Help
Original-Nachricht > Datum: Sat, 25 Aug 2007 22:37:39 +0100 > Von: "Ben Hussey" <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: [EMAIL PROTECTED] Rewrite Help > This is something I've been trying to do for a while but never found or > achieved how to do it. > > I need to redirect (on a large scale): > http://xyz.mydomain.com > to: > /web/live/xyz > Simply you can use Alias or AliasMatch to do it. For mod_rewrite usage,as Joshua said,it's better to config a virtual host with DocumentRoot /web/live/xyz,then rewrite the requests to this vhost. -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Need Help [Again] w. PHP and Apache.
Original-Nachricht > Datum: Sun, 26 Aug 2007 15:48:20 -0500 > Von: "Steve R Burrus" <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: [EMAIL PROTECTED] Need Help [Again] w. PHP and Apache. > Hi all. I need help ( again ) with trying to integrate PHP with the Apache > Web Server. I don't know how many times before I have had to seek > assistance with doing this, but I still know how to let's say easily do > this!! I am > working with PHP Version : 5.2.4.4 and the Apache Version : 2.2.4. This is really depend on what OS you are using. I got the help documents just by google. 1)Installing Apache PHP and MySQL on windows: http://www.php-mysql-tutorial.com/install-apache-php-mysql.php 2)how to install/compile Apache2, PHP5 and MySQL 4.1 on Linux: http://www.kofler.cc/forum/forumthread.php?rootID=3571 -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] Questions regarding logging
Original-Nachricht > Datum: Mon, 27 Aug 2007 09:15:31 -0400 > Von: "Fought, Richard" <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: [EMAIL PROTECTED] Questions regarding logging > > 2. In the logs, is the request timestamp from the beginning or the end > of the request? > >From what I know (from apache API),after apache child finish to server the >full request,logs were written.But this is maybe not right for status 206. -- GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS. Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_rewrite or mod_access
Original-Nachricht > Datum: Mon, 27 Aug 2007 21:12:32 +0700 > Von: "Vincent Bray" <[EMAIL PROTECTED]> > > Using mod_rewrite > here is only necessary when you need to see stuff like the query > string, or other non-uri-ref request attributes. > Agree with that.:) -- GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS. Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] AccessLog isn't logging
Original-Nachricht > Datum: Mon, 27 Aug 2007 09:20:58 -0500 (CDT) > Von: [EMAIL PROTECTED] > An: users@httpd.apache.org > Betreff: Re: [EMAIL PROTECTED] AccessLog isn\'t logging > I actually renamed old access_log into access_log.bk > because it was pretty large. Then, I created a new > access_log file This is not good way for rotate log files.You may do, cp -f access_log access_log.0 # if you need the backup echo -n > access_log > The file is always 0 byte size... > Have you enabled apache logging in httpd.conf?Such a line like: CustomLog logs/access_log common -- GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS. Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] REPOST: [EMAIL PROTECTED] Need Help [Again] w. PHP and Apache.
Original-Nachricht > Datum: Mon, 27 Aug 2007 14:56:09 -0500 > > > Hi all. I need help ( again ) with trying to integrate PHP with the > Apache Web Server. I don't know how many times before I have had to seek > assistance with doing this, but I still DO NOT know how to let's say easily do > this!! I am working with PHP Version : 5.2.4.4 and the Apache Version : > 2.2.4. Hmm,have you checked the message I've replied few days ago. Just try a google you would find lots of useful info. [snip] This is really depend on what OS you are using. I got the help documents just by google. 1)Installing Apache PHP and MySQL on windows: http://www.php-mysql-tutorial.com/install-apache-php-mysql.php 2)how to install/compile Apache2, PHP5 and MySQL 4.1 on Linux: http://www.kofler.cc/forum/forumthread.php?rootID=3571 [/snip] -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_python
Original-Nachricht > Datum: Thu, 30 Aug 2007 10:46:43 -0400 > Von: Chris Howell <[EMAIL PROTECTED]> > > When I went to the modules directory, under the apache root, the > mod_python.so file does exist so I am not sure what the problem is or > what the solution is. Any light someone could shed on this would be > greatly appreciated. > Why mod_python.so is located under apache root dir not module dir? You many installed something wrong. -- Pt! Schon vom neuen GMX MultiMessenger gehört? Der kanns mit allen: http://www.gmx.net/de/go/multimessenger - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] ErrorDocument 404 redirect with server response code issue
Original-Nachricht > Datum: Thu, 30 Aug 2007 11:45:05 -0400 > Von: "Steve Finkelstein" <[EMAIL PROTECTED]> > An: users@httpd.apache.org > I'd send like use proper headers, send a 404 to the client, then redirect > them to my base URL. > > Is this possible? Should I resort to mod_rewrite versus ErrorDocument? > I don't think it's possible.Once you send 404,you don't have chance to send 30x for redirection again. -- Ist Ihr Browser Vista-kompatibel? Jetzt die neuesten Browser-Versionen downloaden: http://www.gmx.net/de/go/browser - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
Re: [EMAIL PROTECTED] mod_python
Original-Nachricht > Datum: Thu, 30 Aug 2007 12:01:02 -0400 > Von: Chris Howell <[EMAIL PROTECTED]> > An: users@httpd.apache.org > Betreff: Re: [EMAIL PROTECTED] mod_python > Sorry, what I meant was the directory is like htis > > Apache >Modules > mod_python.so > > It is under the modules dir. > It's hard to say what's the problems only by the info you provided. I once installed mod_python with apache2 on Linux,it went well. Can you give a try to compile mod_python as apache's static module rather than DSO method? -- GMX FreeMail: 1 GB Postfach, 5 E-Mail-Adressen, 10 Free SMS. Alle Infos und kostenlose Anmeldung: http://www.gmx.net/de/go/freemail - The official User-To-User support forum of the Apache HTTP Server Project. See http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: [EMAIL PROTECTED] " from the digest: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
